prepare($sqlRequest); $userName = htmlspecialchars(substr($_POST['username'], 0, 20)); $request->bindParam(":username", $userName); $request->execute(); $result = $request->fetchAll(PDO::FETCH_ASSOC); if($result && $result[0]['ID'] != $_SESSION['userID']) { $status = "Le nom d'utilisateur n'est pas disponible"; } else { $sqlRequest = "UPDATE users SET username = :username, email = :email, last_update = now() WHERE ID = :userID"; $request = $pdo->prepare($sqlRequest); $request->bindParam(":username", $userName); $userEmail = htmlspecialchars($_POST['email']); $request->bindParam(":email", $userEmail); $request->bindParam(":userID", $_SESSION['userID']); if($request->execute()) { $status = "Informations mises à jour"; } } } } else { $status = "Le nom d'utilisateur ne peut pas être vide"; } } ?>
Options
prepare($sqlRequest); $request->bindParam(":userID", $_SESSION['userID']); $request->execute(); $result = $request->fetchAll(PDO::FETCH_ASSOC); textInput("text", "", "username", "username", $result[0]['username']); textInput("email", "", "email", "user@e59.fr", $result[0]['email']); ?>
Supprimer le compte