From eaeb04b7b5307aae3986ba22ad3ef71de4b80b98 Mon Sep 17 00:00:00 2001
From: Jan BELLON <jan@intra.e59.fr>
Date: Tue, 12 Mar 2024 12:24:35 +0000
Subject: [PATCH] Update file compte.php

---
 html/compte.php | 92 ++++++++++++++++++++++++-------------------------
 1 file changed, 46 insertions(+), 46 deletions(-)

diff --git a/html/compte.php b/html/compte.php
index c91598e1..f0e7e3ed 100644
--- a/html/compte.php
+++ b/html/compte.php
@@ -2,52 +2,6 @@
 require "../include/variables.php";
 require "../include/functions.php";
 
-$bdd = connect($dbhost, $dbname, $dbuser, $dbpass);
-$req = $bdd->prepare("SELECT ID, username, creation_date, display_name, role, profile_picture, banner, bio FROM users WHERE ID = :user_id");
-$req->bindParam(":user_id", $_SESSION['userid']);
-$req->execute();
-$resultat = $req->fetchAll(PDO::FETCH_ASSOC);
-
-if($resultat) {
-    $user_id = $resultat[0]['ID'];
-    $user_name = $resultat[0]['username'];
-    $user_creation_date = $resultat[0]['creation_date'];
-    $user_display_name = $resultat[0]['display_name'];
-    $user_role = $resultat[0]['role'];
-    $user_pp = $resultat[0]['profile_picture'] == NULL ? "https://abs.twimg.com/sticky/default_profile_images/default_profile_400x400.png" : $resultat[0]['profile_picture'];
-    $user_pp_url = $resultat[0]['profile_picture'];
-    $user_banner = $resultat[0]['banner'] = NULL ? "./src/img/empty.jpg" : $resultat[0]['banner'];
-    $user_bio = $resultat[0]['bio'];
-} else {
-    die("Erreur, utilisateur introuvable");
-}
-
-if(isset($_POST['user_display_name']) && isset($_POST['user_name']) && isset($_POST['user_bio'])) {
-    $bdd = connect($dbhost, $dbname, $dbuser, $dbpass);
-    $req = $bdd->prepare("SELECT ID FROM users WHERE username = :user_name AND NOT ID = :user_id");
-    $req->bindParam(":user_name", htmlspecialchars($_POST['user_name']));
-    $req->bindParam(":user_id", $_SESSION['userid'], PDO::PARAM_INT);
-    $req->execute();
-    $resultat = $req->fetchAll(PDO::FETCH_ASSOC);
-    if($resultat) {
-        $status = "Erreur, le nom d'utilisateur existe déjà.";
-    } else {
-        $bdd = connect($dbhost, $dbname, $dbuser, $dbpass);
-        $req = $bdd->prepare("UPDATE users SET username = :user_name, display_name = :user_display_name, bio = :user_bio WHERE ID = :user_id");
-        $req->bindParam(":user_name", htmlspecialchars($_POST['user_name']));
-        $req->bindParam(":user_display_name", htmlspecialchars($_POST['user_display_name']));
-        $req->bindParam(":user_bio", htmlspecialchars($_POST['user_bio']));
-        $req->bindParam(":user_id", $_SESSION['userid']);
-        if($req->execute()) {
-            $status = "Informations mises à jour";
-            $_SESSION['username'] = htmlspecialchars($_POST['user_name']);
-            $_SESSION['display_name'] = htmlspecialchars($_POST['user_display_name']);
-        } else {
-            $status = "Erreur, les informations n'ont pas pu être mises à jour.";
-        }
-    }
-}
-
 if (isset($_FILES['profile_picture']) && $_FILES['profile_picture']['error'] == 0) {
     // Chemins et noms de fichiers
     $tempPath = $_FILES['profile_picture']['tmp_name'];
@@ -131,6 +85,52 @@ if (isset($_FILES['banner']) && $_FILES['banner']['error'] == 0) {
     }
 }
 
+$bdd = connect($dbhost, $dbname, $dbuser, $dbpass);
+$req = $bdd->prepare("SELECT ID, username, creation_date, display_name, role, profile_picture, banner, bio FROM users WHERE ID = :user_id");
+$req->bindParam(":user_id", $_SESSION['userid']);
+$req->execute();
+$resultat = $req->fetchAll(PDO::FETCH_ASSOC);
+
+if($resultat) {
+    $user_id = $resultat[0]['ID'];
+    $user_name = $resultat[0]['username'];
+    $user_creation_date = $resultat[0]['creation_date'];
+    $user_display_name = $resultat[0]['display_name'];
+    $user_role = $resultat[0]['role'];
+    $user_pp = $resultat[0]['profile_picture'] == NULL ? "https://abs.twimg.com/sticky/default_profile_images/default_profile_400x400.png" : $resultat[0]['profile_picture'];
+    $user_pp_url = $resultat[0]['profile_picture'];
+    $user_banner = $resultat[0]['banner'] = NULL ? "./src/img/empty.jpg" : $resultat[0]['banner'];
+    $user_bio = $resultat[0]['bio'];
+} else {
+    die("Erreur, utilisateur introuvable");
+}
+
+if(isset($_POST['user_display_name']) && isset($_POST['user_name']) && isset($_POST['user_bio'])) {
+    $bdd = connect($dbhost, $dbname, $dbuser, $dbpass);
+    $req = $bdd->prepare("SELECT ID FROM users WHERE username = :user_name AND NOT ID = :user_id");
+    $req->bindParam(":user_name", htmlspecialchars($_POST['user_name']));
+    $req->bindParam(":user_id", $_SESSION['userid'], PDO::PARAM_INT);
+    $req->execute();
+    $resultat = $req->fetchAll(PDO::FETCH_ASSOC);
+    if($resultat) {
+        $status = "Erreur, le nom d'utilisateur existe déjà.";
+    } else {
+        $bdd = connect($dbhost, $dbname, $dbuser, $dbpass);
+        $req = $bdd->prepare("UPDATE users SET username = :user_name, display_name = :user_display_name, bio = :user_bio WHERE ID = :user_id");
+        $req->bindParam(":user_name", htmlspecialchars($_POST['user_name']));
+        $req->bindParam(":user_display_name", htmlspecialchars($_POST['user_display_name']));
+        $req->bindParam(":user_bio", htmlspecialchars($_POST['user_bio']));
+        $req->bindParam(":user_id", $_SESSION['userid']);
+        if($req->execute()) {
+            $status = "Informations mises à jour";
+            $_SESSION['username'] = htmlspecialchars($_POST['user_name']);
+            $_SESSION['display_name'] = htmlspecialchars($_POST['user_display_name']);
+        } else {
+            $status = "Erreur, les informations n'ont pas pu être mises à jour.";
+        }
+    }
+}
+
 ?>
 <!DOCTYPE html>
 <html lang="fr">