useredit.php
Beginn einer Html 5 Seite einfügen
Anfang Inhaltsbereich einfügen
Entsprechende Datenbank Verbindung einfügen
Sitzung starten einfügen
Administrator zugang öffnen
<?php
if (isset($_SESSION['id']) && $_SESSION['id']==1)
{
?>
if (isset($_SESSION['id']) && $_SESSION['id']==1)
{
?>
Variablen definieren
<?php
$jump=isset($_GET['jump']) ? $_GET['jump'] : '';
$userid = isset($_GET['userid']) ? $_GET['userid'] : '';
?>
$jump=isset($_GET['jump']) ? $_GET['jump'] : '';
$userid = isset($_GET['userid']) ? $_GET['userid'] : '';
?>
Sprung variable definieren einfügen
Sprung variable setzen
<?php
if ($jump=='index')
{
?>
if ($jump=='index')
{
?>
User in Tabelle auflisten
<table>
<tr>
<td>ID</td>
<td>Username</td>
<td>Gesperrt?</td>
<td>Aktiviert?</td>
<td>Delete</td>
</tr>
<tr>
<td>1</td>
<td>Admin</td>
<td>Nie</td>
<td>Immer</td>
<td>Nie</td>
</tr>
<tr>
<td>ID</td>
<td>Username</td>
<td>Gesperrt?</td>
<td>Aktiviert?</td>
<td>Delete</td>
</tr>
<tr>
<td>1</td>
<td>Admin</td>
<td>Nie</td>
<td>Immer</td>
<td>Nie</td>
</tr>
<?php
$aid=1;
$stmt=$msql->prepare("SELECT id,username,active,block FROM usertable WHERE NOT id=?");
$stmt->bind_param('i',$aid);
$stmt->bind_result($userid,$username,$aktiv,$blok);
$aid=1;
$stmt=$msql->prepare("SELECT id,username,active,block FROM usertable WHERE NOT id=?");
$stmt->bind_param('i',$aid);
$stmt->bind_result($userid,$username,$aktiv,$blok);
<?php
$aid=1;
$stmt=$pdo->prepare("SELECT id,username,active,block FROM usertable WHERE NOT id=:aid");
$stmt->bindParam(':aid',$aid,PDO::PARAM_INT);
$stmt->bindColumn(1,$userid);
$stmt->bindColumn(2,$username);
$stmt->bindColumn(3,$aktiv);
$stmt->bindColumn(4,$blok);
$aid=1;
$stmt=$pdo->prepare("SELECT id,username,active,block FROM usertable WHERE NOT id=:aid");
$stmt->bindParam(':aid',$aid,PDO::PARAM_INT);
$stmt->bindColumn(1,$userid);
$stmt->bindColumn(2,$username);
$stmt->bindColumn(3,$aktiv);
$stmt->bindColumn(4,$blok);
$stmt->execute();
while ($stmt->fetch())
{
if($blok==0)$blockout='Nein';
if($blok==1)$blockout='Ja';
if($aktiv==0)$activout='Nein';
if($aktiv==1)$activout='Ja';
?>
while ($stmt->fetch())
{
if($blok==0)$blockout='Nein';
if($blok==1)$blockout='Ja';
if($aktiv==0)$activout='Nein';
if($aktiv==1)$activout='Ja';
?>
<tr>
<td><?php echo $userid;?></td>
<td>
<a href="useredit.php?jump=edit&userid=<?php echo $userid;?>"><?php echo $username;?></a>
</td>
<td><?php echo $blockout;?></td>
<td><?php echo $activout;?></td>
<td>
<a href="useredit.php?jump=delete&userid=<?php echo $userid;?>">Löschen</a>
</td>
</tr>
<td><?php echo $userid;?></td>
<td>
<a href="useredit.php?jump=edit&userid=<?php echo $userid;?>"><?php echo $username;?></a>
</td>
<td><?php echo $blockout;?></td>
<td><?php echo $activout;?></td>
<td>
<a href="useredit.php?jump=delete&userid=<?php echo $userid;?>">Löschen</a>
</td>
</tr>
<?php
}
?>
}
?>
</table>
Sprung variable beenden
<?php
}
?>
}
?>
User löschen
DELETE löscht sofort und unwiderbringlich die gesamte Zeile(id),
es ist ratsam vorher eine Abfrage zu erstellen.
es ist ratsam vorher eine Abfrage zu erstellen.
Sprung variable setzen
<?php
if ($jump=='delete')
{
?>
if ($jump=='delete')
{
?>
<?php
$stmt=$msql->prepare("DELETE FROM usertable WHERE id=?");
$stmt->bind_param("i",$userid);
if ($stmt->execute())
{
header("Location:useredit.php");
}
else
{
echo "Da ist was schief gelaufen";
}
?>
$stmt=$msql->prepare("DELETE FROM usertable WHERE id=?");
$stmt->bind_param("i",$userid);
if ($stmt->execute())
{
header("Location:useredit.php");
}
else
{
echo "Da ist was schief gelaufen";
}
?>
<?php
$stmt=$pdo->prepare("DELETE FROM usertable WHERE id=:id");
$stmt->bindParam(":id",$userid,PDO::PARAM_INT);
if ($stmt->execute())
{
header("Location:useredit.php");
}
else
{
echo "Da ist was schief gelaufen";
}
?>
$stmt=$pdo->prepare("DELETE FROM usertable WHERE id=:id");
$stmt->bindParam(":id",$userid,PDO::PARAM_INT);
if ($stmt->execute())
{
header("Location:useredit.php");
}
else
{
echo "Da ist was schief gelaufen";
}
?>
Sprung variable beenden
<?php
}
?>
}
?>
User editieren
Sprung variable setzen
<?php
if ($jump=='edit')
{
?>
if ($jump=='edit')
{
?>
Formulardaten werden verarbeitet, wenn das Formular gesendet wird einfügen
<?php
$blok=isset($_POST['block']) ? $_POST['block'] : '';
$stmt=$msql->prepare("UPDATE usertable SET block=? WHERE id=?");
$idia = $msql->real_escape_string($userid]);
$blog = $msql->real_escape_string($blok]);
$stmt->bind_param('ii', $blog,$idia);
$blok=isset($_POST['block']) ? $_POST['block'] : '';
$stmt=$msql->prepare("UPDATE usertable SET block=? WHERE id=?");
$idia = $msql->real_escape_string($userid]);
$blog = $msql->real_escape_string($blok]);
$stmt->bind_param('ii', $blog,$idia);
<?php
$blok=isset($_POST['block']) ? $_POST['block'] : '';
$stmt=$pdo->prepare("UPDATE usertable SET block=:blok WHERE id=:id");
$stmt->bindParam(":id",$userid,PDO::PARAM_INT);
$stmt->bindParam(":blok",$blok,PDO::PARAM_INT);
$blok=isset($_POST['block']) ? $_POST['block'] : '';
$stmt=$pdo->prepare("UPDATE usertable SET block=:blok WHERE id=:id");
$stmt->bindParam(":id",$userid,PDO::PARAM_INT);
$stmt->bindParam(":blok",$blok,PDO::PARAM_INT);
if ($stmt->execute())
{
header("Location:useredit.php");
}
else
{
echo "Da ist was schief gelaufen.";
}
{
header("Location:useredit.php");
}
else
{
echo "Da ist was schief gelaufen.";
}
Formulardaten verarbeitet ende
}
?>
?>
<?php
$stmt=$msql->prepare("SELECT id, username, usermail, datum, active, block FROM usertable WHERE id=?");
$stmt->bind_param("sssiii",$username,$mail,$regtime,$aktiv,$blok,$userid);
?>
$stmt=$msql->prepare("SELECT id, username, usermail, datum, active, block FROM usertable WHERE id=?");
$stmt->bind_param("sssiii",$username,$mail,$regtime,$aktiv,$blok,$userid);
?>
<?php
$stmt=$pdo->prepare("SELECT id, username, usermail, datum, active, block FROM usertable WHERE id=:id");
$stmt->bindParam(":id",$userid,PDO::PARAM_INT);
$stmt->bindColumn(1,$userid);
$stmt->bindColumn(2,$username);
$stmt->bindColumn(3,$mail);
$stmt->bindColumn(4,$regtime);
$stmt->bindColumn(5,$aktiv);
$stmt->bindColumn(6,$blok);
?>
$stmt=$pdo->prepare("SELECT id, username, usermail, datum, active, block FROM usertable WHERE id=:id");
$stmt->bindParam(":id",$userid,PDO::PARAM_INT);
$stmt->bindColumn(1,$userid);
$stmt->bindColumn(2,$username);
$stmt->bindColumn(3,$mail);
$stmt->bindColumn(4,$regtime);
$stmt->bindColumn(5,$aktiv);
$stmt->bindColumn(6,$blok);
?>
<?php
$stmt->execute();
$stmt->fetch();
$datum=new DateTime($regtime);
if($blok==0)$blogg='<option value="0" selected="selected">Nein</option>
<option value="1">Ja</option>';
if($blok==1)$blogg='<option value="1" selected="selected">Ja</option>
<option value="0">Nein</option>';
if($aktiv==0)$active='Nein';
if($aktiv==1)$active='Ja';
?>
$stmt->execute();
$stmt->fetch();
$datum=new DateTime($regtime);
if($blok==0)$blogg='<option value="0" selected="selected">Nein</option>
<option value="1">Ja</option>';
if($blok==1)$blogg='<option value="1" selected="selected">Ja</option>
<option value="0">Nein</option>';
if($aktiv==0)$active='Nein';
if($aktiv==1)$active='Ja';
?>
<form method="post">
<table>
<tr>
<td>User-ID:</td><td><?php echo $userid;?></td>
</tr>
<tr>
<td>Username:</td><td><?php echo $username;?></td>
</tr>
<tr>
<td>eMail:</td><td><?php echo $mail;?></td>
</tr>
<tr>
<td>Gesperrt?</td><td><select name="block"><?php echo $blogg;?></select></td>
</tr>
<tr>
<td>Aktiviert:</td><td><?php echo $active;?></td>
</tr>
<tr>
<td>Dabei seit:</td><td><?php echo $datum->format('d.m.Y - H:i:s');?></td>
</tr>
<tr>
<td><input class="butli" type="submit" name="save" value="Senden"></td>
<td><button class="butli" type="submit" formaction="useredit.php">zurück</button></td>
</tr>
</table>
</form>
<table>
<tr>
<td>User-ID:</td><td><?php echo $userid;?></td>
</tr>
<tr>
<td>Username:</td><td><?php echo $username;?></td>
</tr>
<tr>
<td>eMail:</td><td><?php echo $mail;?></td>
</tr>
<tr>
<td>Gesperrt?</td><td><select name="block"><?php echo $blogg;?></select></td>
</tr>
<tr>
<td>Aktiviert:</td><td><?php echo $active;?></td>
</tr>
<tr>
<td>Dabei seit:</td><td><?php echo $datum->format('d.m.Y - H:i:s');?></td>
</tr>
<tr>
<td><input class="butli" type="submit" name="save" value="Senden"></td>
<td><button class="butli" type="submit" formaction="useredit.php">zurück</button></td>
</tr>
</table>
</form>
Sprung variable beenden
<?php
}
?>
}
?>
Administrator zugang schliessen
<?php
}
else
{
header("Location: welcome.php");
exit();
}
?>
}
else
{
header("Location: welcome.php");
exit();
}
?>
Ende Inhaltsbereich einfügen
Ende einer Html Seite einfügen