Marle
/
webAdministracion
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
6 Commits
1 Branch
Tree: 2a9906e867
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2a9906e867'
${ noResults }
webAdministracion/processes/updateMoment.php

updateMoment.php 3.6KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121 
  1. <?php

  2. 

  3. 	require_once 'config.php';

  4. 	require_once 'dbh.inc.php';

  5. 	require_once 'checkLogin.php';

  6. 	

  7. 	

  8. 	// EXAMPLE INPUT...

  9. 	// array(4) { ["momentID"]=> string(3) "137" ["newTitle"]=> string(18) "saludos de saludos" ["newDescription"]=> string(18) "saludos de saludos" ["updateMoment"]=> string(0) "" }

  10. 

  11. 

  12. 	if(isset($_POST['updateMoment'])) {

  13. 		

  14. 

  15. 

  16. 		$momentID = mysqli_real_escape_string($connection, trim($_POST['momentID']));

  17. 		

  18. 		// Check that moment ID is not empty string

  19. 		// And that it's registered in the database

  20. 		if($momentID === "") {

  21. 			http_response_code(400);

  22. 			echo json_encode(array("error" => "Please specify moment ID."));

  23. 			exit();

  24. 		} else if(mysqli_query($connection, "SELECT * FROM subquestionnair WHERE id = '$momentID';")->num_rows !== 1) {

  25. 			http_response_code(400);

  26. 			echo json_encode(array("error" => "Given moment ID ($momentID) not in database."));

  27. 			exit();

  28. 		}

  29. 

  30. 

  31. 				

  32. 		// UPDATE TITLE

  33. 		if(isset($_POST['newTitle'])) {

  34. 		

  35. 			$newTitle = mysqli_real_escape_string($connection, trim($_POST['newTitle']));

  36. 			

  37. 			// Check that moment title is not empty

  38. 			// And that it's less than 60 characters in length (database limit)

  39. 			if($newTitle === "") {

  40. 				http_response_code(400);

  41. 				echo json_encode(array("error" => "Please specify title."));

  42. 				exit();

  43. 			} else if(mb_strlen($newTitle) > 60) {

  44. 				http_response_code(400);

  45. 				echo json_encode(array("error" => "Title too long (max. is 60 characters)."));

  46. 				exit();

  47. 			}

  48. 			

  49. 			$query = "UPDATE `subquestionnair` SET `title` = '$newTitle' WHERE `id` = '$momentID';";

  50. 			$result = mysqli_query($connection, $query) or die("Error: ".mysqli_error($connection));

  51.             

  52. 		}

  53. 		

  54. 		

  55. 		

  56. 		// UPDATE DESCRIPTION

  57. 		if(isset($_POST['newDescription'])) {

  58. 		

  59. 			$newDescription = mysqli_real_escape_string($connection, trim($_POST['newDescription']));

  60. 			

  61. 			// Check that moment description is not empty

  62. 			// And that it's less than 100 characters in length (database limit)

  63. 			if($newDescription === "") {

  64. 				http_response_code(400);

  65. 				echo json_encode(array("error" => "Please specify description."));

  66. 				exit();

  67. 			} else if(mb_strlen($newDescription) > 100) {

  68. 				http_response_code(400);

  69. 				echo json_encode(array("error" => "Description too long (max. is 100 characters)."));

  70. 				exit();

  71. 			}

  72. 			

  73. 			$query = "UPDATE `subquestionnair` SET `description` = '$newDescription' WHERE `id` = '$momentID';";

  74. 			$result = mysqli_query($connection, $query) or die("Error: ".mysqli_error($connection));

  75.             

  76. 		}

  77. 		

  78. 	

  79. 

  80. 		if(isset($_POST['newDate'])) {

  81. 		

  82. 			$momentDate = mysqli_real_escape_string($connection, trim($_POST['newDate']));

  83. 			

  84. 			// Check that momentDate is not an empty string

  85. 			// And that momentDate is in appropriate format YYYY-MM-DDThh:mm (e.g. 121212-12-12T12:12)

  86. 			// WARNING: only handling AST

  87. 			// HELP: https://www.codexworld.com/how-to/validate-date-input-string-in-php/

  88. 			

  89. 			function validDate($date) {

  90. 				$d = date_create_from_format("Y-m-d\TH:i", $date);

  91. 				return $d && date_format($d, "Y-m-d\TH:i") === $date;

  92. 			}

  93. 			

  94. 			if($momentDate === "") {

  95. 				http_response_code(400);

  96. 				echo json_encode(array("error" => "Please specify moment date."));

  97. 				exit();

  98. 			} else if(!validDate($momentDate)) {

  99. 				http_response_code(400);

  100. 				echo json_encode(array("error" => "Moment date ($momentDate) given in wrong format (use YYYY-MM-DDTHH:mm instead)."));

  101. 				exit();

  102. 			}

  103. 

  104. 			$queryMoment = 

  105. 			"UPDATE subquestionnair

  106. 			SET date_to_administer = '$momentDate'

  107. 			WHERE id = '$momentID';";

  108. 	

  109. 			if(!mysqli_query($connection, $queryMoment)) {

  110. 				http_response_code(400);

  111. 				echo json_encode(array("error" => "Couldn't update moment date. ".mysqli_error($connection)));

  112. 			}

  113. 			

  114. 			

  115. 			

  116. 

  117. 		}

  118. 

  119. 		

  120. 	}

  121.