From 4a7a91ecd964f1cb0827765078314d04ac6534dc Mon Sep 17 00:00:00 2001
From: "K. Nobel" <kevlebon@gmailcom>
Date: Thu, 2 Feb 2017 14:20:17 +0100
Subject: [PATCH 01/19] Fixed bug (not showing profile when on own profile)

---
 website/public/profile.php | 7 +------
 1 file changed, 1 insertion(+), 6 deletions(-)

diff --git a/website/public/profile.php b/website/public/profile.php
index d9a317c..aa4cf7c 100644
--- a/website/public/profile.php
+++ b/website/public/profile.php
@@ -21,19 +21,14 @@ include_once("../queries/calcAge.php");
 
 if(empty($_GET["username"])) {
     $userID = $_SESSION["userID"];
-    $showProfile = True;
 } else {
     $userID = getUserID($_GET["username"]);
-    $showProfile = False;
 }
 
 $user = selectUser($_SESSION["userID"], $userID);
 $profile_friends = selectAllFriends($userID);
 $profile_groups = selectAllUserGroups($userID);
-$showProfile = $showProfile || $user["showProfile"] || ($user["status"] == 'confirmed');
-echo " friendship status: " . $user["status"];
-echo " showprofile: $showProfile";
-echo " userID: " . $user["userID"];
+$showProfile = $user["showProfile"] || ($user["status"] == 'confirmed') || $_SESSION["userID"] == $userID;
 
 
 if ($userID == $_SESSION["userID"]) {

From 52e40242e6b59d5eb1a809bb664a4b27707ee9f5 Mon Sep 17 00:00:00 2001
From: Lars van Hijfte <larsvanhijfte@hotmail.com>
Date: Thu, 2 Feb 2017 14:50:51 +0100
Subject: [PATCH 02/19] Added "add group" under group menu

---
 website/views/menu.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/website/views/menu.php b/website/views/menu.php
index dab8fce..1c1cf01 100644
--- a/website/views/menu.php
+++ b/website/views/menu.php
@@ -12,6 +12,8 @@
         </h4>
         <ul id="menu-groups-list" class="nav-list">
         </ul>
+    </section>
+    <section>
         <ul class="nav-list">
             <li>
                 <a href="#">

From 33399639b1278e893460322514be2083f9af91d9 Mon Sep 17 00:00:00 2001
From: Lars van Hijfte <larsvanhijfte@hotmail.com>
Date: Thu, 2 Feb 2017 14:51:37 +0100
Subject: [PATCH 03/19] Added support for iframe "niet slecht"

---
 website/public/bits/niet-slecht.php | 8 ++++++++
 website/public/bits/niet_slecht.php | 7 -------
 2 files changed, 8 insertions(+), 7 deletions(-)
 create mode 100644 website/public/bits/niet-slecht.php
 delete mode 100644 website/public/bits/niet_slecht.php

diff --git a/website/public/bits/niet-slecht.php b/website/public/bits/niet-slecht.php
new file mode 100644
index 0000000..432fe41
--- /dev/null
+++ b/website/public/bits/niet-slecht.php
@@ -0,0 +1,8 @@
+<?php
+if (isset($_GET["groupname"])) {
+    $url = "https://myhyvesbookplus.nl/~lars/group.php?groupname=" . $_GET["groupname"];
+} else {
+    $url = "https://myhyvesbookplus.nl/";
+}
+?>
+<a href="<?= $url ?>" target='_blank'><img style="width: 100%; height: auto;" src="../external/nietslecht_button.png" alt='\"Niet slecht\" ons op MyHyvesbook+' /></a>
diff --git a/website/public/bits/niet_slecht.php b/website/public/bits/niet_slecht.php
deleted file mode 100644
index 05b981a..0000000
--- a/website/public/bits/niet_slecht.php
+++ /dev/null
@@ -1,7 +0,0 @@
-<?php
-/**
- * Created by PhpStorm.
- * User: polo
- * Date: 2-2-17
- * Time: 14:02
- */
\ No newline at end of file

From 7f48cae019c80cc7bf60ddda2cc04ea01216380c Mon Sep 17 00:00:00 2001
From: Lars van Hijfte <larsvanhijfte@hotmail.com>
Date: Thu, 2 Feb 2017 14:57:50 +0100
Subject: [PATCH 04/19] Added uderline in link posts

---
 website/public/styles/post-popup.css | 4 ++++
 website/public/styles/profile.css    | 4 ++++
 2 files changed, 8 insertions(+)

diff --git a/website/public/styles/post-popup.css b/website/public/styles/post-popup.css
index 3f37ffd..24badcb 100644
--- a/website/public/styles/post-popup.css
+++ b/website/public/styles/post-popup.css
@@ -48,6 +48,10 @@
     width: 90%;
 }
 
+.post-content a {
+    text-decoration: underline;
+}
+
 .commentfield {
     margin-bottom: 20px;
 }
diff --git a/website/public/styles/profile.css b/website/public/styles/profile.css
index dbb3d24..a69414c 100644
--- a/website/public/styles/profile.css
+++ b/website/public/styles/profile.css
@@ -94,6 +94,10 @@ div.posts div.post {
     word-wrap: break-word;
 }
 
+div.posts div.post a {
+    text-decoration: underline;
+}
+
 div.posts div.post:hover {
     box-shadow: 0 10px 20px rgba(0,0,0,0.19), 0 6px 6px rgba(0,0,0,0.23);
 }

From 8a3cfebf55bbc8380034c25741f52682beb2b9aa Mon Sep 17 00:00:00 2001
From: "K. Nobel" <kevlebon@gmailcom>
Date: Thu, 2 Feb 2017 15:34:45 +0100
Subject: [PATCH 05/19] Redirect to 404 from profile and group

---
 website/public/group.php       | 9 ++++++++-
 website/public/profile.php     | 7 ++++++-
 website/queries/group_page.php | 7 ++++++-
 website/queries/user.php       | 4 +++-
 4 files changed, 23 insertions(+), 4 deletions(-)

diff --git a/website/public/group.php b/website/public/group.php
index bb393e3..84726fa 100644
--- a/website/public/group.php
+++ b/website/public/group.php
@@ -13,9 +13,16 @@
 
 include_once("../queries/group_page.php");
 
-$group = selectGroupByName($_GET["groupname"]);
+if(!$group = selectGroupByName($_GET["groupname"])) {
+    header("HTTP/1.0 404 Not Found");
+    header("Location: error/404.php");
+    die();
+}
+
+
 $members = selectGroupMembers($group["groupID"]);
 
+
 /*
  * This view adds the main layout over the screen.
  * Header, menu, footer.
diff --git a/website/public/profile.php b/website/public/profile.php
index aa4cf7c..126c87f 100644
--- a/website/public/profile.php
+++ b/website/public/profile.php
@@ -25,7 +25,12 @@ if(empty($_GET["username"])) {
     $userID = getUserID($_GET["username"]);
 }
 
-$user = selectUser($_SESSION["userID"], $userID);
+if(!$user = selectUser($_SESSION["userID"], $userID)) {
+    header("HTTP/1.0 404 Not Found");
+    header("Location: error/404.php");
+    die();
+}
+
 $profile_friends = selectAllFriends($userID);
 $profile_groups = selectAllUserGroups($userID);
 $showProfile = $user["showProfile"] || ($user["status"] == 'confirmed') || $_SESSION["userID"] == $userID;
diff --git a/website/queries/group_page.php b/website/queries/group_page.php
index f2f028f..a6676c4 100644
--- a/website/queries/group_page.php
+++ b/website/queries/group_page.php
@@ -33,7 +33,12 @@ function selectGroupByName($name) {
     if (!$stmt->execute()) {
         return False;
     }
-    return $stmt->fetch();
+    $row = $stmt->fetch();
+    if($row["groupID"] == null) {
+        return False;
+    }
+
+    return $row;
 }
 
 function selectGroupRole(int $groupID) {
diff --git a/website/queries/user.php b/website/queries/user.php
index 972937d..836c956 100644
--- a/website/queries/user.php
+++ b/website/queries/user.php
@@ -101,7 +101,9 @@ function selectUser($me, $other) {
 
     $stmt->bindParam(':me', $me, PDO::PARAM_INT);
     $stmt->bindParam(':other', $other, PDO::PARAM_INT);
-    $stmt->execute();
+    if(!$stmt->execute() || $stmt->rowCount() == 0) {
+        return False;
+    }
     return $stmt->fetch();
 }
 

From 1c53eab2fa77c02aaeb7340a38b053d38c0cf335 Mon Sep 17 00:00:00 2001
From: "K. Nobel" <kevlebon@gmailcom>
Date: Thu, 2 Feb 2017 15:50:12 +0100
Subject: [PATCH 06/19] Fixed user group list on profile page.

---
 website/queries/user.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/website/queries/user.php b/website/queries/user.php
index 06487be..422edc4 100644
--- a/website/queries/user.php
+++ b/website/queries/user.php
@@ -122,7 +122,7 @@ function selectAllUserGroups($userID) {
             `group_page`.`groupID` = `group_member`.`groupID`
         WHERE
             `userID` = :userID AND
-            `role` = 'member'
+            `role` IN ('member', 'mod', 'admin')
     ");
 
     $stmt->bindParam(':userID', $userID, PDO::PARAM_INT);

From 380d8fa83a7ea8780f09fd8c1a8df7965b8f45b1 Mon Sep 17 00:00:00 2001
From: Marijn Jansen <marijn@jansen.onl>
Date: Thu, 2 Feb 2017 16:01:45 +0100
Subject: [PATCH 07/19] Group Shit

---
 website/public/createGroup.php  | 36 +++++++++++++++
 website/public/groupAdmin.php   | 46 ++++++++++++++++++++
 website/queries/createGroup.php | 37 ++++++++++++++++
 website/queries/groupAdmin.php  | 61 ++++++++++++++++++++++++++
 website/queries/picture.php     | 12 ++---
 website/views/createGroup.php   | 42 ++++++++++++++++++
 website/views/groupAdmin.php    | 77 +++++++++++++++++++++++++++++++++
 website/views/menu.php          |  2 +-
 8 files changed, 306 insertions(+), 7 deletions(-)
 create mode 100644 website/public/createGroup.php
 create mode 100644 website/public/groupAdmin.php
 create mode 100644 website/queries/createGroup.php
 create mode 100644 website/queries/groupAdmin.php
 create mode 100644 website/views/createGroup.php
 create mode 100644 website/views/groupAdmin.php

diff --git a/website/public/createGroup.php b/website/public/createGroup.php
new file mode 100644
index 0000000..ffeb6e3
--- /dev/null
+++ b/website/public/createGroup.php
@@ -0,0 +1,36 @@
+<?php
+require_once "../queries/createGroup.php";
+require_once "../queries/connect.php";
+require_once "../queries/alerts.php"?>
+<!DOCTYPE html>
+<html>
+<head>
+    <?php include("../views/head.php"); ?>
+    <style>
+        @import url("styles/settings.css");
+    </style>
+</head>
+<body>
+<?php
+/*
+ * This view adds the main layout over the screen.
+ * Header and menu.
+ */
+include("../views/main.php");
+if ($_SERVER["REQUEST_METHOD"] == "POST") {
+    try {
+        createGroup();
+    } catch (AlertMessage $e) {
+
+    }
+    $groupname = $_POST["groupName"];
+    header("location: group.php?groupname=$groupname");
+}
+/* Add your view files here. */
+include("../views/createGroup.php");
+
+/* This adds the footer. */
+include("../views/footer.php");
+?>
+</body>
+</html>
diff --git a/website/public/groupAdmin.php b/website/public/groupAdmin.php
new file mode 100644
index 0000000..13ff7e0
--- /dev/null
+++ b/website/public/groupAdmin.php
@@ -0,0 +1,46 @@
+<?php
+require_once "../queries/picture.php";
+require_once "../queries/groupAdmin.php";
+require_once "../queries/alerts.php";
+?>
+<!DOCTYPE html>
+<html>
+<head>
+    <?php include("../views/head.php"); ?>
+<style>
+    /*Insert own stylesheet here ;)*/
+    @import url("styles/settings.css");
+</style>
+</head>
+<body>
+<?php
+/*
+ * This view adds the main layout over the screen.
+ * Header and menu.
+ */
+include("../views/main.php");
+$alertClass;
+$alertMessage;
+if ($_SERVER["REQUEST_METHOD"] == "POST") {
+    try {
+        if ($_POST["form"] == "group") {
+            updateGroupSettings($_POST["groupID"]);
+        } else if ($_POST["form"] == "picture") {
+            if (checkGroupAdmin($_POST["groupID"], $_SESSION["userID"])) {
+                updateAvatar($_POST["groupID"]);
+            }
+        }
+    } catch (AlertMessage $w) {
+        $alertClass = $w->getClass();
+        $alertMessage = $w->getMessage();
+    }
+}
+
+/* Add your view files here. */
+include("../views/groupAdmin.php");
+
+/* This adds the footer. */
+include("../views/footer.php");
+?>
+</body>
+</html>
diff --git a/website/queries/createGroup.php b/website/queries/createGroup.php
new file mode 100644
index 0000000..20ee28b
--- /dev/null
+++ b/website/queries/createGroup.php
@@ -0,0 +1,37 @@
+<?php
+require_once "../queries/checkInput.php";
+require_once "../queries/picture.php";
+require_once "../queries/alerts.php";
+function createGroup()
+{
+    $createGroup = prepareQuery("
+    INSERT INTO
+        `group_page` (`name`, `description`)
+    VALUES (:name, :description);
+    ");
+    $createGroup->bindValue(':name', test_input($_POST["groupName"]), PDO::PARAM_STR);
+    $createGroup->bindValue(':description', test_input($_POST["bio"]));
+    $createGroup->execute();
+
+    $getGroupID = prepareQuery("
+    SELECT
+        `groupID`
+    FROM
+        `group_page`
+    WHERE
+        `name` LIKE :name");
+    $getGroupID->bindValue(':name', test_input($_POST["groupName"]), PDO::PARAM_STR);
+    $getGroupID->execute();
+    $groupID = $getGroupID->fetch()["groupID"];
+
+    $makeUserAdmin = prepareQuery("
+    INSERT INTO
+        `group_member` (userID, groupID, role)
+    VALUES (:userID, :groupID, 'admin')
+    ");
+    $makeUserAdmin->bindValue(":userID", $_SESSION["userID"]);
+    $makeUserAdmin->bindValue("groupID", $groupID);
+    $makeUserAdmin->execute();
+
+    updateAvatar($groupID);
+}
\ No newline at end of file
diff --git a/website/queries/groupAdmin.php b/website/queries/groupAdmin.php
new file mode 100644
index 0000000..ae2abd3
--- /dev/null
+++ b/website/queries/groupAdmin.php
@@ -0,0 +1,61 @@
+<?php
+function getGroupSettings(int $groupID) {
+    $stmt = prepareQuery("
+    SELECT
+        `name`,
+        `picture`,
+        `description`
+    FROM
+        `group_page`
+    WHERE
+        `groupID` = :groupID
+    ");
+    $stmt->bindParam(":groupID", $groupID);
+    $stmt->execute();
+    return $stmt->fetch();
+}
+
+function updateGroupSettings(int $groupID)
+{
+    if (!checkGroupAdmin($groupID, $_SESSION["userID"])) {
+        throw new AngryAlert("Je hebt geen rechten in deze groep");
+    }
+    $stmt = prepareQuery("
+    UPDATE
+        `group_page`
+    SET
+      `name` = :name,
+      `description` = :bio
+    WHERE
+      `groupID` = :groupID
+    ");
+    $stmt->bindValue(":bio", test_input($_POST["bio"]));
+    $stmt->bindValue(":name", test_input($_POST["name"]));
+    $stmt->bindValue(":groupID", test_input($_POST["groupID"]));
+    $stmt->execute();
+    if ($stmt->rowCount()) {
+        throw new HappyAlert("Groep aangepast!");
+    } else {
+        throw new AngryAlert("Er is iets mis gegaan");
+    }
+}
+
+function checkGroupAdmin(int $groupID, int $userID) : bool {
+    $stmt = prepareQuery("
+    SELECT
+        `role`
+    FROM
+        `group_member`
+    WHERE
+        `groupID` = :groupID AND 
+        `userID` = :userID
+    ");
+    $stmt->bindValue(":userID", $userID);
+    $stmt->bindValue(":groupID", $groupID);
+    $stmt->execute();
+    if (!$stmt->rowCount()) {
+        return false;
+    }
+    $role = $stmt->fetch()["role"];
+    return ($role == "admin");
+}
\ No newline at end of file
diff --git a/website/queries/picture.php b/website/queries/picture.php
index 8e99d9a..ba27f72 100644
--- a/website/queries/picture.php
+++ b/website/queries/picture.php
@@ -6,7 +6,7 @@
  * @throws AngryAlert
  * @throws HappyAlert
  */
-function updateAvatar(bool $group = false) {
+function updateAvatar(int $group = 0) {
     $publicDir = "/var/www/html/public/";
     $tmpImg = $_FILES["pp"]["tmp_name"];
     $avatarDir = $group ? "uploads/groupavatar/" : "uploads/profilepictures/";
@@ -16,17 +16,17 @@ function updateAvatar(bool $group = false) {
         if ($_FILES["pp"]["size"] > 4000000) {
             throw new AngryAlert("Bestand is te groot, maximaal 4MB toegestaan.");
         }
-        $relativePath = $avatarDir . $_SESSION["userID"] . "_avatar.gif";
-        $group ? removeOldGroupAvatar($_POST["groupID"]) : removeOldUserAvatar();
+        $relativePath = $group ? $avatarDir . $group . "_avatar.gif"  : $avatarDir . $_SESSION["userID"] . "_avatar.gif";
+        $group ? removeOldGroupAvatar($group) : removeOldUserAvatar();
         move_uploaded_file($tmpImg, $publicDir . $relativePath);
     } else {
-        $relativePath = $avatarDir . $_SESSION["userID"] . "_avatar.png";
+        $relativePath = $group ? $avatarDir . $group . "_avatar.png": $avatarDir . $_SESSION["userID"] . "_avatar.png";
         $scaledImg = scaleAvatar($tmpImg);
-        $group ? removeOldGroupAvatar($_POST["groupID"]) : removeOldUserAvatar();
+        $group ? removeOldGroupAvatar($group) : removeOldUserAvatar();
         imagepng($scaledImg, $publicDir . $relativePath);
     }
 
-    $group ? setGroupAvatarToDatabase("../" . $relativePath, $_POST["groupID"]) : setUserAvatarToDatabase("../" . $relativePath);
+    $group ? setGroupAvatarToDatabase("../" . $relativePath, $group) : setUserAvatarToDatabase("../" . $relativePath);
     throw new HappyAlert("Profielfoto veranderd.");
 }
 
diff --git a/website/views/createGroup.php b/website/views/createGroup.php
new file mode 100644
index 0000000..736fc45
--- /dev/null
+++ b/website/views/createGroup.php
@@ -0,0 +1,42 @@
+<?php
+?>
+
+<div class="content">
+    <div class="createGroup">
+        <form class="platform settings" method="post" action="createGroup.php" enctype="multipart/form-data">
+            <h5>Maak een groep!</h5>
+            <ul>
+                <li>
+                    <label for="groupName">Groepsnaam</label>
+                    <input type="text"
+                           name="groupName"
+                           id="groupName"
+                           maxlength="63"
+                           placeholder="Groepsnaam"
+                    >
+                </li>
+                <li>
+                    <label for="bio">Bio</label>
+                    <textarea name="bio"
+                              rows="5"
+                              title="bio"
+                              id="bio"
+                              maxlength="1000"
+                    ></textarea>
+                </li>
+                <li>
+                    <label>Selecteer foto</label>
+                    <input type="file"
+                           name="pp"
+                           accept="image/*"
+                           size="4000000"
+                    >
+                </li>
+                <li>
+                    <label></label>
+                    <button type="submit">Maak Groep</button>
+                </li>
+            </ul>
+        </form>
+    </div>
+</div>
diff --git a/website/views/groupAdmin.php b/website/views/groupAdmin.php
new file mode 100644
index 0000000..66b38f5
--- /dev/null
+++ b/website/views/groupAdmin.php
@@ -0,0 +1,77 @@
+<?php
+require_once "../queries/connect.php";
+require_once "../queries/groupAdmin.php";
+require_once "../queries/checkInput.php";
+$groupinfo = getGroupSettings($_GET["groupID"]);
+?>
+<div class="content">
+    <div class="settings">
+        <?php if ($_SERVER["REQUEST_METHOD"] == "POST"): ?>
+            <div class='platform settings-message <?=$alertClass?>'>
+                <?=$alertMessage?>
+            </div>
+        <?php endif; ?>
+        <form class="platform" method="post">
+            <h5>Groep Instellingen</h5>
+            <input type="hidden" name="groupID" value="<?=$_GET["groupID"]?>">
+            <ul>
+                <li>
+                    <label for="name">Groepsnaam</label>
+                    <input type="text"
+                           name="name"
+                           id="name"
+                           maxlength="63"
+                           placeholder="Groepsnaam"
+                           title="Groepsnaam"
+                           value="<?=$groupinfo["name"]?>"
+                    >
+                </li>
+                <li>
+                    <label for="bio">Bio</label>
+                    <textarea name="bio"
+                              rows="5"
+                              title="bio"
+                              id="bio"
+                              maxlength="1000"
+                    ><?=$groupinfo["description"]?></textarea>
+                    <label></label>
+                </li>
+                <li>
+                    <label></label>
+                    <button type="submit"
+                            name="form"
+                            value="group"
+                            class="fa fa-save"
+                    > Opslaan</button>
+                </li>
+            </ul>
+        </form>
+        <form class="platform" method="post" enctype="multipart/form-data">
+            <h5>Verander groepsafbeelding.</h5>
+            <input type="hidden" name="groupID" value="<?=$_GET["groupID"]?>">
+            <ul>
+                <li>
+                    <label>Huidige profielfoto</label>
+                    <img src="<?=$groupinfo["picture"]?>"
+                         class="group-picture"
+                    >
+                </li>
+                <li>
+                    <label>Selecteer foto</label>
+                    <input type="file"
+                           name="pp"
+                           accept="image/*"
+                           size="4000000"
+                    >
+                </li>
+                <li>
+                    <label></label>
+                    <button type="submit"
+                            name="form"
+                            value="picture"
+                    >Verander profielfoto</button>
+                </li>
+            </ul>
+        </form>
+    </div>        
+</div>
\ No newline at end of file
diff --git a/website/views/menu.php b/website/views/menu.php
index dab8fce..03e0f56 100644
--- a/website/views/menu.php
+++ b/website/views/menu.php
@@ -14,7 +14,7 @@
         </ul>
         <ul class="nav-list">
             <li>
-                <a href="#">
+                <a href="createGroup.php">
                     Maak een groep aan
                 </a>
             </li>

From 9165f8fa1b326928174f5faead81ecbc91558606 Mon Sep 17 00:00:00 2001
From: Marijn Jansen <marijn@jansen.onl>
Date: Thu, 2 Feb 2017 16:18:15 +0100
Subject: [PATCH 08/19] Check if file had been uploaded.

---
 website/queries/picture.php  | 3 +++
 website/views/groupAdmin.php | 1 +
 2 files changed, 4 insertions(+)

diff --git a/website/queries/picture.php b/website/queries/picture.php
index ba27f72..9c92540 100644
--- a/website/queries/picture.php
+++ b/website/queries/picture.php
@@ -7,6 +7,9 @@
  * @throws HappyAlert
  */
 function updateAvatar(int $group = 0) {
+    if (!array_key_exists("pp", $_FILES)) {
+        throw new AngryAlert("Geen afbeelding meegegeven!");
+    }
     $publicDir = "/var/www/html/public/";
     $tmpImg = $_FILES["pp"]["tmp_name"];
     $avatarDir = $group ? "uploads/groupavatar/" : "uploads/profilepictures/";
diff --git a/website/views/groupAdmin.php b/website/views/groupAdmin.php
index 66b38f5..aab4eea 100644
--- a/website/views/groupAdmin.php
+++ b/website/views/groupAdmin.php
@@ -62,6 +62,7 @@ $groupinfo = getGroupSettings($_GET["groupID"]);
                            name="pp"
                            accept="image/*"
                            size="4000000"
+                           required
                     >
                 </li>
                 <li>

From f8c9454b85a2e85961e9421555f8c0d7054f3b3c Mon Sep 17 00:00:00 2001
From: Lars van Hijfte <larsvanhijfte@hotmail.com>
Date: Thu, 2 Feb 2017 17:43:32 +0100
Subject: [PATCH 09/19] empty SessionID sends the user to login page

If the session is empty, it now sends you to the login page with a safed url so it can revert you back to the right page after login
---
 website/public/API/deletePost.php    |  8 ++++----
 website/public/API/postComment.php   |  8 ++++----
 website/public/API/postPost.php      |  7 ++++---
 website/public/API/sendMessage.php   |  7 ++++---
 website/public/js/chat.js            |  2 ++
 website/public/js/main.js            |  5 ++---
 website/public/js/masonry.js         | 10 +++++++++-
 website/public/js/post.js            |  4 ++++
 website/public/styles/post-popup.css |  2 +-
 website/views/head.php               |  4 ++--
 website/views/post-view.php          | 17 ++++++++---------
 11 files changed, 44 insertions(+), 30 deletions(-)

diff --git a/website/public/API/deletePost.php b/website/public/API/deletePost.php
index fffadf5..37f89a1 100644
--- a/website/public/API/deletePost.php
+++ b/website/public/API/deletePost.php
@@ -3,10 +3,10 @@ session_start();
 
 require_once "../../queries/post.php";
 require_once "../../queries/user.php";
-
-if (isset($_SESSION["userID"]) and
-    getRoleByID($_SESSION["userID"]) != 'frozen' and
-    getRoleByID($_SESSION["userID"]) != 'banned') {
+if (!isset($_SESSION["userID"])) {
+    echo "logged out";
+} else if (getRoleByID($_SESSION["userID"]) != 'frozen' and
+           getRoleByID($_SESSION["userID"]) != 'banned') {
 
     if (empty($_POST["postID"]) or empty($_SESSION["userID"])) {
         header('HTTP/1.1 500 Non enough arguments');
diff --git a/website/public/API/postComment.php b/website/public/API/postComment.php
index 3864cc8..c9f8a53 100644
--- a/website/public/API/postComment.php
+++ b/website/public/API/postComment.php
@@ -7,10 +7,10 @@ require_once("../../queries/connect.php");
 require_once("../../queries/checkInput.php");
 require_once("../../queries/user.php");
 
-
-if (isset($_SESSION["userID"]) &&
-    getRoleByID($_SESSION["userID"]) != 'frozen' &&
-    getRoleByID($_SESSION["userID"]) != 'banned') {
+if (!isset($_SESSION["userID"])) {
+    echo "logged out";
+} else if (getRoleByID($_SESSION["userID"]) != 'frozen' &&
+           getRoleByID($_SESSION["userID"]) != 'banned') {
     if ($_POST['button'] == 'reaction') {
         if (empty($_POST['newcomment-content'])) {
             echo 0;
diff --git a/website/public/API/postPost.php b/website/public/API/postPost.php
index 241bda6..2d703d3 100644
--- a/website/public/API/postPost.php
+++ b/website/public/API/postPost.php
@@ -8,9 +8,10 @@ require_once("../../queries/connect.php");
 require_once("../../queries/checkInput.php");
 require_once("../../queries/user.php");
 
-if (isset($_SESSION["userID"]) &&
-    getRoleByID($_SESSION["userID"]) != 'frozen' &&
-    getRoleByID($_SESSION["userID"]) != 'banned') {
+if (!isset($_SESSION["userID"])) {
+    echo "logged out";
+} else if (getRoleByID($_SESSION["userID"]) != 'frozen' &&
+           getRoleByID($_SESSION["userID"]) != 'banned') {
 
     if (empty($_SESSION["userID"])) {
         header('HTTP/1.1 500 Non enough arguments');
diff --git a/website/public/API/sendMessage.php b/website/public/API/sendMessage.php
index c6e3231..a2d411b 100644
--- a/website/public/API/sendMessage.php
+++ b/website/public/API/sendMessage.php
@@ -7,9 +7,10 @@ require_once("../../queries/checkInput.php");
 require_once("../../queries/user.php");
 
 // Check if the user is allowed to send a message.
-if (isset($_SESSION["userID"]) &&
-    getRoleByID($_SESSION["userID"]) != 'frozen' &&
-    getRoleByID($_SESSION["userID"]) != 'banned') {
+if (!isset($_SESSION["userID"])) {
+    echo "logged out";
+} else if (getRoleByID($_SESSION["userID"]) != 'frozen' &&
+           getRoleByID($_SESSION["userID"]) != 'banned') {
     if (!empty(test_input($_POST["destination"])) &&
         !empty(test_input($_POST["content"]))
     ) {
diff --git a/website/public/js/chat.js b/website/public/js/chat.js
index a3ff430..f431b91 100644
--- a/website/public/js/chat.js
+++ b/website/public/js/chat.js
@@ -43,6 +43,8 @@ function sendMessage() {
     ).done(function(response) {
         if (response == "frozen") {
             alert("Je account is bevroren, dus je kan niet chat berichten versturen. Contacteer een admin als je denkt dat dit onjuist is.");
+        } else if (response == "logged out") {
+            window.location.href = "login.php?url=" + window.location.pathname;
         }
         // Load messages if the message has been send, so it shows in the chat.
         loadMessages();
diff --git a/website/public/js/main.js b/website/public/js/main.js
index 30cd3ed..2ce58e4 100644
--- a/website/public/js/main.js
+++ b/website/public/js/main.js
@@ -3,8 +3,7 @@ var months = ["januari", "februari", "maart", "april", "mei", "juni", "juli", "a
 
 function fancyText(text) {
     // Add links, images, gifs and (youtube) video's.
-    var regex = /(https?:\/\/.[^ <>"]*)/ig;
-    text = text.replace(regex, function(link) {
+    text = text.replace(/(https?:\/\/.[^ \n<>"]*)/ig, function(link) {
         // Add images
         if (link.match(/(https?:\/\/.[^ ]*\.(?:png|jpg|jpeg|gif))/ig)) {
             return "<img alt='" + link + "' src='" + link + "' />";
@@ -39,7 +38,7 @@ function fancyText(text) {
 }
 
 // This function gets the value of a cookie when given a key.
-// If didn´t find any compatible cookie, it returns false.
+// If it didn´t find any compatible cookie, it returns false.
 function getCookie(key) {
     cookies = document.cookie.split("; ");
     for (var i in cookies) {
diff --git a/website/public/js/masonry.js b/website/public/js/masonry.js
index a628e96..d43577b 100644
--- a/website/public/js/masonry.js
+++ b/website/public/js/masonry.js
@@ -26,7 +26,7 @@ function requestPost(postID) {
 function postPost() {
     title = $("input.newpost[name='title']").val();
     content = $("textarea.newpost[name='content']").val();
-
+    console.log(masonryMode);
     if (masonryMode == 2) {
         $.post("API/postPost.php", { title: title,
                                      content : content,
@@ -36,6 +36,10 @@ function postPost() {
                     $('#alertbox').show();
                     $('#alerttext').html("Geen titel of inhoud; vul a.u.b. in.");
                     window.scrollTo(0,0);
+                } else if (data == "logged out") {
+                    window.location.href = "login.php?url=" + window.location.pathname;
+                } else if (data == "frozen") {
+                    alert("Je account is bevroren, dus je kan geen posts plaatsen. Contacteer een admin als je denkt dat dit onjuist is.");
                 } else {
                     $('#alertbox').hide();
                     masonry(masonryMode);
@@ -49,6 +53,10 @@ function postPost() {
                     $('#alertbox').show();
                     $('#alerttext').html("Geen titel of inhoud; vul a.u.b. in.");
                     window.scrollTo(0,0);
+                } else if (data == "logged out") {
+                    window.location.href = "login.php?url=" + window.location.pathname;
+                } else if (data == "frozen") {
+                    alert("Je account is bevroren, dus je kan geen posts plaatsen. Contacteer een admin als je denkt dat dit onjuist is.");
                 } else {
                     $('#alertbox').hide();
                     masonry(masonryMode);
diff --git a/website/public/js/post.js b/website/public/js/post.js
index 4009023..4f77d4d 100644
--- a/website/public/js/post.js
+++ b/website/public/js/post.js
@@ -8,6 +8,8 @@ function postComment(buttonValue) {
     ).done(function (response) {
         if (response == "frozen") {
             alert("Je account is bevroren, dus je kan geen comments plaatsen of \"niet slechten\". Contacteer een admin als je denkt dat dit onjuist is.");
+        } else if (response == "logged out") {
+            window.location.href = "login.php?url=" + window.location.pathname;
         }
     });
 
@@ -30,6 +32,8 @@ function deletePost(postID) {
     ).done(function (response) {
         if (response == "frozen") {
             alert("Je account is bevroren, dus je kan geen posts verwijderen. Contacteer een admin als je denkt dat dit onjuist is.");
+        } else if (response == "logged out") {
+            window.location.href = "login.php?url=" + window.location.pathname;
         }
     });
     closeModal();
diff --git a/website/public/styles/post-popup.css b/website/public/styles/post-popup.css
index 24badcb..9493b83 100644
--- a/website/public/styles/post-popup.css
+++ b/website/public/styles/post-popup.css
@@ -91,7 +91,7 @@
 
 .deleteButton {
     background-color: firebrick;
-
+    float: right;
 }
 
 .deleteButton i {
diff --git a/website/views/head.php b/website/views/head.php
index f831f5d..52bcab8 100644
--- a/website/views/head.php
+++ b/website/views/head.php
@@ -26,8 +26,8 @@ require_once ("../queries/user.php");
 
 session_start();
 
-if(!isset($_SESSION["userID"])){
-    header("location:login.php");
+if(!isset($_SESSION["userID"])) {
+    header("location:login.php?url=" . "$_SERVER[REQUEST_URI]");
 } else {
     updateLastActivity();
 }
diff --git a/website/views/post-view.php b/website/views/post-view.php
index f8fe902..717e6a8 100644
--- a/website/views/post-view.php
+++ b/website/views/post-view.php
@@ -5,14 +5,6 @@ $fullname = $post['fname'] . " " . $post['lname'] . " (" . $post['username'] . "
 ?>
 <div class='post-header header'>
     <h4><?=$post['title']?></h4>
-    <?php if (checkPermissionOnPost($postID, $_SESSION["userID"])) {?>
-    <button class="deleteButton"
-            onclick="deletePost('<?=$postID?>')"
-            type="submit">
-        <i class="fa fa-trash"></i>
-        <span>Verwijder post</span>
-    </button><br />
-    <?php } ?>
     <span class='postinfo'>
         gepost door <?=$fullname?>,
             <span class='posttime' title='<?=$post['creationdate']?>'>
@@ -20,7 +12,14 @@ $fullname = $post['fname'] . " " . $post['lname'] . " (" . $post['username'] . "
             </span>
     </span>
 </div>
-
+<?php if (checkPermissionOnPost($postID, $_SESSION["userID"])) {?>
+    <button class="deleteButton"
+            onclick="deletePost('<?=$postID?>')"
+            type="submit">
+        <i class="fa fa-trash"></i>
+        <span>Verwijder post</span>
+    </button><br />
+<?php } ?>
 <div class='post-content'>
     <p><?=$post['content']?></p>
 </div>

From b206d243b905ad614f2542bb582d06fa1369ff58 Mon Sep 17 00:00:00 2001
From: Lars van Hijfte <larsvanhijfte@hotmail.com>
Date: Thu, 2 Feb 2017 18:17:58 +0100
Subject: [PATCH 10/19] Validator fixes

Changes chat, profile and settings pages so it is compatible with the validator of w3
---
 website/public/styles/main.css    |  2 --
 website/public/styles/profile.css |  1 -
 website/views/group.php           |  2 +-
 website/views/header.php          |  4 ++--
 website/views/profile.php         | 26 ++++++++++++--------------
 website/views/settings-view.php   |  8 ++++----
 6 files changed, 19 insertions(+), 24 deletions(-)

diff --git a/website/public/styles/main.css b/website/public/styles/main.css
index 650a30f..5bb7b1d 100644
--- a/website/public/styles/main.css
+++ b/website/public/styles/main.css
@@ -256,8 +256,6 @@ div[data-title]:hover:after {
     top: 150%;
     z-index: 200;
     white-space: nowrap;
-    -moz-border-radius: 3px;
-    -webkit-border-radius: 3px;
     border-radius: 3px;
     box-shadow: 0 14px 28px rgba(0,0,0,0.25), 0 10px 10px rgba(0,0,0,0.22);
     background-color: #333;
diff --git a/website/public/styles/profile.css b/website/public/styles/profile.css
index 27ff7fd..2f857a4 100644
--- a/website/public/styles/profile.css
+++ b/website/public/styles/profile.css
@@ -71,7 +71,6 @@
 
 .group-picture {
     border: none;
-    margin-right: 15px;
 }
 
 
diff --git a/website/views/group.php b/website/views/group.php
index b27f18c..250fc9f 100644
--- a/website/views/group.php
+++ b/website/views/group.php
@@ -1,6 +1,6 @@
 <div class="content">
     <div class="user-box">
-        <img class="group-picture main-picture" src="<?= $group["picture"] ?>"><br />
+        <img alt="<?= $group["name"] ?>" class="group-picture main-picture" src="<?= $group["picture"] ?>"><br />
         <div class="platform">
             <div class="status-buttons-container">
                 <button disabled class="gray"><?= $group["status"] ?></button>
diff --git a/website/views/header.php b/website/views/header.php
index c1379fc..e13eca6 100644
--- a/website/views/header.php
+++ b/website/views/header.php
@@ -23,9 +23,9 @@ $userinfo = getHeaderInfo();
             <div id="hello-loop">
                 Hallo
             </div>
-            <?=$userinfo["fname"]?>
+            <?= $userinfo["fname"] ?>
         </div>
-        <img id="own-profile-picture" class="profile-picture" src="<?=$userinfo["profilepicture"]?>"/><i id="open-notifications" class="fa fa-bars"></i>
+        <img alt="<?= $userinfo["lname"] ?>" id="own-profile-picture" class="profile-picture" src="<?=$userinfo["profilepicture"]?>"/><i id="open-notifications" class="fa fa-bars"></i>
     </div>
 </header>
 <?php include("notification-center.php"); ?>
diff --git a/website/views/profile.php b/website/views/profile.php
index 4139099..62157f4 100644
--- a/website/views/profile.php
+++ b/website/views/profile.php
@@ -4,7 +4,7 @@
     </div>
 
     <div class="user-box">
-        <img class="profile-picture main-picture <?= $user["onlinestatus"] ?>" src="<?= $user["profilepicture"] ?>"><br />
+        <img alt="<?= $user["fname"] ?>" class="profile-picture main-picture <?= $user["onlinestatus"] ?>" src="<?= $user["profilepicture"] ?>"><br />
         <div class="platform">
             <div class="status-buttons-container">
                 <button disabled class="gray">
@@ -33,18 +33,16 @@
     <?php if($showProfile) { ?>
     <div class="item-box platform">
         <h3>Informatie</h3>
-        <p>
-            <ul>
-                <?php if ($user["showBday"]) { ?>
-                <li>Leeftijd: <?= getAge($user["birthdate"]) ?> jaar</li>
-                <?php } ?>
-                <?php if ($user["showEmail"]) { ?>
-                    <li>Email: <?= $user["email"] ?></li>
-                <?php } ?>
-                <li>Locatie: <?= $user["location"] ?></li>
-                <li>Lid sinds: <?= nicetime($user["creationdate"]) ?></li>
-            </ul>
-        </p>
+        <ul>
+            <?php if ($user["showBday"]) { ?>
+            <li>Leeftijd: <?= getAge($user["birthdate"]) ?> jaar</li>
+            <?php } ?>
+            <?php if ($user["showEmail"]) { ?>
+                <li>Email: <?= $user["email"] ?></li>
+            <?php } ?>
+            <li>Locatie: <?= $user["location"] ?></li>
+            <li>Lid sinds: <?= nicetime($user["creationdate"]) ?></li>
+        </ul>
     </div>
 
     <div class="item-box platform">
@@ -52,7 +50,7 @@
         <p>
             <?php
                 while($friend = $profile_friends->fetch()) {
-                    echo "<a href='profile.php?username=${friend["username"]}' data-title='${friend["username"]}'><img class='profile-picture' src='${friend["profilepicture"]}' alt='${friend["username"]}'s profielfoto></a>";
+                    echo "<a href='profile.php?username=${friend["username"]}' data-title='${friend["username"]}'><img class='profile-picture' height='42' width='42' src='${friend["profilepicture"]}' alt='${friend["username"]}' /></a>";
                 }
 
 
diff --git a/website/views/settings-view.php b/website/views/settings-view.php
index cf5317f..0800cc8 100644
--- a/website/views/settings-view.php
+++ b/website/views/settings-view.php
@@ -45,8 +45,8 @@ $settings = getSettings();
                 </li>
                 <li>
                     <?php $currentbday = new DateTime($settings["birthdate"]); ?>
-                    <label for="bday">Geboortedatum</label>
-                    <select name='day' id="bday">
+                    <label>Geboortedatum</label>
+                    <select name='day'>
                         <?php for ($day = 1; $day <= 31; $day++): ?>
                         <option value='<?=$day?>'
                                 <?=($day == $currentbday->format("d")) ? "selected" : ""?>
@@ -55,7 +55,7 @@ $settings = getSettings();
                         </option>
                         <?php endfor; ?>
                     </select>
-                    <select name='month' id="bday">
+                    <select name='month'>
                         <?php
                         $months = array ("januari", "februari", "maart", "april", "mei", "juni", "juli", "augustus",
                             "september", "oktober", "november", "december");
@@ -68,7 +68,7 @@ $settings = getSettings();
                             </option>
                         <?php endfor; ?>
                     </select>
-                    <select name='year' id="bday">
+                    <select name='year'>
                         <?php
                         $now = (new DateTime)->format("Y");
                         for ($year = $now; $year >= 1900; $year--): ?>

From 1486e712075ee7ebfa9c4ba0dc3dcea10e83fa47 Mon Sep 17 00:00:00 2001
From: Joey Lai <joeylai96@hotmail.com>
Date: Thu, 2 Feb 2017 19:34:58 +0100
Subject: [PATCH 11/19] Added url get

---
 website/public/js/dobPicker.js           | 123 -----------------------
 website/public/js/dobPicker.min.js       |   1 -
 website/public/js/loginRegisterModals.js |  68 +++++++++++++
 website/public/login.php                 |   8 +-
 website/queries/login.php                |  21 +++-
 website/views/homeLoginRegister.php      |  19 +++-
 website/views/login-view.php             |  76 +-------------
 7 files changed, 110 insertions(+), 206 deletions(-)
 delete mode 100644 website/public/js/dobPicker.js
 delete mode 100644 website/public/js/dobPicker.min.js
 create mode 100644 website/public/js/loginRegisterModals.js

diff --git a/website/public/js/dobPicker.js b/website/public/js/dobPicker.js
deleted file mode 100644
index 9440153..0000000
--- a/website/public/js/dobPicker.js
+++ /dev/null
@@ -1,123 +0,0 @@
-/**
- * jQuery DOB Picker
- * Website: https://github.com/tyea/dobpicker
- * Version: 1.0
- * Author: Tom Yeadon
- * License: BSD 3-Clause
- */
-
-jQuery.extend({
-
-	dobPicker: function(params) {
-
-		// set the defaults		
-		if (typeof(params.dayDefault)==='undefined') params.dayDefault = 'Day';
-		if (typeof(params.monthDefault)==='undefined') params.monthDefault = 'Month';
-		if (typeof(params.yearDefault)==='undefined') params.yearDefault = 'Year';
-		if (typeof(params.minimumAge)==='undefined') params.minimumAge = 12;
-		if (typeof(params.maximumAge)==='undefined') params.maximumAge = 80;
-
-		// set the default messages		
-		$(params.daySelector).append('<option value="">' + params.dayDefault + '</option>');
-		$(params.monthSelector).append('<option value="">' + params.monthDefault + '</option>');
-		$(params.yearSelector).append('<option value="">' + params.yearDefault + '</option>');
-
-		// populate the day select
-		for (i = 1; i <= 31; i++) {
-			if (i <= 9) {
-				var val = '0' + i;
-			} else {
-				var val = i;
-			}
-			$(params.daySelector).append('<option value="' + val + '">' + i + '</option>');
-		}
-
-		// populate the month select		
-		var months = [
-			"January",
-			"February",
-			"March",
-			"April",
-			"May",
-			"June",
-			"July",
-			"August",
-			"September",
-			"October",
-			"November",
-			"December"
-		];
-			
-		for (i = 1; i <= 12; i++) {
-			if (i <= 9) {
-				var val = '0' + i;
-			} else {
-				var val = i;
-			}
-			$(params.monthSelector).append('<option value="' + val + '">' + months[i - 1] + '</option>');
-		}
-
-		// populate the year select
-		var date = new Date();
-		var year = date.getFullYear();
-		var start = year - params.minimumAge;
-		var count = start - params.maximumAge;
-		
-		for (i = start; i >= count; i--) {
-			$(params.yearSelector).append('<option value="' + i + '">' + i + '</option>');
-		}
-		
-		// do the logic for the day select
-		$(params.daySelector).change(function() {
-			
-			$(params.monthSelector)[0].selectedIndex = 0;
-			$(params.yearSelector)[0].selectedIndex = 0;
-			$(params.yearSelector + ' option').removeAttr('disabled');
-			
-			if ($(params.daySelector).val() >= 1 && $(params.daySelector).val() <= 29) {
-			
-				$(params.monthSelector + ' option').removeAttr('disabled');
-				
-			} else if ($(params.daySelector).val() == 30) {
-			
-				$(params.monthSelector + ' option').removeAttr('disabled');
-				$(params.monthSelector + ' option[value="02"]').attr('disabled', 'disabled');
-				
-			} else if($(params.daySelector).val() == 31) {
-			
-				$(params.monthSelector + ' option').removeAttr('disabled');
-				$(params.monthSelector + ' option[value="02"]').attr('disabled', 'disabled');
-				$(params.monthSelector + ' option[value="04"]').attr('disabled', 'disabled');
-				$(params.monthSelector + ' option[value="06"]').attr('disabled', 'disabled');
-				$(params.monthSelector + ' option[value="09"]').attr('disabled', 'disabled');
-				$(params.monthSelector + ' option[value="11"]').attr('disabled', 'disabled');
-				
-			}
-			
-		});
-		
-		// do the logic for the month select
-		$(params.monthSelector).change(function() {
-			
-			$(params.yearSelector)[0].selectedIndex = 0;
-			$(params.yearSelector + ' option').removeAttr('disabled');
-			
-			if ($(params.daySelector).val() == 29 && $(params.monthSelector).val() == '02') {
-			
-				$(params.yearSelector + ' option').each(function(index) {
-					if (index !== 0) {
-						var year = $(this).attr('value');
-						var leap = !((year % 4) || (!(year % 100) && (year % 400)));
-						if (leap === false) {
-							$(this).attr('disabled', 'disabled');
-						}
-					}
-				});
-				
-			}
-			
-		});
-		
-	}
-	
-});
diff --git a/website/public/js/dobPicker.min.js b/website/public/js/dobPicker.min.js
deleted file mode 100644
index b82c3a2..0000000
--- a/website/public/js/dobPicker.min.js
+++ /dev/null
@@ -1 +0,0 @@
-jQuery.extend({dobPicker:function(a){for("undefined"==typeof a.dayDefault&&(a.dayDefault="Day"),"undefined"==typeof a.monthDefault&&(a.monthDefault="Month"),"undefined"==typeof a.yearDefault&&(a.yearDefault="Year"),"undefined"==typeof a.minimumAge&&(a.minimumAge=12),"undefined"==typeof a.maximumAge&&(a.maximumAge=80),$(a.daySelector).append('<option value="">'+a.dayDefault+"</option>"),$(a.monthSelector).append('<option value="">'+a.monthDefault+"</option>"),$(a.yearSelector).append('<option value="">'+a.yearDefault+"</option>"),i=1;i<=31;i++){if(i<=9)var b="0"+i;else var b=i;$(a.daySelector).append('<option value="'+b+'">'+i+"</option>")}var c=["January","February","March","April","May","June","July","August","September","October","November","December"];for(i=1;i<=12;i++){if(i<=9)var b="0"+i;else var b=i;$(a.monthSelector).append('<option value="'+b+'">'+c[i-1]+"</option>")}var d=new Date,e=d.getFullYear(),f=e-a.minimumAge,g=f-a.maximumAge;for(i=f;i>=g;i--)$(a.yearSelector).append('<option value="'+i+'">'+i+"</option>");$(a.daySelector).change(function(){$(a.monthSelector)[0].selectedIndex=0,$(a.yearSelector)[0].selectedIndex=0,$(a.yearSelector+" option").removeAttr("disabled"),$(a.daySelector).val()>=1&&$(a.daySelector).val()<=29?$(a.monthSelector+" option").removeAttr("disabled"):30==$(a.daySelector).val()?($(a.monthSelector+" option").removeAttr("disabled"),$(a.monthSelector+' option[value="02"]').attr("disabled","disabled")):31==$(a.daySelector).val()&&($(a.monthSelector+" option").removeAttr("disabled"),$(a.monthSelector+' option[value="02"]').attr("disabled","disabled"),$(a.monthSelector+' option[value="04"]').attr("disabled","disabled"),$(a.monthSelector+' option[value="06"]').attr("disabled","disabled"),$(a.monthSelector+' option[value="09"]').attr("disabled","disabled"),$(a.monthSelector+' option[value="11"]').attr("disabled","disabled"))}),$(a.monthSelector).change(function(){$(a.yearSelector)[0].selectedIndex=0,$(a.yearSelector+" option").removeAttr("disabled"),29==$(a.daySelector).val()&&"02"==$(a.monthSelector).val()&&$(a.yearSelector+" option").each(function(a){if(0!==a){var b=$(this).attr("value"),c=!(b%4||!(b%100)&&b%400);c===!1&&$(this).attr("disabled","disabled")}})})}});
diff --git a/website/public/js/loginRegisterModals.js b/website/public/js/loginRegisterModals.js
new file mode 100644
index 0000000..373fb7e
--- /dev/null
+++ b/website/public/js/loginRegisterModals.js
@@ -0,0 +1,68 @@
+
+// Get the modal
+var modal = document.getElementById('myModal');
+var registerModal = document.getElementById('registerModal');
+var facebookModal = document.getElementById("fbModal");
+
+// Get the button that opens the modal
+var registerBtn = document.getElementById("registerBtn");
+var btn = document.getElementById("myBtn");
+
+
+// Get the <span> element that closes the modal
+var span = document.getElementsByClassName("close")[0];
+var registerSpan = document.getElementsByClassName("close")[1];
+var facebookCLose = document.getElementsByClassName("close")[2];
+
+/**
+ * When the user clicks the button, open the modal
+ */
+btn.onclick = function () {
+    modal.style.display = "block";
+
+}
+registerBtn.onclick = function () {
+    registerModal.style.display = "block";
+}
+
+/**
+ * WHen the user clicks on (X), close the modal
+ */
+span.onclick = function () {
+    modal.style.display = "none";
+}
+registerSpan.onclick = function () {
+    registerModal.style.display = "none";
+}
+facebookCLose.onclick = function () {
+    facebookModal.style.display = "none";
+}
+
+/**
+ * When the user clicks anywhere outside of the modal, close it
+ */
+window.onclick = function (event) {
+    if (event.target == modal) {
+        modal.style.display = "none";
+    }
+    if (event.target == registerModal) {
+        registerModal.style.display = "none";
+    }
+    if (event.target == facebookModal) {
+        facebookModal.style.display = "none";
+    }
+}
+
+/**
+ * When ESC is pressed, close modal
+ */
+document.addEventListener('keyup', function(e) {
+    if (e.keyCode == 27) {
+        modal.style.display = "none";
+        registerModal.style.display = "none";
+
+    }
+});
+/**
+ * Created by joey on 2-2-17.
+ */
diff --git a/website/public/login.php b/website/public/login.php
index 726d530..57e9af7 100644
--- a/website/public/login.php
+++ b/website/public/login.php
@@ -13,18 +13,12 @@
 ?>
 <body>
 <?php
-    session_start();
 
-    // Checks if there's an user already logged in
-    if(isset($_SESSION["userID"])){
-      echo "<script>
-                window.onload=checkLoggedIn();
-            </script>";
-    }
 include("../views/homeLoginRegister.php");
 
 /* This view adds login view */
 include("../views/login-view.php");
 ?>
+<script src="js/loginRegisterModals.js"></script>;
 </body>
 </html>
diff --git a/website/queries/login.php b/website/queries/login.php
index 4dad5c5..27c1f3b 100644
--- a/website/queries/login.php
+++ b/website/queries/login.php
@@ -33,7 +33,7 @@ function getUserID() {
     return $stmt->fetch(PDO::FETCH_ASSOC);
 }
 
-function validateLogin($username, $password){
+function validateLogin($username, $password, $url){
     // Empty username or password field
     if (empty($username) || empty($password)) {
         throw new loginException("Inloggegevens zijn niet ingevuld");
@@ -50,20 +50,35 @@ function validateLogin($username, $password){
                 echo "<script>
                          window.onload=bannedAlert();
                     </script>";
-            } else if ($role == "frozen"){
+
+            } else if ($role == "frozen") {
                 $_SESSION["userID"] = $userID;
+                if (!isset($url) or $url = "") {
                 echo "<script>
                          window.onload=frozenAlert();
                          window.location.href= 'profile.php';
                     </script>";
+                } else {
+                    echo "<script>
+                         window.onload=frozenAlert();
+                         window.location.href= $url;
+                    </script>";
+                }
+
             } else if ($role == "unconfirmed"){
                 sendConfirmEmail(getUser()["userID"]);
                 echo "<script>
                          window.onload=emailNotConfirmed();
                     </script>";
+
             } else {
                 $_SESSION["userID"] = $userID;
-                header("location: profile.php");
+                if(!isset($url) or $url == "") {
+                    header("location: profile.php");
+                } else{
+                    header("location: $url");
+                }
+
             }
         } else {
             throw new loginException("Inloggevens zijn niet correct");
diff --git a/website/views/homeLoginRegister.php b/website/views/homeLoginRegister.php
index 54c2015..55277e7 100644
--- a/website/views/homeLoginRegister.php
+++ b/website/views/homeLoginRegister.php
@@ -1,4 +1,12 @@
 <?php
+session_start();
+
+// Checks if there's an user already logged in
+if(isset($_SESSION["userID"])){
+    echo "<script>
+                window.onload=checkLoggedIn();
+            </script>";
+}
 
 // Facebook variables
 $appID = "353857824997532";
@@ -20,13 +28,22 @@ $fbDay_date = $fbMonth_date = $fbYear_date = "";
 $user = $psw = $remember ="";
 $loginErr = $resetErr = $fbRegisterErr ="";
 
+//if ($_SERVER["REQUEST_METHOD"] == "GET") {
+//    try {
+//        $user = ($_POST["user"]);
+//        validateLogin($_POST["user"], $_POST["psw"], "https://$_SERVER[HTTP_HOST]$_SERVER[REQUEST_URI]");
+//    } catch(loginException $e) {
+//        $loginErr = $e->getMessage();
+//    }
+//}
+
 if ($_SERVER["REQUEST_METHOD"] == "POST") {
     // Checks for which button is pressed
     switch ($_POST["submit"]) {
         case "login":
             try {
                 $user = ($_POST["user"]);
-                validateLogin($_POST["user"], $_POST["psw"]);
+                validateLogin($_POST["user"], $_POST["psw"], $_POST["url"]);
             } catch(loginException $e) {
                 $loginErr = $e->getMessage();
             }
diff --git a/website/views/login-view.php b/website/views/login-view.php
index 98ce71c..89487de 100644
--- a/website/views/login-view.php
+++ b/website/views/login-view.php
@@ -16,6 +16,9 @@
           return=$correct
           method="post"
           name="login">
+        <input type="hidden"
+               name="url"
+               value="<?= $_GET["url"] ?>"/>
 
         <!-- Login name -->
         <div class="login_containerlogin">
@@ -68,75 +71,6 @@
 <!--Login with facebook button-->
 <?php
     if(!isset($acces_token)) {
-        echo '<div class="login_containerlogin"><a class="fbButton" href="' . $loginurl . '"><i class="fa fa-facebook-square"></i> login met     Facebook!</a></div>';
+        echo '<div class="login_containerlogin"><a class="fbButton" href="' . $loginurl . '"><i class="fa fa-facebook-square"></i> login met Facebook!</a></div>';
     }
-?>
-
-<script>
-
-// Get the modal
-var modal = document.getElementById('myModal');
-var registerModal = document.getElementById('registerModal');
-var facebookModal = document.getElementById("fbModal");
-
-// Get the button that opens the modal
-var registerBtn = document.getElementById("registerBtn");
-var btn = document.getElementById("myBtn");
-
-
-// Get the <span> element that closes the modal
-var span = document.getElementsByClassName("close")[0];
-var registerSpan = document.getElementsByClassName("close")[1];
-var facebookCLose = document.getElementsByClassName("close")[2];
-
-    /**
-     * When the user clicks the button, open the modal
-     */
-    btn.onclick = function () {
-        modal.style.display = "block";
-
-    }
-    registerBtn.onclick = function () {
-        registerModal.style.display = "block";
-    }
-
-    /**
-     * WHen the user clicks on (X), close the modal
-     */
-    span.onclick = function () {
-        modal.style.display = "none";
-    }
-    registerSpan.onclick = function () {
-        registerModal.style.display = "none";
-    }
-    facebookCLose.onclick = function () {
-        facebookModal.style.display = "none";
-    }
-
-    /**
-     * When the user clicks anywhere outside of the modal, close it
-     */
-    window.onclick = function (event) {
-        if (event.target == modal) {
-            modal.style.display = "none";
-        }
-        if (event.target == registerModal) {
-            registerModal.style.display = "none";
-        }
-        if (event.target == facebookModal) {
-            facebookModal.style.display = "none";
-        }
-    }
-
-    /**
-     * When ESC is pressed, close modal
-     */
-    document.addEventListener('keyup', function(e) {
-            if (e.keyCode == 27) {
-                modal.style.display = "none";
-                registerModal.style.display = "none";
-
-            }
-        });
-
-</script>
\ No newline at end of file
+?>
\ No newline at end of file

From 74145d5d1c808b5c37a0646d27804aaa6e9c386c Mon Sep 17 00:00:00 2001
From: Marijn Jansen <marijn@jansen.onl>
Date: Thu, 2 Feb 2017 19:43:57 +0100
Subject: [PATCH 12/19] Updated buttons on groups

---
 website/public/js/groupButtons.js    | 36 ++++++++++++++++++----------
 website/public/styles/post-popup.css |  1 -
 website/public/styles/profile.css    | 21 +++++++++++++++-
 website/views/groupAdmin.php         | 27 +++++++++++++++++----
 4 files changed, 66 insertions(+), 19 deletions(-)

diff --git a/website/public/js/groupButtons.js b/website/public/js/groupButtons.js
index e6ada67..549277d 100644
--- a/website/public/js/groupButtons.js
+++ b/website/public/js/groupButtons.js
@@ -3,31 +3,41 @@ function placeGroupButtons() {
         .done(function(data) {
             var $buttonContainer = $("div.group-button-container");
 
-            if(data == 'none') {
+            if (data == 'none') {
                 $buttonContainer.append(
-                    "<button class='green group-button' value='request'>" +
+                    "<button class='green group-button group-button-fixed' value='request'>" +
                     "<i class='fa fa-plus'></i> Voeg toe" +
                     "</button>");
-            } else if(data == 'request') {
+            } else if (data == 'request') {
                 $buttonContainer.append(
-                    "<button class='red group-button' value='none'>" +
+                    "<button class='red group-button group-button-fixed' value='none'>" +
                     "<i class='fa fa-times'></i> Trek verzoek in" +
                     "</button>");
+            } else if (data == 'admin') {
+                $buttonContainer.append(
+                    "<button class='group-button group-button-fancy' value='admin'>" +
+                        "<span>Instellingen</span><i class='fa fa-cogs'></i>" +
+                        "</button>"
+                );
             } else {
                 $buttonContainer.append(
-                    "<button class='red group-button' value='none'>" +
-                    "<i class='fa fa-times'></i> Verlaat groep" +
+                    "<button class='red group-button group-button-fancy' value='none'>" +
+                    "<span>Verlaat groep</span><i class='fa fa-sign-out'></i>" +
                     "</button>");
             }
 
             $buttonContainer.children().click(function() {
-                $.post("API/editMembership.php", { grp: groupID, role: this.value })
-                    .done(function() {
-                        $buttonContainer.children().remove();
-                        placeGroupButtons();
-                        updateMenus();
-                    }).fail(function() {
-                });
+                if (this.value == 'admin') {
+                    window.location.href='groupAdmin.php?groupID=' + groupID;
+                } else {
+                    $.post("API/editMembership.php", {grp: groupID, role: this.value})
+                        .done(function () {
+                            $buttonContainer.children().remove();
+                            placeGroupButtons();
+                            updateMenus();
+                        }).fail(function () {
+                    });
+                }
             });
 
     });
diff --git a/website/public/styles/post-popup.css b/website/public/styles/post-popup.css
index 24badcb..541b52c 100644
--- a/website/public/styles/post-popup.css
+++ b/website/public/styles/post-popup.css
@@ -91,7 +91,6 @@
 
 .deleteButton {
     background-color: firebrick;
-
 }
 
 .deleteButton i {
diff --git a/website/public/styles/profile.css b/website/public/styles/profile.css
index 27ff7fd..f6e545e 100644
--- a/website/public/styles/profile.css
+++ b/website/public/styles/profile.css
@@ -31,11 +31,14 @@
     display: block;
 
     margin: 7px 0;
-    width: 200px;
 
     font-size: 18px;
 }
 
+.friend-button-container button, .status-buttons-container button, .group-button-fixed {
+    width: 200px;
+}
+
 .group-button-container button {
     float: right;
 }
@@ -74,6 +77,22 @@
     margin-right: 15px;
 }
 
+.group-button-fancy span {
+    display: none;
+}
+
+.group-button-fancy:hover {
+    text-align: right;
+}
+
+.group-button-fancy i {
+    display: inline-block;
+}
+
+.group-button-fancy:hover span {
+    display: inline-block;
+    margin-right: 5px;
+}
 
 /* Old */
 
diff --git a/website/views/groupAdmin.php b/website/views/groupAdmin.php
index aab4eea..a28553e 100644
--- a/website/views/groupAdmin.php
+++ b/website/views/groupAdmin.php
@@ -7,10 +7,20 @@ $groupinfo = getGroupSettings($_GET["groupID"]);
 <div class="content">
     <div class="settings">
         <?php if ($_SERVER["REQUEST_METHOD"] == "POST"): ?>
-            <div class='platform settings-message <?=$alertClass?>'>
-                <?=$alertMessage?>
-            </div>
+        <div class='platform settings-message <?=$alertClass?>'>
+            <?=$alertMessage?>
+        </div>
         <?php endif; ?>
+        <div class="platform">
+            <ul>
+                <li>
+                    <label></label>
+                    <a href="group.php?groupname=<?=$groupinfo["name"]?>">
+                        <button class="fa fa-chevron-left"> Terug naar de groep</button>
+                    </a>
+                </li>
+            </ul>
+        </div>
         <form class="platform" method="post">
             <h5>Groep Instellingen</h5>
             <input type="hidden" name="groupID" value="<?=$_GET["groupID"]?>">
@@ -70,9 +80,18 @@ $groupinfo = getGroupSettings($_GET["groupID"]);
                     <button type="submit"
                             name="form"
                             value="picture"
-                    >Verander profielfoto</button>
+                            class="fa fa-picture-o"
+                    > Verander profielfoto</button>
                 </li>
             </ul>
         </form>
+        <div class="platform">
+            <ul>
+                <li>
+                    <label></label>
+                    <a href="group.php?groupname=<?=$groupinfo["name"]?>"><button class="fa fa-chevron-left"> Terug naar de groep</button></a>
+                </li>
+            </ul>
+        </div>
     </div>        
 </div>
\ No newline at end of file

From 74e91ed7cb18acebaabd5b6356f87aec25830977 Mon Sep 17 00:00:00 2001
From: Marijn Jansen <marijn@jansen.onl>
Date: Thu, 2 Feb 2017 21:14:25 +0100
Subject: [PATCH 13/19] Add mods/admin to a group.

---
 website/public/groupAdmin.php  | 27 ++++++++++++++-----
 website/queries/groupAdmin.php | 48 ++++++++++++++++++++++++++++++++++
 website/queries/settings.php   | 15 +++++++++++
 website/views/groupAdmin.php   | 29 ++++++++++++++++++++
 4 files changed, 113 insertions(+), 6 deletions(-)

diff --git a/website/public/groupAdmin.php b/website/public/groupAdmin.php
index 13ff7e0..6095149 100644
--- a/website/public/groupAdmin.php
+++ b/website/public/groupAdmin.php
@@ -23,12 +23,27 @@ $alertClass;
 $alertMessage;
 if ($_SERVER["REQUEST_METHOD"] == "POST") {
     try {
-        if ($_POST["form"] == "group") {
-            updateGroupSettings($_POST["groupID"]);
-        } else if ($_POST["form"] == "picture") {
-            if (checkGroupAdmin($_POST["groupID"], $_SESSION["userID"])) {
-                updateAvatar($_POST["groupID"]);
-            }
+        switch ($_POST["form"]) {
+            case "group":
+                updateGroupSettings($_POST["groupID"]);
+                break;
+            case "picture":
+                if (checkGroupAdmin($_POST["groupID"], $_SESSION["userID"])) {
+                    updateAvatar($_POST["groupID"]);
+                }
+                break;
+            case "mod":
+                if (!array_key_exists("userID", $_POST)) {
+                    throw new AngryAlert("Geen gebruiker geselecteerd.");
+                }
+                upgradeUser($_POST["groupID"], $_POST["userID"], "mod");
+                break;
+            case "admin":
+                if (!array_key_exists("userID", $_POST)) {
+                    throw new AngryAlert("Geen gebruiker geselecteerd.");
+                }
+                upgradeUser($_POST["groupID"], $_POST["userID"], "admin");
+                break;
         }
     } catch (AlertMessage $w) {
         $alertClass = $w->getClass();
diff --git a/website/queries/groupAdmin.php b/website/queries/groupAdmin.php
index ae2abd3..e3580b6 100644
--- a/website/queries/groupAdmin.php
+++ b/website/queries/groupAdmin.php
@@ -58,4 +58,52 @@ function checkGroupAdmin(int $groupID, int $userID) : bool {
     }
     $role = $stmt->fetch()["role"];
     return ($role == "admin");
+}
+
+function getAllGroupMembers(int $groupID) {
+    $stmt = prepareQuery("
+        SELECT
+          `username`,
+          `user`.`userID`,
+          CONCAT(`fname`, ' ', `lname`) AS `fullname`,
+          `group_member`.`role`
+        FROM
+          `group_member`
+        LEFT JOIN
+          `user`
+        ON
+          `group_member`.`userID` = `user`.`userID`
+        WHERE
+          `groupID` = :groupID AND `group_member`.`role` = 'member'
+    ");
+
+    $stmt->bindParam(':groupID', $groupID);
+    if (!$stmt->execute()) {
+        return False;
+    }
+    return $stmt->fetchAll();
+}
+
+function upgradeUser(int $groupID, int $userID, string $role) {
+    if (!checkGroupAdmin($groupID, $_SESSION["userID"])) {
+        throw new AngryAlert("Geen toestemming om te wijzigen");
+    }
+
+    $stmt = prepareQuery("
+    UPDATE
+        `group_member`
+    SET
+        `role` = :role
+    WHERE 
+        `userID` = :userID AND `groupID` = :groupID
+    ");
+    $stmt->bindValue(":groupID", $groupID);
+    $stmt->bindValue(":userID", $userID);
+    $stmt->bindValue(":role", $role);
+    $stmt->execute();
+    if ($stmt->rowCount()) {
+        throw new HappyAlert("Permissie aangepast!");
+    } else {
+        throw new AngryAlert("Er is iets mis gegaan");
+    }
 }
\ No newline at end of file
diff --git a/website/queries/settings.php b/website/queries/settings.php
index 9b17d17..26237ec 100644
--- a/website/queries/settings.php
+++ b/website/queries/settings.php
@@ -148,6 +148,10 @@ function doChangePassword() {
     }
 }
 
+/**
+ * Changes the users email if it is valid.
+ * @throws AngryAlert
+ */
 function changeEmail() {
 
     if (test_input($_POST["email"]) == test_input($_POST["email-confirm"])) {
@@ -164,6 +168,11 @@ function changeEmail() {
     }
 }
 
+/**
+ * Checks if an emailadres is available in the database.
+ * @param $email
+ * @throws AngryAlert
+ */
 function emailIsAvailableInDatabase($email) {
     $stmt = prepareQuery("
     SELECT
@@ -181,6 +190,12 @@ function emailIsAvailableInDatabase($email) {
     }
 }
 
+/**
+ * Does the actual changing of an email-adress.
+ * @param $email
+ * @throws AngryAlert
+ * @throws HappyAlert
+ */
 function doChangeEmail($email) {
     $stmt = prepareQuery("
     UPDATE
diff --git a/website/views/groupAdmin.php b/website/views/groupAdmin.php
index a28553e..54fbee8 100644
--- a/website/views/groupAdmin.php
+++ b/website/views/groupAdmin.php
@@ -85,6 +85,35 @@ $groupinfo = getGroupSettings($_GET["groupID"]);
                 </li>
             </ul>
         </form>
+        <form class="platform" method="post">
+            <h5>Voeg een admin/mod toe</h5>
+            <ul>
+                <il>
+                    <input name="groupID" value="<?=$_GET["groupID"]?>" type="hidden">
+                    <label>Selecteer gebruiker</label>
+                    <select name="userID">
+                        <option disabled selected>Geen gebruiker geselecteerd:</option>
+                        <?php
+                        $groupMembers = getAllGroupMembers($_GET["groupID"]);
+                        foreach ($groupMembers as $groupMember) {?>
+                            <option value="<?=$groupMember["userID"]?>">
+                                <?=$groupMember["fullname"]?> (<?=$groupMember["username"]?>)
+                            </option>
+                        <?php } ?>
+                    </select>
+                    <button name="form"
+                            value="admin"
+                    >
+                        Maak Admin
+                    </button>
+                    <button name="form"
+                            value="mod"
+                    >
+                        Maak Moderator
+                    </button>
+                </il>
+            </ul>
+        </form>
         <div class="platform">
             <ul>
                 <li>

From 7e4107ac8b357bc1335c9657293182a5ce18720c Mon Sep 17 00:00:00 2001
From: Lars van Hijfte <larsvanhijfte@hotmail.com>
Date: Fri, 3 Feb 2017 00:13:23 +0100
Subject: [PATCH 14/19] Added fancy buttons in profile

---
 website/public/js/friendButtons.js   | 28 +++++++++++++++-------------
 website/public/js/groupButtons.js    | 12 ++++++------
 website/public/styles/post-popup.css | 12 ------------
 website/public/styles/profile.css    | 19 ++++++++++++-------
 website/views/post-view.php          |  4 ++--
 website/views/profile.php            | 14 ++++++++++----
 6 files changed, 45 insertions(+), 44 deletions(-)

diff --git a/website/public/js/friendButtons.js b/website/public/js/friendButtons.js
index 47c476a..303ccf9 100644
--- a/website/public/js/friendButtons.js
+++ b/website/public/js/friendButtons.js
@@ -19,24 +19,24 @@ function placeFriendButtons() {
                     case "0":
                         value1 = "request";
                         class1 = "green";
-                        text1 = "Bevriend";
-                        icon1 = "fa-handshake-o";
+                        text1 = "Word vrienden";
+                        icon1 = "fa-user-plus";
                         break;
                     case "1":
                         value1 = userID;
                         class1 = "green";
                         text1 = "Chat";
-                        icon1 = "fa-comment-o";
+                        icon1 = "fa-comment";
                         value2 = "delete";
                         class2 = "red";
-                        text2 = "Verwijder";
-                        icon2 = "fa-times";
+                        text2 = "Ontvriend";
+                        icon2 = "fa-user-times";
                         break;
                     case "2":
                         value1 = "delete";
                         class1 = "red";
                         text1 = "Trek verzoek in";
-                        icon1 = "fa-cross";
+                        icon1 = "fa-times";
                         break;
                     case "3":
                         value1 = "accept";
@@ -51,16 +51,18 @@ function placeFriendButtons() {
                 }
 
                 $buttonContainer.append(
-                    "<button class='"+ class1 +" friend-button' value='"+ value1 +"'>" +
-                        "<i class='fa "+ icon1 +"'></i> " + text1 +
-                    "</button>");
+                    "<div><button class='"+ class1 +" fancy-button friend-button' value='"+ value1 +"'>" +
+                    "<span>"+ text1 +"</span>" +
+                    "<i class='fa "+ icon1 +"'></i> " +
+                    "</button></div>");
                 $buttonContainer.append(
-                    "<button class='"+ class2 +" friend-button' value='"+ value2 +"'>" +
-                        "<i class='fa "+ icon2 +"'></i> " + text2 +
-                    "</button>");
+                    "<div><button class='"+ class2 +" fancy-button friend-button' value='"+ value2 +"'>" +
+                    "<span>"+ text2 +"</span>" +
+                    "<i class='fa "+ icon2 +"'></i> " +
+                    "</button></div>");
 
 
-            $buttonContainer.children().click(function() {
+            $buttonContainer.find("button").click(function() {
                 if (isNaN(this.value))
                     editFriendship(userID, this.value);
                 else if (this.value != "")
diff --git a/website/public/js/groupButtons.js b/website/public/js/groupButtons.js
index 549277d..caf3ab8 100644
--- a/website/public/js/groupButtons.js
+++ b/website/public/js/groupButtons.js
@@ -5,23 +5,23 @@ function placeGroupButtons() {
 
             if (data == 'none') {
                 $buttonContainer.append(
-                    "<button class='green group-button group-button-fixed' value='request'>" +
-                    "<i class='fa fa-plus'></i> Voeg toe" +
+                    "<button class='green group-button fancy-button' value='request'>" +
+                    "<span>Treed toe</span><i class='fa fa-plus'></i>" +
                     "</button>");
             } else if (data == 'request') {
                 $buttonContainer.append(
-                    "<button class='red group-button group-button-fixed' value='none'>" +
-                    "<i class='fa fa-times'></i> Trek verzoek in" +
+                    "<button class='red group-button fancy-button' value='none'>" +
+                    "<span>Trek verzoek in</span><i class='fa fa-times'></i>" +
                     "</button>");
             } else if (data == 'admin') {
                 $buttonContainer.append(
-                    "<button class='group-button group-button-fancy' value='admin'>" +
+                    "<button class='group-button fancy-button' value='admin'>" +
                         "<span>Instellingen</span><i class='fa fa-cogs'></i>" +
                         "</button>"
                 );
             } else {
                 $buttonContainer.append(
-                    "<button class='red group-button group-button-fancy' value='none'>" +
+                    "<button class='red group-button fancy-button' value='none'>" +
                     "<span>Verlaat groep</span><i class='fa fa-sign-out'></i>" +
                     "</button>");
             }
diff --git a/website/public/styles/post-popup.css b/website/public/styles/post-popup.css
index 9493b83..e82129b 100644
--- a/website/public/styles/post-popup.css
+++ b/website/public/styles/post-popup.css
@@ -92,16 +92,4 @@
 .deleteButton {
     background-color: firebrick;
     float: right;
-}
-
-.deleteButton i {
-    display: inline-block;
-}
-
-.deleteButton:hover span {
-    display: inline-block;
-}
-
-.deleteButton span {
-    display: none;
 }
\ No newline at end of file
diff --git a/website/public/styles/profile.css b/website/public/styles/profile.css
index 18e105e..8a93d12 100644
--- a/website/public/styles/profile.css
+++ b/website/public/styles/profile.css
@@ -27,16 +27,21 @@
     display: inline-block;
 }
 
+.friend-button-container div, .status-buttons-container div {
+    width: 200px;
+    display: inline-block;
+}
+
 .friend-button-container button, .status-buttons-container button, .group-button-container button {
     display: block;
+    float: right;
 
     margin: 7px 0;
 
     font-size: 18px;
 }
-
-.friend-button-container button, .status-buttons-container button, .group-button-fixed {
-    width: 200px;
+.status-buttons-container button {
+    float: left;
 }
 
 .group-button-container button {
@@ -76,19 +81,19 @@
     border: none;
 }
 
-.group-button-fancy span {
+.fancy-button span {
     display: none;
 }
 
-.group-button-fancy:hover {
+.fancy-button:hover {
     text-align: right;
 }
 
-.group-button-fancy i {
+.fancy-button i {
     display: inline-block;
 }
 
-.group-button-fancy:hover span {
+.fancy-button:hover span {
     display: inline-block;
     margin-right: 5px;
 }
diff --git a/website/views/post-view.php b/website/views/post-view.php
index 717e6a8..fadc791 100644
--- a/website/views/post-view.php
+++ b/website/views/post-view.php
@@ -13,11 +13,11 @@ $fullname = $post['fname'] . " " . $post['lname'] . " (" . $post['username'] . "
     </span>
 </div>
 <?php if (checkPermissionOnPost($postID, $_SESSION["userID"])) {?>
-    <button class="deleteButton"
+    <button class="deleteButton fancy-button"
             onclick="deletePost('<?=$postID?>')"
             type="submit">
-        <i class="fa fa-trash"></i>
         <span>Verwijder post</span>
+        <i class="fa fa-trash"></i>
     </button><br />
 <?php } ?>
 <div class='post-content'>
diff --git a/website/views/profile.php b/website/views/profile.php
index 62157f4..0cb5cc2 100644
--- a/website/views/profile.php
+++ b/website/views/profile.php
@@ -7,10 +7,16 @@
         <img alt="<?= $user["fname"] ?>" class="profile-picture main-picture <?= $user["onlinestatus"] ?>" src="<?= $user["profilepicture"] ?>"><br />
         <div class="platform">
             <div class="status-buttons-container">
-                <button disabled class="gray">
-                    <?= $user["onlinestatus"] ?>
-                </button>
-                <button disabled class="gray"><?= $user["role"] ?></button>
+                <div>
+                    <button disabled class="gray">
+                        <?= $user["onlinestatus"] ?>
+                    </button>
+                </div>
+                <div>
+                    <button disabled class="gray">
+                        <?= $user["role"] ?>
+                    </button>
+                </div>
             </div>
             <div class="friend-button-container">
                 <p>:)</p>

From 6d739a4480019709d6abe9addea37ade0ebbc34d Mon Sep 17 00:00:00 2001
From: Lars van Hijfte <larsvanhijfte@hotmail.com>
Date: Fri, 3 Feb 2017 00:24:38 +0100
Subject: [PATCH 15/19] Chat is now only loading the last 100 messages

---
 website/queries/private_message.php | 27 ++++++++++++++++-----------
 1 file changed, 16 insertions(+), 11 deletions(-)

diff --git a/website/queries/private_message.php b/website/queries/private_message.php
index 3b88563..f2df887 100644
--- a/website/queries/private_message.php
+++ b/website/queries/private_message.php
@@ -6,18 +6,23 @@ function getOldChatMessages($user2ID) {
     if (getFriendshipStatus($user2ID) == 1) {
         $stmt = prepareQuery("
         SELECT
-            *
+          *
         FROM
-            `private_message`
-        WHERE
-            `origin` = :user1 AND 
-            `destination` = :user2 OR 
-            `origin` = :user2 AND
-            `destination` = :user1
+            (SELECT
+                *
+            FROM
+                `private_message`
+            WHERE
+                `origin` = :user1 AND 
+                `destination` = :user2 OR 
+                `origin` = :user2 AND
+                `destination` = :user1
+            ORDER BY
+                `messageID` DESC
+            LIMIT
+              100) sub
         ORDER BY
-            `creationdate` ASC
-        LIMIT
-          100
+            `messageID` ASC
         ");
 
         $stmt->bindParam(":user1", $user1ID);
@@ -76,7 +81,7 @@ function getNewChatMessages($lastID, $destination) {
             `destination` = :user1) AND
             `messageID` > :lastID
         ORDER BY
-            `creationdate` ASC
+            `messageID` ASC
         ");
 
         $stmt->bindParam(':user1', $_SESSION["userID"]);

From 1a3efe9669089acffc404151616d26b1d3f9d984 Mon Sep 17 00:00:00 2001
From: Joey Lai <joeylai96@hotmail.com>
Date: Fri, 3 Feb 2017 10:12:37 +0100
Subject: [PATCH 16/19] Fixed W3Validation and url GETs

---
 website/public/fb-callback.php           |  71 --------------
 website/public/register(stash).php       | 116 -----------------------
 website/public/styles/index.css          |   6 --
 website/queries/checkInput.php           |   6 +-
 website/queries/login.php                |   7 +-
 website/views/facebookRegisterModal.php  |   8 +-
 website/{public => views}/fbRegister.php |   0
 website/views/forgotPasswordModal.php    |   4 +-
 website/views/homeLoginRegister.php      |  38 ++++----
 website/views/login-view.php             |  13 ++-
 website/{public => views}/register.php   |   0
 website/views/registerModal.php          |  13 +--
 12 files changed, 43 insertions(+), 239 deletions(-)
 delete mode 100644 website/public/fb-callback.php
 delete mode 100644 website/public/register(stash).php
 rename website/{public => views}/fbRegister.php (100%)
 rename website/{public => views}/register.php (100%)

diff --git a/website/public/fb-callback.php b/website/public/fb-callback.php
deleted file mode 100644
index 0ed0369..0000000
--- a/website/public/fb-callback.php
+++ /dev/null
@@ -1,71 +0,0 @@
-<?php
-$fb = new Facebook\Facebook([
-    'app_id' => $appID, // Replace {app-id} with your app id
-    'app_secret' => $appSecret,
-    'default_graph_version' => 'v2.2',
-]);
-
-$helper = $fb->getRedirectLoginHelper();
-
-try {
-    $accessToken = $helper->getAccessToken();
-} catch(Facebook\Exceptions\FacebookResponseException $e) {
-    // When Graph returns an error
-    echo 'Graph returned an error: ' . $e->getMessage();
-    exit;
-} catch(Facebook\Exceptions\FacebookSDKException $e) {
-    // When validation fails or other local issues
-    echo 'Facebook SDK returned an error: ' . $e->getMessage();
-    exit;
-}
-
-if (! isset($accessToken)) {
-    if ($helper->getError()) {
-        header('HTTP/1.0 401 Unauthorized');
-        echo "Error: " . $helper->getError() . "\n";
-        echo "Error Code: " . $helper->getErrorCode() . "\n";
-        echo "Error Reason: " . $helper->getErrorReason() . "\n";
-        echo "Error Description: " . $helper->getErrorDescription() . "\n";
-    } else {
-        header('HTTP/1.0 400 Bad Request');
-        echo 'Bad request';
-    }
-    exit;
-}
-
-// Logged in
-echo '<h3>Access Token</h3>';
-var_dump($accessToken->getValue());
-
-// The OAuth 2.0 client handler helps us manage access tokens
-$oAuth2Client = $fb->getOAuth2Client();
-
-// Get the access token metadata from /debug_token
-$tokenMetadata = $oAuth2Client->debugToken($accessToken);
-echo '<h3>Metadata</h3>';
-var_dump($tokenMetadata);
-
-// Validation (these will throw FacebookSDKException's when they fail)
-$tokenMetadata->validateAppId($appID); // Replace {app-id} with your app id
-// If you know the user ID this access token belongs to, you can validate it here
-//$tokenMetadata->validateUserId('123');
-$tokenMetadata->validateExpiration();
-
-if (! $accessToken->isLongLived()) {
-    // Exchanges a short-lived access token for a long-lived one
-    try {
-        $accessToken = $oAuth2Client->getLongLivedAccessToken($accessToken);
-    } catch (Facebook\Exceptions\FacebookSDKException $e) {
-        echo "<p>Error getting long-lived access token: " . $helper->getMessage() . "</p>\n\n";
-        exit;
-    }
-
-    echo '<h3>Long-lived</h3>';
-    var_dump($accessToken->getValue());
-}
-
-$_SESSION['fb_access_token'] = (string) $accessToken;
-
-// User is logged in with a long-lived access token.
-// You can redirect them to a members-only page.
-//header('Location: https://example.com/members.php');
\ No newline at end of file
diff --git a/website/public/register(stash).php b/website/public/register(stash).php
deleted file mode 100644
index 99ebc02..0000000
--- a/website/public/register(stash).php
+++ /dev/null
@@ -1,116 +0,0 @@
-<!DOCTYPE html>
-<html>
-<?php
-    include("../views/login_head.php");
-    require_once("../queries/connect.php");
-    include_once("../queries/register.php");
-    include_once("../queries/checkInput.php");
-    include_once("../queries/emailconfirm.php");
-?>
-<body>
-<?php
-    session_start();
-
-    if(isset($_SESSION["userID"])){
-        header("location: login.php");
-    }
-    // define variables and set to empty values
-    $name = $surname = $bday = $username = $password = $confirmpassword = $location = $housenumber = $email = $confirmEmail = $captcha = $ip = "";
-    $genericErr = $nameErr = $surnameErr = $bdayErr = $usernameErr = $passwordErr = $confirmpasswordErr = $locationErr = $housenumberErr = $emailErr = $confirmEmailErr = $captchaErr = "";
-    $correct = true;
-    $day_date = "dag";
-    $month_date = "maand";
-    $year_date = "jaar";
-
-    // Trying to register an account
-    if ($_SERVER["REQUEST_METHOD"] == "POST") {
-        try {
-            $name = test_input(($_POST["name"]));
-            checkInputChoice($name, "lettersAndSpaces");
-        } catch(lettersAndSpacesException $e){
-            $correct = false;
-            $nameErr = $e->getMessage();
-        }
-
-        try {
-            $surname = test_input(($_POST["surname"]));
-            checkInputChoice($surname, "lettersAndSpaces");
-        }
-        catch(lettersAndSpacesException $e){
-            $correct = false;
-            $surnameErr = $e->getMessage();
-        }
-
-        try{
-            $day_date = test_input(($_POST["day_date"]));
-            $month_date = test_input(($_POST["month_date"]));
-            $year_date = test_input(($_POST["year_date"]));
-            $bday = $year_date . "-" . $month_date . "-" . $day_date;
-            checkInputChoice($bday, "bday");
-        } catch(bdayException $e){
-            $correct = false;
-            $bdayErr = $e->getMessage();
-        }
-
-        try{
-            $username = str_replace(' ', '', test_input(($_POST["username"])));
-            checkInputChoice($username, "username");
-        } catch(usernameException $e){
-            $correct = false;
-            $usernameErr = $e->getMessage();
-        }
-
-        try{
-            $password = str_replace(' ', '', test_input(($_POST["password"])));
-            checkInputChoice($password, "longerEight");
-            matchPassword();
-        } catch(passwordException $e){
-            $correct = false;
-            $passwordErr = $e->getMessage();
-        } catch(confirmPasswordException $e){
-            $correct = false;
-            $confirmPasswordErr = $e->getMessage();
-        }
-
-        try{
-            $location = test_input(($_POST["location"]));
-            checkInputChoice($location, "lettersAndSpaces");
-        } catch(lettersAndSpacesException $e){
-            $correct = false;
-            $locationErr = $e->getMessage();
-        }
-
-        try{
-            $email = test_input(($_POST["email"]));
-            checkInputChoice($email, "email");
-            $confirmEmail = test_input(($_POST["confirmEmail"]));
-            matchEmail();
-        } catch(emailException $e){
-            $correct = false;
-            $emailErr = $e->getMessage();
-        } catch(confirmEmailException $e){
-            $correct = false;
-            $confirmEmailErr = $e->getMessage();
-        }
-
-        try{
-            $captcha = $_POST['g-recaptcha-response'];
-            checkCaptcha($captcha);
-        } catch(captchaException $e){
-            $correct = false;
-            $captchaErr = $e->getMessage();
-        }
-
-        try {
-            getIp();
-            registerCheck($correct);
-            sendConfirmEmailUsername($username);
-        } catch(registerException $e){
-            $genericErr = $e->getMessage();
-        }
-    }
-/* This view adds register view */
-include("../views/register-view.php");
-?>
-</body>
-</html>
diff --git a/website/public/styles/index.css b/website/public/styles/index.css
index c7a0aa8..68191ad 100644
--- a/website/public/styles/index.css
+++ b/website/public/styles/index.css
@@ -198,12 +198,6 @@ ul {
     animation-duration: 0.4s
 }
 
-/* Add Animation */
-@-webkit-keyframes animatetop {
-    from {top:-300px; opacity:0}
-    to {top:0; opacity:1}
-}
-
 @keyframes animatetop {
     from {top:-300px; opacity:0}
     to {top:0; opacity:1}
diff --git a/website/queries/checkInput.php b/website/queries/checkInput.php
index 69274ce..247050b 100644
--- a/website/queries/checkInput.php
+++ b/website/queries/checkInput.php
@@ -68,7 +68,7 @@ function validateBday($variable){
     }
 }
 
-// Checks for date
+/* Checks for date */
 function validateDate($date, $format)
 {
     $d = DateTime::createFromFormat($format, $date);
@@ -124,7 +124,7 @@ function validateEmail($variable){
         throw new emailException("Mag maximaal 50 karakters!");
     }
 }
-//255
+
 /* checks if an input is a valid email. */
 function validateFBEmail($variable){
     if (empty($variable)) {
@@ -138,6 +138,7 @@ function validateFBEmail($variable){
     }
 }
 
+/* checks if email is the same */
 function matchEmail(){
     if (strtolower($_POST["email"]) != strtolower($_POST["confirmEmail"])){
         throw new confirmEmailException("Emails matchen niet!");
@@ -153,7 +154,6 @@ function resetEmail($variable){
     }
 }
 
-
 /* checks if two passwords matches. */
 function matchPassword(){
     if ($_POST["password"] != $_POST["confirmpassword"]) {
diff --git a/website/queries/login.php b/website/queries/login.php
index 27c1f3b..3480991 100644
--- a/website/queries/login.php
+++ b/website/queries/login.php
@@ -1,5 +1,6 @@
 <?php
 
+//Find matching password with the inputted username/emailadress.
 function getUser() {
     $stmt = prepareQuery("
     SELECT
@@ -34,6 +35,7 @@ function getUserID() {
 }
 
 function validateLogin($username, $password, $url){
+    echo $url;
     // Empty username or password field
     if (empty($username) || empty($password)) {
         throw new loginException("Inloggegevens zijn niet ingevuld");
@@ -44,7 +46,7 @@ function validateLogin($username, $password, $url){
         $userID = getUser()["userID"];
         $role = getUser()["role"];
 
-        // If there's an account, go to the profile page
+        // If there's an account, check if the account is banned, frozen or unconfirmed.
         if(password_verify($psw, $hash)) {
             if ($role == "banned"){
                 echo "<script>
@@ -75,8 +77,9 @@ function validateLogin($username, $password, $url){
                 $_SESSION["userID"] = $userID;
                 if(!isset($url) or $url == "") {
                     header("location: profile.php");
+                    echo "succes";
                 } else{
-                    header("location: $url");
+                    header("location: ".$url);
                 }
 
             }
diff --git a/website/views/facebookRegisterModal.php b/website/views/facebookRegisterModal.php
index 7271d63..a38a3a3 100644
--- a/website/views/facebookRegisterModal.php
+++ b/website/views/facebookRegisterModal.php
@@ -1,7 +1,6 @@
 <!-- The Modal -->
 <div id="fbModal" class="modal">
     <form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>"
-          return= $correct
           method="post"
           name="fbModal">
 
@@ -66,17 +65,16 @@
                 </div>
                 <?php } ?>
             </div>
-            *<span class="error"> <?php echo $fbEmailErr;?></span>
+            <span class="error"> <?php echo $fbEmailErr;?></span>
             <div class="modal-footer">
                 <button type="submit"
                         value="fbRegister"
-                        name="submit"
-                        id="frm1_submit">
+                        name="submit">
                     Registreer account
                 </button>
             </div>
         </div>
-
+        <!-- Facebook information-->
         <input type="hidden"
                name="fbName"
                value="<?php echo $fbName ?>">
diff --git a/website/public/fbRegister.php b/website/views/fbRegister.php
similarity index 100%
rename from website/public/fbRegister.php
rename to website/views/fbRegister.php
diff --git a/website/views/forgotPasswordModal.php b/website/views/forgotPasswordModal.php
index 2ebdbb9..ebb9d64 100644
--- a/website/views/forgotPasswordModal.php
+++ b/website/views/forgotPasswordModal.php
@@ -4,7 +4,6 @@
 <!-- The Modal -->
 <div id="myModal" class="modal">
     <form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>"
-          return= $correct
           method="post"
           name="forgotPassword">
 
@@ -26,8 +25,7 @@
                 <div class="login_containerfault"><span><?php echo $resetErr; ?></span></div>
                 <button type="submit"
                         value="reset"
-                        name="submit"
-                        id="frm1_submit">
+                        name="submit">
                     Reset password
                 </button>
             </div>
diff --git a/website/views/homeLoginRegister.php b/website/views/homeLoginRegister.php
index 55277e7..ad7be40 100644
--- a/website/views/homeLoginRegister.php
+++ b/website/views/homeLoginRegister.php
@@ -11,16 +11,16 @@ if(isset($_SESSION["userID"])){
 // Facebook variables
 $appID = "353857824997532";
 $appSecret = "db47e91ffbfd355fdd11b4b65eade851";
-$fbUsername = $fbPassword = $fbConfirmpassword = "";
+$fbUsername = $fbPassword = $fbConfirmpassword = $fbName = $fbSurname = $fbBday = $fbEmail = $fbUserID = "";
 $fbUsernameErr = $fbPasswordErr = $fbConfirmpasswordErr = $fbEmailErr = $fbBdayErr = "";
 $fbCorrect = true;
-$fbName = $fbSurname = $fbBday = $fbEmail = $fbUserID = "";
 
 // Register variables
 $name = $surname = $bday = $username = $password = $confirmpassword = $location = $housenumber = $email = $confirmEmail = $captcha = $ip = "";
 $genericErr = $nameErr = $surnameErr = $bdayErr = $usernameErr = $passwordErr = $confirmpasswordErr = $locationErr = $housenumberErr = $emailErr = $confirmEmailErr = $captchaErr = "";
 $correct = true;
 
+// Bday dates
 $day_date = $month_date = $year_date = "";
 $fbDay_date = $fbMonth_date = $fbYear_date = "";
 
@@ -28,22 +28,14 @@ $fbDay_date = $fbMonth_date = $fbYear_date = "";
 $user = $psw = $remember ="";
 $loginErr = $resetErr = $fbRegisterErr ="";
 
-//if ($_SERVER["REQUEST_METHOD"] == "GET") {
-//    try {
-//        $user = ($_POST["user"]);
-//        validateLogin($_POST["user"], $_POST["psw"], "https://$_SERVER[HTTP_HOST]$_SERVER[REQUEST_URI]");
-//    } catch(loginException $e) {
-//        $loginErr = $e->getMessage();
-//    }
-//}
-
 if ($_SERVER["REQUEST_METHOD"] == "POST") {
+    $url = $_POST["url"];
     // Checks for which button is pressed
     switch ($_POST["submit"]) {
         case "login":
             try {
                 $user = ($_POST["user"]);
-                validateLogin($_POST["user"], $_POST["psw"], $_POST["url"]);
+                validateLogin($_POST["user"], $_POST["psw"], $url);
             } catch(loginException $e) {
                 $loginErr = $e->getMessage();
             }
@@ -62,18 +54,22 @@ if ($_SERVER["REQUEST_METHOD"] == "POST") {
             }
             break;
         case "register":
-            include("register.php");
+            include("../views/register.php");
             break;
         case "fbRegister":
-            include("fbRegister.php");
+            include("../views/fbRegister.php");
             break;
     }
 }
+
+// Get facebook information with facebook PHP SDK.
 $fb = new Facebook\Facebook([
     'app_id' => $appID,
     'app_secret' => $appSecret,
     'default_graph_version' => 'v2.2',
 ]);
+
+// Redirect back to login.php after logging/canceling with facebook.
 $redirect = "https://myhyvesbookplus.nl/login.php";
 $helper = $fb->getRedirectLoginHelper();
 
@@ -88,6 +84,7 @@ try {
     exit;
 }
 
+// If theres no facebook account logged in, ask for permission.
 if(!isset($acces_token)){
     $permission=["email", "user_birthday"];
     $loginurl=$helper->getLoginUrl($redirect,$permission);
@@ -96,13 +93,14 @@ if(!isset($acces_token)){
     $response = $fb->get('/me?fields=email,name,birthday');
     $usernode = $response->getGraphUser();
 
+    // Get facebook information
     $nameSplit = explode(" ", $usernode->getName());
     $fbName = $nameSplit[0];
     $fbSurname = $nameSplit[1];
     $fbUserID = $usernode->getID();
     $fbEmail = $usernode->getProperty("email");
-//        $image = 'https://graph.facebook.com/' . $usernode->getId() . '/picture?width=200';
 
+    // If there is an account, check if the account is banned or frozen.
     if (fbLogin($fbUserID) == 1) {
         $fbID = getfbUserID($fbUserID)["userID"];
         $fbRole = getfbUserID($fbUserID)["role"];
@@ -110,16 +108,20 @@ if(!isset($acces_token)){
             echo "<script>
                          window.onload=bannedAlert();
                     </script>";
+
         } else if($fbRole == "frozen"){
             $_SESSION["userID"] = $fbID;
             echo "<script>
-                         window.onload=frozenAlert();
-                         window.location.href= 'profile.php';
-                    </script>";
+                     window.onload=frozenAlert();
+                     window.location.href= 'profile.php';
+                  </script>";
+
         } else {
             $_SESSION["userID"] = $fbID;
             header("location: profile.php");
+
         }
+    // Registration with faceobook if theres no account.
     } else {
         echo "<script>
                     window.onload = function() {
diff --git a/website/views/login-view.php b/website/views/login-view.php
index 89487de..e3309db 100644
--- a/website/views/login-view.php
+++ b/website/views/login-view.php
@@ -13,12 +13,16 @@
     <h1>Welkom bij MyHyvesbook+</h1>
     <!-- Login content  -->
     <form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>"
-          return=$correct
           method="post"
           name="login">
+
+        <!-- Url parameter  -->
         <input type="hidden"
                name="url"
-               value="<?= $_GET["url"] ?>"/>
+               value="<?php
+                        if(isset($_GET["url"])) {
+                            echo $_GET["url"];
+                        } ?>"/>
 
         <!-- Login name -->
         <div class="login_containerlogin">
@@ -50,8 +54,7 @@
         <div class="login_containerlogin">
             <button type="submit"
                     value="login"
-                    name="submit"
-                    id="frm1_submit">
+                    name="submit">
             Inloggen
             </button>
         </div>
@@ -72,5 +75,7 @@
 <?php
     if(!isset($acces_token)) {
         echo '<div class="login_containerlogin"><a class="fbButton" href="' . $loginurl . '"><i class="fa fa-facebook-square"></i> login met Facebook!</a></div>';
+    } else {
+        echo '<div class="login_containerlogin"><a class="fbButton" href="' . "https://myhyvesbookplus.nl/login.php" . '"><i class="fa fa-facebook-square"></i> loguit Facebook sessie</a></div>';
     }
 ?>
\ No newline at end of file
diff --git a/website/public/register.php b/website/views/register.php
similarity index 100%
rename from website/public/register.php
rename to website/views/register.php
diff --git a/website/views/registerModal.php b/website/views/registerModal.php
index 9ad48dc..b9f8d95 100644
--- a/website/views/registerModal.php
+++ b/website/views/registerModal.php
@@ -4,7 +4,6 @@
 <!-- The Modal -->
 <div id="registerModal" class="modal">
     <form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>"
-          return= $correct
           method="post"
           name="forgotPassword">
 
@@ -15,14 +14,11 @@
                 <h3>Registreer uw account</h3>
             </div>
             <div class="modal-body">
-                <form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>"
-                      return= $correct
-                      method="post">
 
                     <div class="login_containerregister"><label>U krijgt een bevestigingsemail na het registreren</label></div>
 
                     <!-- Error message -->
-                    <div class="login_containerfault"><?php echo $genericErr;?></span></div>
+                    <div class="login_containerfault"><span><?php echo $genericErr;?></span></div>
 
                     <!-- Register name -->
                     <div class="login_containerregister">
@@ -82,7 +78,6 @@
                                placeholder="Voer uw wachtwoord in"
                                name="password"
                                value="<?php echo $password ?>"
-                               id="password"
                                required>
                         *<span class="error"> <?php echo $passwordErr;?></span>
                         <ul>
@@ -96,7 +91,6 @@
                                placeholder="Herhaal wachtwoord"
                                name="confirmpassword"
                                value="<?php echo $confirmpassword ?>"
-                               id="confirmpassword"
                                title="Herhaal wachtwoord"
                                required>
                         *<span class="error"> <?php echo $confirmpasswordErr;?></span>
@@ -120,7 +114,6 @@
                                placeholder="Voer uw email in"
                                name="email"
                                value="<?php echo $email ?>"
-                               id="email"
                                title="Voer een geldige email in"
                                required>
                         *<span class="error"> <?php echo $emailErr;?></span>
@@ -133,7 +126,6 @@
                                placeholder="Herhaal uw email"
                                name="confirmEmail"
                                value="<?php echo $confirmEmail ?>"
-                               id="email"
                                title="Herhaal uw email"
                                required>
                         *<span class="error"> <?php echo $confirmEmailErr;?></span>
@@ -152,8 +144,7 @@
                 <!-- Register button -->
                 <button type="submit"
                         value="register"
-                        name="submit"
-                        id="frm1_submit">
+                        name="submit">
                     Registreer
                 </button>
             </div>

From 02349dbe2846597ee77772bfef19eeb454455419 Mon Sep 17 00:00:00 2001
From: Lars van Hijfte <larsvanhijfte@hotmail.com>
Date: Fri, 3 Feb 2017 10:30:44 +0100
Subject: [PATCH 17/19] Changed description

---
 website/public/js/friendButtons.js | 4 ++--
 website/views/head.php             | 2 +-
 website/views/login_head.php       | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/website/public/js/friendButtons.js b/website/public/js/friendButtons.js
index 303ccf9..87222e9 100644
--- a/website/public/js/friendButtons.js
+++ b/website/public/js/friendButtons.js
@@ -53,12 +53,12 @@ function placeFriendButtons() {
                 $buttonContainer.append(
                     "<div><button class='"+ class1 +" fancy-button friend-button' value='"+ value1 +"'>" +
                     "<span>"+ text1 +"</span>" +
-                    "<i class='fa "+ icon1 +"'></i> " +
+                    "<i class='fa fa-fw "+ icon1 +"'></i> " +
                     "</button></div>");
                 $buttonContainer.append(
                     "<div><button class='"+ class2 +" fancy-button friend-button' value='"+ value2 +"'>" +
                     "<span>"+ text2 +"</span>" +
-                    "<i class='fa "+ icon2 +"'></i> " +
+                    "<i class='fa fa-fw "+ icon2 +"'></i> " +
                     "</button></div>");
 
 
diff --git a/website/views/head.php b/website/views/head.php
index 52bcab8..3ec8a79 100644
--- a/website/views/head.php
+++ b/website/views/head.php
@@ -1,5 +1,5 @@
 <meta charset="UTF-8">
-<meta name="description" content="MyHyvesbook+ is het sociaal media voor alle coole mensen.">
+<meta name="description" content="MyHyvesbook+ is het sociaal medium voor alle coole mensen. Stap nu over van facebook op het gloednieuwe en betere sociaal medium.">
 <meta name="keywords" content="MyHyvesbookPlus,Myhyvesbook+,sociaal,media">
 <meta name="author" content="MyHyvesbookplus corporation">
 <title>MyHyvesbook+</title>
diff --git a/website/views/login_head.php b/website/views/login_head.php
index b4b2724..9e580df 100644
--- a/website/views/login_head.php
+++ b/website/views/login_head.php
@@ -1,6 +1,6 @@
 <head>
     <meta charset="UTF-8">
-    <meta name="description" content="MyHyvesbook+ is het sociaal media voor alle coole mensen.">
+    <meta name="description" content="MyHyvesbook+ is het sociaal medium voor alle coole mensen. Stap nu over van facebook op het gloednieuwe en betere sociaal medium.">
     <meta name="keywords" content="MyHyvesbookPlus,Myhyvesbook+,sociaal,media">
     <meta name="author" content="MyHyvesbookplus corporation">
     <title>MyHyvesbook+</title>

From 127162b93834651aa12ef7885762b8dfad1ff3ec Mon Sep 17 00:00:00 2001
From: Joey Lai <joeylai96@hotmail.com>
Date: Fri, 3 Feb 2017 10:32:54 +0100
Subject: [PATCH 18/19] Fixed url

---
 website/views/homeLoginRegister.php | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/website/views/homeLoginRegister.php b/website/views/homeLoginRegister.php
index ad7be40..24fa266 100644
--- a/website/views/homeLoginRegister.php
+++ b/website/views/homeLoginRegister.php
@@ -29,13 +29,12 @@ $user = $psw = $remember ="";
 $loginErr = $resetErr = $fbRegisterErr ="";
 
 if ($_SERVER["REQUEST_METHOD"] == "POST") {
-    $url = $_POST["url"];
     // Checks for which button is pressed
     switch ($_POST["submit"]) {
         case "login":
             try {
                 $user = ($_POST["user"]);
-                validateLogin($_POST["user"], $_POST["psw"], $url);
+                validateLogin($_POST["user"], $_POST["psw"], $_POST["url"];);
             } catch(loginException $e) {
                 $loginErr = $e->getMessage();
             }

From ecd24ef442190bfbc986266f411a440d4a5f9274 Mon Sep 17 00:00:00 2001
From: Lars van Hijfte <larsvanhijfte@hotmail.com>
Date: Fri, 3 Feb 2017 10:34:07 +0100
Subject: [PATCH 19/19] Revert "Merge branch 'joey-testing' into 'master'"

This reverts merge request !196
---
 website/views/homeLoginRegister.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/website/views/homeLoginRegister.php b/website/views/homeLoginRegister.php
index 24fa266..ad7be40 100644
--- a/website/views/homeLoginRegister.php
+++ b/website/views/homeLoginRegister.php
@@ -29,12 +29,13 @@ $user = $psw = $remember ="";
 $loginErr = $resetErr = $fbRegisterErr ="";
 
 if ($_SERVER["REQUEST_METHOD"] == "POST") {
+    $url = $_POST["url"];
     // Checks for which button is pressed
     switch ($_POST["submit"]) {
         case "login":
             try {
                 $user = ($_POST["user"]);
-                validateLogin($_POST["user"], $_POST["psw"], $_POST["url"];);
+                validateLogin($_POST["user"], $_POST["psw"], $url);
             } catch(loginException $e) {
                 $loginErr = $e->getMessage();
             }