wktr/intranet-apei
wktr/intranet-apei
1
0
Fork 0
Code Issues Wiki Activity
intranet-apei/Assets/functions.php

392 lines
8.6 KiB
PHP
Raw Blame History

<?php
function getRaccourcis($bdd)
{
$results = mysqli_query($bdd, "SELECT * FROM `raccourcis`");
$return = [];
return $results;
}
function connectBDD($domain, $user, $password, $db)
{
$link = mysqli_connect($domain, $user, $password, $db);
if (!$link) {
die('Erreur de connexion');
} else {
mysqli_set_charset($link, "utf8");
return $link;
}
}
function getActus($bdd, $limit)
{
$results = mysqli_query($bdd, "SELECT * FROM actus ORDER BY id DESC LIMIT " . $limit);
$actus = [];
while ($row = mysqli_fetch_assoc($results)) {
$actus[] = $row;
}
return $actus;
}
function validateCSRFToken($csrf_server, $csrf_client)
{
if (!hash_equals($csrf_server, $csrf_client)) {
echo ($csrf_client . " " . $csrf_server);
die('CSRF token validation failed');
}
return true;
}
function verifyPassword($hash_password, $tryPassword)
{
$hashTry = hash('sha256', $tryPassword);
if ($hash_password == $hashTry) {
return true;
}
return false;
}
function getHashPwd($bdd, $username)
{
$stmt = mysqli_prepare(
$bdd,
"SELECT password FROM utilisateurs WHERE username = ? LIMIT 1"
);
mysqli_stmt_bind_param($stmt, "s", $username);
mysqli_stmt_execute($stmt);
$result = mysqli_stmt_get_result($stmt);
$user = mysqli_fetch_assoc($result);
mysqli_stmt_close($stmt);
return $user; // retourne un tableau ou null
}
function getEvenements($bdd, $site)
{
$results = mysqli_query(
$bdd,
"SELECT * FROM evenements WHERE `site_id`='" . $site . "' ORDER BY date DESC"
);
$evenements = [];
while ($row = mysqli_fetch_assoc($results)) {
$evenements[] = $row;
}
return $evenements;
}
function getSite($bdd, $username)
{
$stmt = mysqli_prepare(
$bdd,
"SELECT site_id FROM utilisateurs WHERE username = ? LIMIT 1"
);
mysqli_stmt_bind_param($stmt, "s", $username);
mysqli_stmt_execute($stmt);
$result = mysqli_stmt_get_result($stmt);
$row = mysqli_fetch_assoc($result);
mysqli_stmt_close($stmt);
return $row ? $row['site_id'] : null;
}
function getSiteName($bdd, $site)
{
$stmt = mysqli_prepare(
$bdd,
"SELECT nom FROM site WHERE site_id = ? LIMIT 1"
);
mysqli_stmt_bind_param($stmt, "s", $site);
mysqli_stmt_execute($stmt);
$result = mysqli_stmt_get_result($stmt);
$row = mysqli_fetch_assoc($result);
mysqli_stmt_close($stmt);
return $row ? $row['nom'] : null;
}
function getEventName($bdd, $event)
{
$stmt = mysqli_prepare(
$bdd,
"SELECT titre FROM evenements WHERE id = ? LIMIT 1"
);
mysqli_stmt_bind_param($stmt, "s", $event);
mysqli_stmt_execute($stmt);
$result = mysqli_stmt_get_result($stmt);
$row = mysqli_fetch_assoc($result);
mysqli_stmt_close($stmt);
return $row ? $row['titre'] : null;
}
function getEventImages($bdd, $event)
{
$results = mysqli_query(
$bdd,
"SELECT * FROM gallerie WHERE `event_id`='" . $event . "'"
);
$evenements = [];
while ($row = mysqli_fetch_assoc($results)) {
$evenements[] = $row;
}
return $evenements;
}
function getEventBigImage($bdd, $event)
{
$stmt = mysqli_prepare(
$bdd,
"SELECT couverture FROM evenements WHERE id = ? LIMIT 1"
);
mysqli_stmt_bind_param($stmt, "s", $event);
mysqli_stmt_execute($stmt);
$result = mysqli_stmt_get_result($stmt);
$row = mysqli_fetch_assoc($result);
mysqli_stmt_close($stmt);
return $row ? $row['couverture'] : null;
}
function getUserPerms($bdd, $username)
{
$stmt = mysqli_prepare(
$bdd,
"SELECT permissions FROM utilisateurs WHERE username = ? LIMIT 1"
);
mysqli_stmt_bind_param($stmt, "s", $username);
mysqli_stmt_execute($stmt);
$result = mysqli_stmt_get_result($stmt);
$row = mysqli_fetch_assoc($result);
mysqli_stmt_close($stmt);
return $row ? $row['permissions'] : null;
}
function verifyPoids($bdd, $username, $minPoids)
{
$sql = "SELECT p.poids
FROM utilisateurs u
INNER JOIN permissions p ON u.permissions = p.nom
WHERE u.username = ?";
$stmt = mysqli_prepare($bdd, $sql);
if ($stmt) {
mysqli_stmt_bind_param($stmt, "s", $username);
mysqli_stmt_execute($stmt);
$result = mysqli_stmt_get_result($stmt);
$row = mysqli_fetch_assoc($result);
mysqli_stmt_close($stmt);
if ($row) {
return (int)$row['poids'] >= (int)$minPoids;
}
}
return false;
}
function updateEventTitle($bdd, $eventid, $titre)
{
$stmt = mysqli_prepare(
$bdd,
"UPDATE evenements SET titre = ? WHERE id = ?"
);
mysqli_stmt_bind_param($stmt, "si", $titre, $eventid);
mysqli_stmt_execute($stmt);
$success = mysqli_stmt_affected_rows($stmt) >= 0;
mysqli_stmt_close($stmt);
return $success;
}
function updateEventImage($bdd, $eventId, $image)
{
$stmt = mysqli_prepare(
$bdd,
"UPDATE evenements SET couverture = ? WHERE id = ?"
);
mysqli_stmt_bind_param($stmt, "si", $image, $eventId);
mysqli_stmt_execute($stmt);
$success = mysqli_stmt_affected_rows($stmt) >= 0;
mysqli_stmt_close($stmt);
return $success;
}
function getSpecificActus($bdd, $id)
{
$results = mysqli_query($bdd, "SELECT * FROM `actus` WHERE `id`=" . $id);
$return = [];
while ($row = mysqli_fetch_assoc($results)) {
$return[] = $row;
}
return $return;
}
function updateActuImage($bdd, $actuId, $image)
{
$stmt = mysqli_prepare(
$bdd,
"UPDATE actus SET image = ? WHERE id = ?"
);
mysqli_stmt_bind_param($stmt, "si", $image, $actuId);
mysqli_stmt_execute($stmt);
$success = mysqli_stmt_affected_rows($stmt) >= 0;
mysqli_stmt_close($stmt);
return $success;
}
function updateActuTitle($bdd, $actuId, $titre)
{
$stmt = mysqli_prepare(
$bdd,
"UPDATE actus SET titre = ? WHERE id = ?"
);
mysqli_stmt_bind_param($stmt, "si", $titre, $actuId);
mysqli_stmt_execute($stmt);
$success = mysqli_stmt_affected_rows($stmt) >= 0;
mysqli_stmt_close($stmt);
return $success;
}
function updateActuContent($bdd, $actuId, $content)
{
$stmt = mysqli_prepare(
$bdd,
"UPDATE actus SET actu = ? WHERE id = ?"
);
mysqli_stmt_bind_param($stmt, "si", $content, $actuId);
mysqli_stmt_execute($stmt);
$success = mysqli_stmt_affected_rows($stmt) >= 0;
mysqli_stmt_close($stmt);
return $success;
}
function createEvent($bdd, $titre, $date, $site)
{
$sql = "INSERT INTO evenements (date, titre, couverture, site_id) VALUES (?, ?, '', ?)";
$req = $bdd->prepare($sql);
$req->bind_param("ssi", $date, $titre, $site);
$req->execute();
return $bdd->insert_id;
}
function deleteEvent($bdd, $eventId)
{
$sql = "DELETE FROM evenements WHERE id = ?";
$req = $bdd->prepare($sql);
$req->bind_param("i", $eventId);
$req->execute();
return $req->affected_rows > 0;
}
function deleteActu($bdd, $eventId)
{
$sql = "DELETE FROM actus WHERE id = ?";
$req = $bdd->prepare($sql);
$req->bind_param("i", $eventId);
$req->execute();
return $req->affected_rows > 0;
}
function createActu($bdd, $titre, $actu, $date, $idSite)
{
$stmt = mysqli_prepare(
$bdd,
"INSERT INTO actus (titre, actu, date, idSite) VALUES (?, ?, ?, ?)"
);
mysqli_stmt_bind_param($stmt, "sssi", $titre, $actu, $date, $idSite);
mysqli_stmt_execute($stmt);
$actuId = mysqli_insert_id($bdd);
mysqli_stmt_close($stmt);
return $actuId;
}
function createShortcut($bdd, $nom, $image, $shortcut)
{
$stmt = mysqli_prepare(
$bdd,
"INSERT INTO raccourcis (nom, image, url) VALUES (?, ?, ?)"
);
mysqli_stmt_bind_param($stmt, "sss", $nom, $image, $shortcut);
mysqli_stmt_execute($stmt);
$actuId = mysqli_insert_id($bdd);
mysqli_stmt_close($stmt);
return $actuId;
}
function updateRaccourcis($bdd, $idRaccourcis, $nom, $image, $url)
{
$stmt = mysqli_prepare(
$bdd,
"UPDATE raccourcis SET nom = ?, image = ?, url = ? WHERE id = ?"
);
mysqli_stmt_bind_param($stmt, "sssi", $nom, $image, $url, $idRaccourcis);
mysqli_stmt_execute($stmt);
$success = mysqli_stmt_affected_rows($stmt) >= 0;
mysqli_stmt_close($stmt);
return $success;
}
function getSpecificRaccourcis($bdd, $id)
{
$results = mysqli_query($bdd, "SELECT * FROM `raccourcis` WHERE `id`=" . $id);
$return = [];
while ($row = mysqli_fetch_assoc($results)) {
$return[] = $row;
}
return $return;
}
Reference in a new issue View git blame Copy permalink