From 2292da68898fd89fa3e723c93bb7079bb768c002 Mon Sep 17 00:00:00 2001
From: Jan BELLON <jan@intra.e59.fr>
Date: Mon, 11 Mar 2024 22:21:15 +0000
Subject: [PATCH] Update file compte.php

---
 html/compte.php | 32 +++++++++++++++++++++++++++++---
 1 file changed, 29 insertions(+), 3 deletions(-)

diff --git a/html/compte.php b/html/compte.php
index 9812b0f0..d3c95e67 100644
--- a/html/compte.php
+++ b/html/compte.php
@@ -21,6 +21,29 @@ if($resultat) {
     die("Erreur, utilisateur introuvable");
 }
 
+is(isset($_POST['user_display_name']) && isset($_POST['user_name']) && isset($_POST['user_bio']) && isset($_POST['user_pp']) && isset($_POST['user_banner'])) {
+    $bdd = connect($dbhost, $dbname, $dbuser, $dbpass);
+    $req = $bdd->prepare("SELECT ID FROM users WHERE username = :user_name");
+    $req->bindParam(":user_name", htmlspecialchars($_POST['user_name']));
+    $req->execute();
+    $resultat = $req->fetchAll(PDO::FETCH_ASSOC);
+    if($resultat) {
+        $status = "Erreur, le nom d'utilisateur existe déjà.";
+    } else {
+        $bdd = connect($dbhost, $dbname, $dbuser, $dbpass);
+        $req = $bdd->prepare("UPDATE users SET (username, display_name, bio, profile_picture, banner) VALUES (:user_name, :user_display_name, :user_bio, :user_pp, :user_banner) WHERE ID = :user_id");
+        $req->bindParam(":user_name", htmlspecialchars($_POST['user_name']));
+        $req->bindParam(":user_display_name", htmlspecialchars($_POST['user_display_name']));
+        $req->bindParam(":user_bio", htmlspecialchars($_POST['user_bio']));
+        $req->bindParam(":user_pp", htmlspecialchars($_POST['user_pp']));
+        $req->bindParam(":user_banner", htmlspecialchars($_POST['user_banner']));
+        $req->bindParam(":user_id", $_SESSION['userid']);
+        if($req->execute()) {
+            $status = "Informations mises à jour";
+        }
+    }
+}
+
 ?>
 <!DOCTYPE html>
 <html lang="fr">
@@ -111,7 +134,7 @@ if($resultat) {
                                 <div class="user-pp"><img src="<?=$user_pp?>" class="user-pp-image"></div>
                                 <div class="user-info">
                                     <div class="names">
-                                        <div class="display-name"><input type="text" value="<?=$user_display_name?>"/></div>
+                                        <div class="display-name"><input type="text" name="user_display_name" value="<?=$user_display_name?>" required/></div>
                                         <div class="user-role">
 
                                             <?php
@@ -121,9 +144,12 @@ if($resultat) {
                                             ?>
 
                                         </div>
-                                        <div class="username">@<input type="text" value="<?=$user_name?>"/></div>
+                                        <div class="username">@<input type="text" name="user_name" value="<?=$user_name?>" required/></div>
                                     </div>
-                                    <div class="bio"><textarea class="bio-input" placeholder="Bio..." maxlength="100"><?=$user_bio?></textarea></div>
+                                    <div><textarea class="bio-input" name="user_bio" placeholder="Bio..." maxlength="100"><?=$user_bio?></textarea></div>
+                                    <div><textarea class="pp-input" name="user_pp" placeholder="URL PP..."><?=$user_pp?></textarea></div>
+                                    <div><textarea class="banner-input" name="user_banner" placeholder="URL Banière.."><?=$user_banner?></textarea></div>
+                                    <div><input type="submit" value="Mettre à jour"></div>
                                 </div>
                             </div>
                         </div>