1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89
|
<?php
session_start(); //---Démarrage de la session---//
if(!isset($_SESSION['pseudo'])) //---Si il ne s'est pas loggué...oust ! ---//
{
header("location: default.php"); //---Redirection---//
exit; //---Arrêt du script---//
}
else if(isset($_SESSION['pseudo']) && $_SESSION['droit']== 1) //---Si il n'a pas les droits---//
{
header("location: index.php?action=droit"); //---Redirection---//
exit; //---Arrêt du script---//
}
else
{
if(isset($_POST['modif_form'])) //---Renvois true si la variable est définie---//
{
if ( !empty( $_POST['pseudo'] ) && !empty( $_POST['password'] ) && !empty( $_POST['email'] ) && ereg("^.+@.+\\..+$", $_POST["email"]) )
{
$pseudo = $_POST['pseudo'];
$password = $_POST['password'];
$email = $_POST['email'];
$id = $_POST['id'];
//---Update---//
include('secure/configuration.php'); //---Appelle la connection---//
$sql = mysql_query("UPDATE profiles SET id = '".$id."' ,pseudo='".$pseudo."', password='".$password."', email='".$email."' WHERE id = ".$id);
$res=mysql_query($sql) or die (mysql_error());
}
else print("<h1>Erreur ! Champ(s) vide(s) ou incorrect(s)</h1>");
}
?>
<html>
<title>Update</title>
<link href="monstyle.css" rel="stylesheet" type="text/css">
<head>
<title> Modifier</title>
</head>
<body>
<h2>Modification de champ</h2><br><br>
<center>
<form action="<? echo $_SERVER['PHP_SELF']; ?>" method="post">
<select name="id">
<?php
//-----------------------------------//
//---Remplis la liste déroulante----//
//---------------------------------//
include('secure/configuration.php'); //---Appelle la connection---//
$result = mysql_query( "SELECT * FROM profiles" );
while( $resultat = mysql_fetch_object( $result ) )
{
echo "<OPTION VALUE=\"{$resultat->id}\"";
if ( isset($id) && $id == $resultat->id ) echo " SELECTED";
echo "> {$resultat->pseudo} - {$resultat->email}";
}
mysql_close();//---Fermer la connexion---//
echo "</select><p><input type=\"submit\" name=\"sub_form\" value=\"Modifier\" /></p></form>\n";
if(isset($_POST['sub_form']))
{
include('secure/configuration.php'); //---Appelle la connection---//
$id=$_POST['id'];
$sql = "SELECT * FROM profiles WHERE id = ".$id;
$res = mysql_query($sql) or die (mysql_error());
while($row = mysql_fetch_object($res))
{
//---On effectue la modification dans la meme page---//
echo "<form method=\"post\" action=\"{$_SERVER['PHP_SELF']}\">\n";
echo "<input type=\"hidden\" name=\"id\" value=".$id.">"; //---On cache le champ ID---//
echo "<font color=\"#FF0000\" face=\"Arial, Helvetica, sans-serif\"><strong>PSEUDO :</strong></font> ";
echo "<input name=\"pseudo\" type=\"text\" value=".$res->pseudo."> ";
echo "<font color=\"#FF0000\" face=\"Arial, Helvetica, sans-serif\"><strong>EMAIL :</strong></font> ";
echo "<input type=\"text\" name=\"email\" value=".$res->email."> ";
echo "<font color=\"#FF0000\" face=\"Arial, Helvetica, sans-serif\"><strong>PASSWORD :</strong></font> ";
echo "<input type=\"text\" name=\"password\" value=".$res->password."> ";
echo "<input type=\"submit\" name=\"modif_form\" value=\"modifier\"/>";
echo "</form></center>\n";
}
}
print("<br><br><center><a href=\"index.php\"><b> MENU </b></a></center>"); //---Retour au menu---//
} //---else de session---//
?>
</body>
</html> |