201 lines
9.4 KiB
PHP
201 lines
9.4 KiB
PHP
<?php
|
|
require "../include/variables.php";
|
|
require "../include/functions.php";
|
|
|
|
$bdd = connect($dbhost, $dbname, $dbuser, $dbpass);
|
|
$req = $bdd->prepare("SELECT ID, username, creation_date, display_name, role, profile_picture, banner, bio FROM users WHERE ID = :user_id");
|
|
$req->bindParam(":user_id", $_SESSION['userid']);
|
|
$req->execute();
|
|
$resultat = $req->fetchAll(PDO::FETCH_ASSOC);
|
|
|
|
if($resultat) {
|
|
$user_id = $resultat[0]['ID'];
|
|
$user_name = $resultat[0]['username'];
|
|
$user_creation_date = $resultat[0]['creation_date'];
|
|
$user_display_name = $resultat[0]['display_name'];
|
|
$user_role = $resultat[0]['role'];
|
|
$user_pp = $resultat[0]['profile_picture'] == NULL ? "https://abs.twimg.com/sticky/default_profile_images/default_profile_400x400.png" : $resultat[0]['profile_picture'];
|
|
$user_banner = $resultat[0]['banner'] = NULL ? "./src/img/empty.jpg" : $resultat[0]['banner'];
|
|
$user_bio = $resultat[0]['bio'];
|
|
} else {
|
|
die("Erreur, utilisateur introuvable");
|
|
}
|
|
|
|
if(isset($_POST['user_display_name']) && isset($_POST['user_name']) && isset($_POST['user_bio']) && isset($_POST['user_pp']) && isset($_POST['user_banner'])) {
|
|
$bdd = connect($dbhost, $dbname, $dbuser, $dbpass);
|
|
$req = $bdd->prepare("SELECT ID FROM users WHERE username = :user_name AND NOT ID = :user_id");
|
|
$req->bindParam(":user_name", htmlspecialchars($_POST['user_name']));
|
|
$req->bindParam(":user_id", $_SESSION['userid'], PDO::PARAM_INT);
|
|
$req->execute();
|
|
$resultat = $req->fetchAll(PDO::FETCH_ASSOC);
|
|
if($resultat) {
|
|
$status = "Erreur, le nom d'utilisateur existe déjà.";
|
|
} else {
|
|
$bdd = connect($dbhost, $dbname, $dbuser, $dbpass);
|
|
$req = $bdd->prepare("UPDATE users SET (username, display_name, bio, profile_picture, banner) VALUES (:user_name, :user_display_name, :user_bio, :user_pp, :user_banner) WHERE ID = :user_id");
|
|
$req->bindParam(":user_name", htmlspecialchars($_POST['user_name']));
|
|
$req->bindParam(":user_display_name", htmlspecialchars($_POST['user_display_name']));
|
|
$req->bindParam(":user_bio", htmlspecialchars($_POST['user_bio']));
|
|
$req->bindParam(":user_pp", htmlspecialchars($_POST['user_pp']));
|
|
$req->bindParam(":user_banner", htmlspecialchars($_POST['user_banner']));
|
|
$req->bindParam(":user_id", $_SESSION['userid']);
|
|
if($req->execute()) {
|
|
$status = "Informations mises à jour";
|
|
} else {
|
|
$status = "Erreur, les informations n'ont pas pu être mises à jour.";
|
|
}
|
|
}
|
|
}
|
|
|
|
?>
|
|
<!DOCTYPE html>
|
|
<html lang="fr">
|
|
<head>
|
|
<meta name="robots" content="noindex">
|
|
<meta charset="UTF-8">
|
|
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
|
<link rel="stylesheet" href="./src/css/style.css">
|
|
<style>
|
|
@media (prefers-color-scheme: dark) {
|
|
.body {
|
|
<?=$theme_dark?>
|
|
}
|
|
<?php
|
|
for ($i = 0; $i < count($themes_dark); $i++) {
|
|
echo "#palette" . $i . " { ";
|
|
echo $themes_dark[$i];
|
|
echo " } ";
|
|
}
|
|
?>
|
|
}
|
|
@media (prefers-color-scheme: light) {
|
|
.body {
|
|
<?=$theme_light?>
|
|
}
|
|
<?php
|
|
for ($i = 0; $i < count($themes_light); $i++) {
|
|
echo "#palette" . $i . " { ";
|
|
echo $themes_light[$i];
|
|
echo " } ";
|
|
}
|
|
?>
|
|
}
|
|
|
|
.content {
|
|
padding: 0;
|
|
width: 100%;
|
|
}
|
|
|
|
.user-banner {
|
|
<?php
|
|
if (empty($user_banner)) {
|
|
echo "background-color: black";
|
|
} else {
|
|
echo "background-image: url('" . $user_banner . "');";
|
|
}
|
|
?>
|
|
}
|
|
|
|
.certification {
|
|
fill: <?php echo $user_role > 0 ? $certif_colors[$user_role] : "#000000"?>;
|
|
}
|
|
</style>
|
|
<link rel="icon" href="./src/img/favicon.ico">
|
|
<title><?=$title?></title>
|
|
</head>
|
|
<body class="body">
|
|
<header>
|
|
<div class="pancontent">
|
|
<div class="athena-container">
|
|
<a href="<?=$root?>" class="athena-link">
|
|
<img src="./src/img/athena-mono.png" class="athena">
|
|
</a>
|
|
</div>
|
|
<div class="content">
|
|
<div>
|
|
<div class="main-title">
|
|
<div class="title"><?=$header_title?></div>
|
|
<div class="subtitle"><?=$header_subtitle?></div>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
</header>
|
|
<nav>
|
|
<div class="pancontent">
|
|
<?php nav($nav);?>
|
|
</div>
|
|
</nav>
|
|
<main>
|
|
<div class="content">
|
|
<div>
|
|
<div class="user-profile">
|
|
<form action="#" method="post">
|
|
<div class="user-banner"></div>
|
|
<div class="user-header">
|
|
<div class="user-content">
|
|
<div class="user-pp"><img src="<?=$user_pp?>" class="user-pp-image"></div>
|
|
<div><a href="user.php?user=<?=$user_name?>">Voir le profil publique</a></div>
|
|
<div><?=$status?></div>
|
|
<div class="user-info">
|
|
<div class="names">
|
|
<div class="display-name"><input type="text" name="user_display_name" value="<?=$user_display_name?>" required/></div>
|
|
<div class="username"><input type="text" name="user_name" value="<?=$user_name?>" required/></div>
|
|
</div>
|
|
<div><textarea class="bio-input" name="user_bio" placeholder="Bio..." maxlength="100"><?=$user_bio?></textarea></div>
|
|
<div><label for="user_pp">URL PP : </label><input type="text" name="user_pp" placeholder="URL PP..." value="<?=$user_pp?>"></div>
|
|
<div><label for="user_banner">Banière : </label><input type="text" name="user_banner" placeholder="URL Banière.." value="<?=$user_banner?>"></div>
|
|
<div><input type="submit" value="Mettre à jour"></div>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
<div class="user-articles">
|
|
<div class="user-content">
|
|
<?php
|
|
$bdd = connect($dbhost, $dbname, $dbuser, $dbpass);
|
|
$search = isset($_GET['search']) ? "%" . htmlspecialchars($_GET['search']) . "%" : "%%";
|
|
$req = $bdd->prepare("SELECT ID, titre, date, auteur, image, resume FROM articles WHERE (titre LIKE :search OR ID LIKE :search OR auteur LIKE :search) AND classification <= :accreditation AND auteur = :user_id ORDER BY date DESC");
|
|
$req->bindParam(":search", $search);
|
|
$req->bindParam(":accreditation", $_SESSION['accreditation']);
|
|
$req->bindParam(":user_id", $user_id);
|
|
$req->execute();
|
|
$resultat = $req->fetchAll(PDO::FETCH_ASSOC);
|
|
echo "<h1>Vos articles</h1>";
|
|
echo "<form action='' method='get'><input type='text' placeholder='Article' name='search'><input type='submit' value='Rechercher'></form>";
|
|
|
|
if ($resultat) {
|
|
foreach($resultat as $row) {
|
|
$date = strtotime($row['date']);
|
|
echo '<div class="article-preview">';
|
|
echo '<div class="article-illustration">';
|
|
echo '<a href="?article=' . $row['ID'] . '" class="article-link"><img src="' . $row['image'] . '" class="article-miniature"></a>';
|
|
echo '</div>';
|
|
echo '<div class="article-details">';
|
|
echo '<div class="article-data">n° ' . $row['ID'] . ' | ' . date('d/m/Y', $date) . ' | '. $row['auteur'] . '</div>';
|
|
echo '<a href="?article=' . $row['ID'] . '" class="article-link">';
|
|
echo '<div class="article-titre">' . $row['titre'] . '</div>';
|
|
echo '</a>';
|
|
echo '<div class="article-resume">' . $row['resume'] . '</div>';
|
|
echo '</div>';
|
|
echo '</div> ';
|
|
}
|
|
} else {
|
|
echo "Vous n'avez publié aucun article...";
|
|
}
|
|
?>
|
|
</div>
|
|
</div>
|
|
</form>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
</main>
|
|
<footer>
|
|
<div class="content">
|
|
<div>
|
|
<div><?=$copyright?></div>
|
|
</div>
|
|
</div>
|
|
</footer>
|
|
</body>
|
|
</html>
|