DjalimSimaila/MVC_Recettes
1
1
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #44 from ThomasRubini/manageuser

Browse Source
This commit is contained in:
Thomas Rubini 2023-01-20 19:14:06 +01:00 committed by GitHub
commit 92c4cd94d3
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
4 changed files with 88 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

40
Controllers/ManageUserController.php Normal file
View File

@ -0,0 +1,40 @@
<?php
final class ManageUserController
{
public function defaultAction(Array $A_urlParams = null, Array $A_postParams = null, Array $A_getParams = null)
{
self::searchAction($A_urlParams, $A_postParams, $A_getParams);
}
public function searchAction(Array $A_urlParams = null, Array $A_postParams = null, Array $A_getParams = null)
{
Session::admin_or_die();
if (isset($A_getParams["query"])) {
self::searchQueryViewAction($A_urlParams, $A_postParams, $A_getParams);
} else {
self::searchViewAction($A_urlParams, $A_postParams, $A_getParams);
}
}
private function searchViewAction(Array $A_urlParams = null, Array $A_postParams = null, Array $A_getParams = null)
{
View::show("manageUser/search");
}
private function searchQueryViewAction(Array $A_urlParams = null, Array $A_postParams = null, Array $A_getParams = null)
{
$S_query = $A_getParams["query"];
$O_userModel = new UserModel();
$A_results = $O_userModel->searchUsers($S_query);
var_dump($A_results);
echo "Terme de recherche choisi: $S_query";
View::show("manageUser/search");
}
}

11
Kernel/Session.php
View File

@ -64,4 +64,15 @@ final class Session
die(); die();
} }
} }
public static function admin_or_die(){
Session::login_or_die();
$O_userModel = new UserModel();
if (!$O_userModel->isUserAdmin($_SESSION["ID"])) {
header("Location: /");
die();
}
}
} }

30
Models/UserModel.php
View File

@ -70,6 +70,18 @@ final class UserModel
return $row["DISABLED"] !== 1; return $row["DISABLED"] !== 1;
} }
public function isUserAdmin($I_id)
{
$O_model = Model::get();
$stmt = $O_model->prepare("SELECT ADMIN FROM USER WHERE ID=:id");
$stmt->bindParam("id", $I_id);
$stmt->execute();
$row = $stmt->fetch();
if ($row === false) return false;
return $row["ADMIN"] === 1;
}
public function updateEmailByID($I_id, $S_newEmail){ public function updateEmailByID($I_id, $S_newEmail){
$O_model = Model::get(); $O_model = Model::get();
$stmt = $O_model->prepare("UPDATE USER SET EMAIL=:new_email WHERE ID=:id"); $stmt = $O_model->prepare("UPDATE USER SET EMAIL=:new_email WHERE ID=:id");
@ -92,4 +104,22 @@ final class UserModel
$stmt->bindParam("id", $I_id); $stmt->bindParam("id", $I_id);
$stmt->execute(); $stmt->execute();
} }
public function searchUsers($S_query)
{
$O_model = Model::get();
$stmt = $O_model->prepare("
SELECT * FROM USER
WHERE USER.USERNAME LIKE :full_query
OR USER.EMAIL LIKE :full_query
LIMIT 10
");
$S_full_query = "%".$S_query."%";
$stmt->bindParam("full_query", $S_full_query);
$stmt->execute();
$rows = $stmt->fetchAll();
return $rows;
}
} }

7
Views/manageUser/search.php Normal file
View File

@ -0,0 +1,7 @@
<p> Default view </p>
<p> Please search : </p>
<form action="/manageUser/search" method="GET">
<input name="query">
<input type="submit" value="Chercher">
</form>