Merge branch 'master' of ssh://gitlab-fnwi.uva.nl:1337/11166932/WebDB

2017-01-19 16:04:07 +01:00
parent f535bb10ca 7792ceaeeb
commit 56b17675fa
33 changed files with 530 additions and 555 deletions
--- a/.gitignore
+++ b/.gitignore
@@ -8,7 +8,7 @@
 # Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839
-
+.idea/*
 # User-specific stuff:
 .idea/workspace.xml
 .idea/tasks.xml
--- a/website/mysql_config.xml
+++ b/website/mysql_config.xml
@@ -1,7 +0,0 @@
 <?xml version='1.0'?>
 <MySQL_INIT>
    <mysql_host>localhost</mysql_host>
    <mysql_database>myhyvesbookplus</mysql_database>
    <mysql_username>mhbp</mysql_username>
    <mysql_password>qdtboXhCHJyL2szC</mysql_password>
 </MySQL_INIT>
--- a/website/public/API/loadMessages.php
+++ b/website/public/API/loadMessages.php
@@ -1,6 +1,8 @@
 <?php
-include_once("../queries/private_message.php");
+session_start();
 require_once("../../queries/connect.php");
 require_once("../../queries/private_message.php");
 if (isset($_POST["lastID"]) && $_POST["lastID"] != "") {
--- a/website/public/API/sendMessage.php
+++ b/website/public/API/sendMessage.php
@@ -1,6 +1,8 @@
 <?php
-include_once("../queries/private_message.php");
+session_start();
 require_once("../../queries/connect.php");
 require_once("../../queries/private_message.php");
 if (isset($_POST["destination"]) &&
    isset($_POST["content"])) {
--- a/website/public/img/error404.jpg
+++ b/website/public/img/error404.jpg
--- a/website/public/js/chat.js
+++ b/website/public/js/chat.js
@@ -1,10 +1,12 @@
 $(document).ready(function() {
    loadMessages();
    sayEmpty();
    $(".chat-field").hide();
 });
 function loadMessages() {
    $.post(
-        "loadMessages.php",
+        "API/loadMessages.php",
        $("#lastIDForm").serialize()
    ).done(function(data) {
        if (data && data != "[]") {
@@ -23,7 +25,7 @@ function loadMessages() {
 function sendMessage() {
    console.log($("#sendMessageForm").serialize());
    $.post(
-        "sendMessage.php",
+        "API/sendMessage.php",
        $("#sendMessageForm").serialize()
    ).done(function( data ) {
        console.log(data);
@@ -51,7 +53,14 @@ function addMessages(messages) {
 }
 function switchUser(userID) {
    $(".chat-field").show();
    $(".destinationID").val(userID);
    $("#chat-history").html("");
    $("#lastID").val("");
    $(".chat-left .friend-item").removeClass("active-friend-chat");
    $(".chat-left #friend-item-" + userID).addClass("active-friend-chat");
 }
 function sayEmpty() {
    $("#chat-history").html("Begin nu met chatten!");
 }
--- a/website/public/login.php
+++ b/website/public/login.php
@@ -2,7 +2,7 @@
 <html>
 <?php
    include("../views/login_head.php");
-    include_once("../queries/connect.php");
+    require_once("../queries/connect.php");
    include_once("../queries/login.php");
 ?>
 <body>
@@ -15,19 +15,19 @@
    // Trying to login
    if ($_SERVER["REQUEST_METHOD"] == "POST") {
        $uname=strtolower($_POST["uname"]);
        // Empty username or password field
        if (empty($_POST["uname"]) || empty($_POST["psw"])) {
            $loginErr = "Gebruikersnaam of wachtwoord is niet ingevuld";
        }
        else {
-            $psw=$_POST["psw"];
+            $uname = strtolower(test_input($_POST["uname"]));
-            $hash=hashPassword()["password"];
+            $psw = test_input($_POST["psw"]);
-            $userid=hashPassword()["userID"];
+            $hash = getUser()["password"];
            $userid = getUser()["userID"];
            // If there's an account, go to the profile page
-            if(password_verify($psw.$uname, $hash)) {
+            if(password_verify($psw, $hash)) {
               $_SESSION["userID"] = $userid;
               header("location: profile.php");
--- a/website/public/logout.php
+++ b/website/public/logout.php
@@ -0,0 +1,15 @@
 <!DOCTYPE html>
 <html>
 <?php
    include("../views/login_head.php");
    require_once("../queries/connect.php");
    include_once("../queries/login.php");
 ?>
 <body>
 <?php
    session_start();
    unset($_SESSION["userID"]);
    header("Location: login.php");
 ?>
 </body>
 </html>
--- a/website/public/register.php
+++ b/website/public/register.php
@@ -2,9 +2,9 @@
 <html>
 <?php
    include("../views/login_head.php");
-    include_once("../queries/connect.php");
+    require_once("../queries/connect.php");
    include_once("../queries/register.php");
-
+    include_once("../queries/checkInput.php");
 ?>
 <body>
 <?php
@@ -15,149 +15,27 @@
    $genericErr = $nameErr = $surnameErr = $bdayErr = $usernameErr = $passwordErr = $confirmpasswordErr = $locationErr = $housenumberErr = $emailErr = "";
    $correct = true;
    // Saves information of filling in the form
    if (isset($_POST["name"])) {
        $name = $_POST["name"];
    }
    if (isset($_POST["surname"])) {
        $surname = $_POST["surname"];
    }
    if (isset($_POST["bday"])) {
        $bday = $_POST["bday"];
    }
    if (isset($_POST["username"])) {
        $username = $_POST["username"];
    }
    if (isset($_POST["password"])) {
        $password = $_POST["password"];
    }
    if (isset($_POST["location"])) {
        $location = $_POST["location"];
    }
    if (isset($_POST["housenumber"])) {
        $housenumber = $_POST["housenumber"];
    }
    if (isset($_POST["email"])) {
        $email = $_POST["email"];
    }
    // Trying to register an account
    if ($_SERVER["REQUEST_METHOD"] == "POST") {
-        if (empty($_POST["name"])) {
+        checkInputChoice("name", "lettersAndSpace");
-            $nameErr = "Naam is verplicht!";
+        checkInputChoice("surname", "lettersAndSpace");
            $correct = false;
        } else {
            if (!preg_match("/^[a-zA-Z ]*$/",$name)) {
                $nameErr = "Alleen letters en spaties zijn toegestaan!";
                $correct = false;
            }
        }
        if (empty($_POST["surname"])) {
            $surnameErr = "Achternaam is verplicht!";
            $correct = false;
        } else {
            if (!preg_match("/^[a-zA-Z ]*$/",$surname)) {
                $surnameErr = "Alleen letters en spaties zijn toegestaan!";
                $correct = false;
            }
        }
        if (empty($_POST["bday"])) {
            $bdayErr = "Geboortedatum is verplicht!";
            $correct = false;
        }
        if (empty($_POST["username"])) {
            $usernameErr = "Gebruikersnaam is verplicht!";
            $correct = false;
        } else {
-            if (strlen($username) < 6) {
+          $bday = test_input($_POST["bday"]);
                $usernameErr = "Gebruikersnaam moet minstens 6 karakters bevatten";
                $correct = false;
            } else if (getExistingUsername() == 1){
                $usernameErr = "Gebruikersnaam bestaat al";
                $correct = false; 
            }
        }
-        if (empty($_POST["password"])) {
+        checkInputChoice("username", "username");
-            $passwordErr = "Wachtwoord is verplicht!";
+        checkInputChoice("password", "longerEigth");
-            $correct = false;
+        checkInputChoice("confirmpassword", "");
-
+        matchPassword();
-        } else {
+        checkInputChoice("location", "lettersAndSpace");
-            if (strlen($password) < 8) {
+        checkInputChoice("email", "email");
-                $passwordErr = "Wachtwoord moet minstens 8 karakters bevatten";
+        registerCheck();
                $correct = false;
            }
        }
        if (empty($_POST["confirmpassword"])) {
            $confirmpasswordErr = "Herhaal wachtwoord!";
            $correct = false;
        }
        if ($_POST["password"] != $_POST["confirmpassword"]) {
            $confirmpasswordErr = "Wachtwoorden matchen niet";
            $correct = false;
        }
        if (empty($_POST["location"])) {
            $locationErr = "Straatnaam is verplicht!";
            $correct = false;
        } else {
            if (!preg_match("/^[a-zA-Z ]*$/",$location)) {
                $locationErr = "Alleen letters en spaties zijn toegestaan!";
                $correct = false;
            }
        }
        if (empty($_POST["email"])) {
            $emailErr = "Email is verplicht!";
            $correct = false;
        } else {
            if (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
                $emailErr = "Geldige email invullen!";
                $correct = false;
            } else if (getExistingEmail() == 1){
                $emailErr = "Email bestaat al";
                $correct = false;
            }
        }
        // Checks if everything is filled in correctly
        if ($correct == false){
            $genericErr = "Bepaalde velden zijn verkeerd of niet ingevuld!";
        } else {
            registerAccount();
            header("location: login.php");
        }
    }
 /* This view adds register view */
 include("../views/register-view.php");
 ?>
--- a/website/public/settings.php
+++ b/website/public/settings.php
@@ -14,6 +14,7 @@
 <?php
 include("../views/main.php");
 $notImplemented = new settingsMessage("angry", "Deze functie werkt nog niet :(");
 if ($_SERVER["REQUEST_METHOD"] == "POST") {
    switch ($_POST["form"]) {
@@ -24,16 +25,10 @@ if ($_SERVER["REQUEST_METHOD"] == "POST") {
            $result = updatePassword();
            break;
        case "email":
-            $result = array (
+            $result = changeEmail();
                "type" => "settings-message-angry",
                "message" => "Deze functie werkt nog niet :("
            );
            break;
        case "picture":
-            $result = array (
+            $result = $notImplemented;
                "type" => "settings-message-angry",
                "message" => "Deze functie werkt nog niet :("
            );
            break;
    }
 }
--- a/website/public/styles/chat.css
+++ b/website/public/styles/chat.css
@@ -88,4 +88,9 @@
    padding: 5px 10px;
    border-radius: 0 10px 10px 0;
    box-shadow: 0 1px 3px rgba(0,0,0,0.12), 0 1px 2px rgba(0,0,0,0.24);
 }
 .active-friend-chat {
    background: aquamarine;
    color: #333;
 }
--- a/website/public/styles/index.css
+++ b/website/public/styles/index.css
@@ -1,22 +1,6 @@
 ::selection {
    background: #845663;
    color: white;
 }
 ::-moz-selection {
    background: #845663;
    color: white;
 }
 a, a:link, a:visited, a:hover, a:active {
    color: inherit;
    text-decoration: none;
 }
 a.button {
-    background-color: #845663;
+    background-color: #405550;
-    border: 2px solid black;
+    border-radius: 10px;
    border-radius: 12px;
    color: white;
    cursor: pointer;
    height: 50%;
@@ -27,64 +11,19 @@ a.button {
    font-size: 16px;
 }
 a[data-title]:hover:after, img[data-title]:hover:after, span[data-title]:hover:after,
 div[data-title]:hover:after{
    content: attr(data-title);
    padding: 4px 4px;
    color: #FFFFFF;
    position: absolute;
    left: 0;
    top: 100%;
    z-index: 20;
    white-space: nowrap;
    -moz-border-radius: 5px;
    -webkit-border-radius: 5px;
    border-radius: 5px;
    -moz-box-shadow: 0px 0px 4px #222;
    -webkit-box-shadow: 0px 0px 4px #222;
    box-shadow: 0px 0px 4px #222;
    background-color: #333;
    font-size: 15px;
    line-height: normal;
    font-family: Arial, sans-serif;
 }
 /* Add Zoom Animation */
 .animate {
    animation: animatezoom 0.6s
    -webkit-animation: animatezoom 0.6s;
 }
 /* Body */
 body {
    height: 900px;
-
+    background-color: #C8CABD;
-    background-image: url(https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTEnqKdVtLbxjKuNsCSCxFRhTOpp3Gm0gsU8bMgA_MeUYyzrUFy);
+    /*background-image: url(http://play.pokemonshowdown.com/fx/client-bg-shaymin.jpg);
    background-size: cover;
-    background-repeat: repeat-x;
+    background-attachment: fixed;*/
    background-attachment: fixed;
    /*background-color: #B78996;*/
    color: #333;
    font-family: Arial, sans-serif;
 }
 /* stijl voor alle buttons */
 button {
    background-color: #845663;
    border: 2px solid black;
    border-radius: 12px;
    color: white;
    cursor: pointer;
    height: 50%;
    margin: 8px 0;
    padding: 14px 20px;
    width: 25%;
    font-family: Arial;
    font-size: 16px;
 }
 /* The Close Button */
 .close {
  /* Position it in the top right corner outside of the modal */
@@ -106,20 +45,18 @@ button {
 /* inlogform */
 form {
    /*background-color: #a87a87;*/
    border: 5px solid #325da3;
    background-color: #a87a87;
    border-radius: 12px;
-    height: 55%;
+    height: 75%;
-    margin: 35px auto;
+    margin: 10px auto;
-    width: 45%;
+    width: 70%;
    overflow-y:auto;
 }
 /* inlog titel */
 h1 {
-    padding: 16px;
+    padding: 8px;
    text-align: center;
-    font-size: 2.2em;
+    font-size: 1.5em;
 }
 /* registreer titel*/
@@ -130,30 +67,34 @@ h2 {
 }
 input[type=text], input[type=password], input[type=email], input[type="date"] {
    border-radius: 12px;
    border: 5px solid #ccc;
    box-sizing: border-box;
    border-color: #C8CABD;
    display: inline-block;
    height: 50%;
    padding: 8px 20px;
    margin: 4px 0;
    width: 50%;
    font-family: Arial;
    font-size: 16px;
 }
 /*
 input[type=text], input[type=password], input[type=email], input[type="date"] {
    border: 0px;
    border-bottom: 4px solid lightgray;
    border-radius: 0px;
 }*/
 button[type=submit] {
-    background-color: #845663;
+    background-color: #C8CABD;
-    border: 2px solid black;
+    color: black  ;
    border-radius: 12px;
    color: white;
    cursor: pointer;
    height: 50%;
    margin: 8px 0;
    padding: 14px 20px;
    width: 50%;
    font-family: Arial;
    font-size: 16px;
    width: 50%;
 }
 .error {
    font-family: Arial;
    font-size: 15px;
    color: red;
 }
 label {
@@ -179,52 +120,31 @@ label {
    color: red;
 }
 /* The Modal (background) */
 .modal {
    background-color: rgb(0,0,0); /* Fallback color */
    background-color: rgba(0,0,0,0.4); /* Black w/ opacity */
    display: none; /* Hidden by default */
    height: 100%;
    left: 0;
    margin: auto;
    overflow: auto; /* Enable scroll if needed */
    padding-top: 60px;
    position: fixed; /* Stay in place */
    top: 0;
    width: 100%; /* Full width */
    z-index: 1; /* Sit on top */
 }
 /* Modal Content/Box */
 .modal-content {
    background-color: #B78996;
    border: 5px solid #325da3;
    margin: 5px auto; /* 15% from the top and centered */
    overflow-y: auto;
    width: 40%; /* Could be more or less, depending on screen size */
    height: 60%;
 }
@keyframes animatezoom {
    from {transform: scale(0)}
    to {transform: scale(1)}
 }
-/* datepicker */
+/* White boxes (squares) */
-select {
+.platform {
-    border-radius: 12px;
+    background-color: #FFFFFF;
-    border: 5px solid #ccc;
+    /*background-image: url(http://www.planwallpaper.com/static/images/518071-background-hd_xO1TwRc.jpg);
-    box-sizing: border-box;
+    background-size: cover;
-    display: inline-block;
+    background-repeat: repeat-x;
-    height: 50%;
+    background-attachment: fixed;*/
-    padding: 12px 20px;
+    box-shadow: 0 1px 3px rgba(0,0,0,0.12), 0 1px 2px rgba(0,0,0,0.24);
-    margin: 8px 0;
+    height: 53%;
-    width: 18%;
+    margin: 34px auto;
-    font-family: Arial;
+    overflow-y: auto;
-    font-size: 16px;
+    padding: 20px;
    width: 35%;
 }
 /*.platform {
  width: 40%;
  margin: 34px auto;
 }*/
@-webkit-keyframes animatezoom {
    from {-webkit-transform: scale(0)}
    to {-webkit-transform: scale(1)}
--- a/website/public/styles/menu.css
+++ b/website/public/styles/menu.css
@@ -30,9 +30,14 @@
    cursor: pointer;
 }
 .friend-item:hover {
    background: #845663;
    color: white;
 }
 .menu button {
    background: none;
-    color: #333;
+    color: inherit;
    width: 100%;
    height: 100%;
    padding: 0;
--- a/website/public/template_sql.php
+++ b/website/public/template_sql.php
@@ -7,7 +7,7 @@
 include_once("../queries/connect.php");
 include_once("../queries/friendship.php");
-$friends = selectAllFriends($db, 666);
+$friends = selectAllFriends(666);
 while($friend = $friends->fetch(PDO::FETCH_ASSOC)) {
    echo $friend['username'].' '.$friend['onlinestatus'] . "<br />";
 }
--- a/website/queries/checkInput.php
+++ b/website/queries/checkInput.php
@@ -0,0 +1,95 @@
 <?php
 function checkInputChoice($variable, $option){
    if (empty($_POST[$variable])) {
        $GLOBALS[$variable . "Err"] = "Verplicht!";
        $GLOBALS["correct"] = false;
    } else {
        $GLOBALS[$variable] = test_input($_POST[$variable]);
        switch ($option) {
          case "lettersAndSpace":
            checkonly($variable);
            break;
          case "username";
            username($variable);
            break;
          case "longerEigth";
            longerEigth($variable);
            break;
          case "email";
            validateEmail($variable);
            break;
          default:
            break;
        }
    }
 }
 function checkOnly($variable){
    if (!preg_match("/^[a-zA-Z ]*$/",$GLOBALS[$variable])) {
        $GLOBALS[$variable . "Err"] = "Alleen letters en spaties zijn toegestaan!";
        $correct = false;
    }
 }
 function username($variable){
    if (strlen($GLOBALS[$variable]) < 6) {
        $GLOBALS[$variable . "Err"] = "Gebruikersnaam moet minstens 6 karakters bevatten";
        $correct = false;
    } else if (getExistingUsername() == 1) {
        $GLOBALS[$variable . "Err"] = "Gebruikersnaam bestaat al";
        $correct = false;
    }
 }
 function longerEigth($variable){
    if (strlen($GLOBALS[$variable]) < 8) {
        $GLOBALS[$variable . "Err"] = "Moet minstens 8 karakters bevatten";
        $correct = false;
    }
 }
 function validateEmail($variable){
    if (!filter_var($GLOBALS[$variable], FILTER_VALIDATE_EMAIL)) {
        $GLOBALS[$variable . "Err"] = "Geldige email invullen!";
        $correct = false;
    } else if (getExistingEmail() == 1){
        $GLOBALS[$variable . "Err"] = "Email bestaat al";
        $correct = false;
    }
 }
 function matchPassword(){
    if ($_POST["password"] != $_POST["confirmpassword"]) {
        $GLOBALS["confirmpasswordErr"] = "Wachtwoorden matchen niet";
        $GLOBALS["correct"]  = false;
    }
 }
 // Checks if everything is filled in correctly
 function registerCheck(){
    if ($GLOBALS["correct"] == false){
        $GLOBALS["genericErr"] = "Bepaalde velden zijn verkeerd of niet ingevuld!";
    } else {
        registerAccount();
        header("location: login.php");
    }
 }
 function test_input($data) {
    $data = trim($data);
    $data = stripslashes($data);
    $data = htmlspecialchars($data);
    return $data;
 }
 ?>
--- a/website/queries/friendship.php
+++ b/website/queries/friendship.php
@@ -1,9 +1,9 @@
 <?php
 require("connect.php");
 function selectAllFriends($userID) {
    $stmt = $GLOBALS["db"]->prepare("
        SELECT
            `userID`,
            `username`,
            IFNULL(
                `profilepicture`,
--- a/website/queries/group_member.php
+++ b/website/queries/group_member.php
@@ -1,7 +1,7 @@
 <?php
-function selectAllGroupsFromUser($db, $userID) {
+function selectAllGroupsFromUser($userID) {
-    return $db->query("
+    return $GLOBALS["db"]->query("
    SELECT
        `group_page`.`name`,
        `group_page`.`picture`
@@ -15,7 +15,3 @@ function selectAllGroupsFromUser($db, $userID) {
        `group_page`.`status` != 0
    ");
 }
 ?>
--- a/website/queries/group_page.php
+++ b/website/queries/group_page.php
@@ -1,7 +1,7 @@
 <?php
-function selectGroupById($db, $groupID) {
+function selectGroupById($groupID) {
-    return $db->query("
+    return $GLOBALS["db"]->query("
    SELECT
        `group_page`.`name`,
        `group_page`.`picture`,
@@ -15,8 +15,8 @@ function selectGroupById($db, $groupID) {
    ");
 }
-function select20GroupsFromN($db, $n) {
+function select20GroupsFromN($n) {
-    return $db->query("
+    return $GLOBALS["db"]->query("
    SELECT
        `group_page`.`groupID`,
        `group_page`.`name`,
@@ -33,8 +33,8 @@ function select20GroupsFromN($db, $n) {
    ");
 }
-function select20GroupsByStatusFromN($db, $n, $status) {
+function select20GroupsByStatusFromN($n, $status) {
-    return $db->query("
+    return $GLOBALS["db"]->query("
    SELECT
        `group_page`.`groupID`,
        `group_page`.`name`,
@@ -53,8 +53,8 @@ function select20GroupsByStatusFromN($db, $n, $status) {
    ");
 }
-function search20GroupsFromNByStatus($db, $n, $keyword, $status) {
+function search20GroupsFromNByStatus($n, $keyword, $status) {
-    $q = $db->prepare("
+    $q = $GLOBALS["db"]->prepare("
    SELECT
        `groupID`,
        `name`,
@@ -80,8 +80,8 @@ function search20GroupsFromNByStatus($db, $n, $keyword, $status) {
    return $q;
 }
-function changeGroupStatusByID($db, $id, $status) {
+function changeGroupStatusByID($id, $status) {
-    $q = $db->query("
+    $q = $GLOBALS["db"]->query("
    UPDATE
        `group_page`
    SET
@@ -92,8 +92,3 @@ function changeGroupStatusByID($db, $id, $status) {
    return $q;
 }
 ?>
--- a/website/queries/header.php
+++ b/website/queries/header.php
@@ -2,16 +2,20 @@
 function getHeaderInfo() {
    $stmt = $GLOBALS["db"]->prepare("
    SELECT
-      `fname`,
+        `fname`,
-      `lname`,
+        `lname`,
-      `profilepicture`
+        IFNULL(
            `profilepicture`,
            'img/notbad.jpg'
        ) AS profilepicture
    FROM
-      `user`
+        `user`
    WHERE
-      `userID` = :userID
+        `userID` = :userID
    ");
    $stmt->bindParam(":userID", $_SESSION["userID"]);
    $stmt->execute();
    return $stmt->fetch();
-}
+    return $stmt->fetch();
 }
--- a/website/queries/login.php
+++ b/website/queries/login.php
@@ -1,6 +1,6 @@
 <?php
-function hashPassword() {
+function getUser() {
    $stmt = $GLOBALS["db"]->prepare("
    SELECT
      `password`,
@@ -15,5 +15,3 @@ function hashPassword() {
    $stmt->execute();
    return $stmt->fetch(PDO::FETCH_ASSOC);
 }
 ?>
--- a/website/queries/private_message.php
+++ b/website/queries/private_message.php
@@ -1,14 +1,9 @@
 <?php
 include_once("connect.php");
 session_start();
 function getOldChatMessages($user2ID) {
    $db = $GLOBALS["db"];
    $user1ID = $_SESSION["userID"];
-    $stmt = $db->prepare("
+    $stmt = $GLOBALS["db"]->prepare("
    SELECT
        *
    FROM
@@ -31,8 +26,7 @@ function getOldChatMessages($user2ID) {
 }
 function sendMessage($destination, $content) {
-    $db = $GLOBALS["db"];
+    $stmt = $GLOBALS["db"]->prepare("
    $stmt = $db->prepare("
    INSERT INTO
        `private_message`
    (
@@ -56,10 +50,7 @@ function sendMessage($destination, $content) {
 }
 function getNewChatMessages($lastID, $destination) {
-    $db = $GLOBALS["db"];
+    $stmt = $GLOBALS["db"]->prepare("
    $origin = $_SESSION["userID"];
    $stmt = $db->prepare("
    SELECT
        *
    FROM
@@ -75,11 +66,11 @@ function getNewChatMessages($lastID, $destination) {
        `messageID` ASC
    ");
-    $stmt->bindParam(':user1', $origin);
+    $stmt->bindParam(':user1', $_SESSION["userID"]);
    $stmt->bindParam(':user2', $destination);
    $stmt->bindParam(':lastID', $lastID);
    $stmt->execute();
    return json_encode($stmt->fetchAll());
-}
+}
--- a/website/queries/register.php
+++ b/website/queries/register.php
@@ -52,7 +52,7 @@ function registerAccount() {
      :email
    )");
-    $hash=password_hash($_POST["password"].(strtolower($_POST["username"])), PASSWORD_DEFAULT);
+    $hash=password_hash($_POST["password"], PASSWORD_DEFAULT);
    $stmt->bindParam(":fname", $_POST["name"]);
    $stmt->bindParam(":lname", $_POST["surname"]);
--- a/website/queries/settings.php
+++ b/website/queries/settings.php
@@ -1,5 +1,42 @@
 <?php
 class settingsMessage {
    private $class;
    private $message;
    /**
     * settingsMessage constructor.
     * @param string $type Happy or angry
     * @param string $message The message to display
     */
    public function __construct($type, $message) {
        $this->message = $message;
        switch ($type) {
            case "happy":
                $this->class = "settings-message-happy";
                break;
            case "angry":
                $this->class = "settings-message-angry";
                break;
            default:
                $this->class = "settings-message";
                break;
        }
    }
    public function getClass() {
        return $this->class;
    }
    public function getMessage() {
        return $this->message;
    }
 }
 /**
 * Gets the settings form the database.
 * @return mixed Setting as an array.
 */
 function getSettings() {
    $stmt = $GLOBALS["db"]->prepare("
    SELECT
@@ -59,40 +96,28 @@ function updateSettings() {
    $stmt->execute();
-    return array (
+    return new settingsMessage("happy", "Instellingen zijn opgeslagen.");
        "type" => "settings-message-happy",
        "message" => "Instellingen zijn opgeslagen."
        );
 }
 function updatePassword() {
    $user = getPasswordHash();
-    if (password_verify($_POST["password-old"].strtolower($user["username"]), $user["password"])) {
+    if (password_verify($_POST["password-old"], $user["password"])) {
        if ($_POST["password-new"] == $_POST["password-confirm"] && (strlen($_POST["password-new"]) >= 8)) {
-            if (changePassword($user)) {
+            if (changePassword()) {
-                return array ("type" => "settings-message-happy",
+                return new settingsMessage("happy", "Wachtwoord gewijzigd.");
                    "message" => "Wachtwoord gewijzigd.");
            } else {
-                return array (
+                return new settingsMessage("angry", "Er is iets mis gegaan.");
                "type" => "settings-message-angry",
                "message" => "Er is iets mis gegaan.");
            }
        } else {
-            return array (
+            return new settingsMessage("angry", "Wachtwoorden komen niet oveen.");
                "type" => "settings-message-angry",
                "message" => "Wachtwoorden komen niet oveeen."
            );
        }
    } else {
-        return array(
+        return new settingsMessage("angry", "Oud wachtwoord niet correct.");
            "type" => "settings-message-angry",
            "message" => "Oud wachtwoord niet correct."
        );
    }
 }
-function changePassword($user) {
+function changePassword() {
-    $stmt =$GLOBALS["db"]->prepare("
+    $stmt = $GLOBALS["db"]->prepare("
    UPDATE
      `user`
    SET
@@ -101,9 +126,62 @@ function changePassword($user) {
      `userID` = :userID
    ");
-    $hashed_password = password_hash($_POST["password-new"].strtolower($user["username"]), PASSWORD_DEFAULT);
+    $hashed_password = password_hash($_POST["password-new"], PASSWORD_DEFAULT);
    $stmt->bindParam(":new_password", $hashed_password);
    $stmt->bindParam(":userID", $_SESSION["userID"]);
    $stmt->execute();
    return $stmt->rowCount();
 }
 function changeEmail() {
    if ($_POST["email"] == $_POST["email-confirm"]) {
        $email = strtolower($_POST["email"]);
        if (filter_var($email, FILTER_VALIDATE_EMAIL)) {
            //check if email exists
            if (emailIsAvailableInDatabase($email)) {
                if (doChangeEmail($email)) {
                    return new settingsMessage("happy", "Emailadres is veranderd.");
                } else {
                    return new settingsMessage("angry", "Er is iets mis gegaan.");
                }
            } else {
                return new settingsMessage("angry", "Emailadres bestaat al.");
            }
        } else {
            return new settingsMessage("angry", "Geef een geldig emailadres.");
        }
    } else {
        return new settingsMessage("angry", "Emailadressen komen niet overeen.");
    }
 }
 function emailIsAvailableInDatabase($email) {
    $stmt = $GLOBALS["db"]->prepare("
    SELECT
        `email`
    FROM
        `user`
    WHERE 
      `email` = :email
    ");
    $stmt->bindParam(":email", $email);
    $stmt->execute();
    return !$stmt->rowCount();
 }
 function doChangeEmail($email) {
    $stmt = $GLOBALS["db"]->prepare("
    UPDATE
        `user`
    SET
      `email` = :email
    WHERE
      `userID` = :userID
    ");
    $stmt->bindParam(":email", $email);
    $stmt->bindParam(":userID", $_SESSION["userID"]);
    $stmt->execute();
    return $stmt->rowCount();
 }
--- a/website/queries/user.php
+++ b/website/queries/user.php
@@ -86,8 +86,8 @@ function selectAllUserPosts($userID) {
    return $stmt;
 }
-function select20UsersFromN($db, $n) {
+function select20UsersFromN($n) {
-    return $db->query("
+    return $GLOBALS["db"]->query("
    SELECT
        `userID`,
        `username`,
@@ -103,8 +103,8 @@ function select20UsersFromN($db, $n) {
    ");
 }
-function search20UsersFromN($db, $n, $keyword) {
+function search20UsersFromN($n, $keyword) {
-    $q = $db->prepare("
+    $q = $GLOBALS["db"]->prepare("
    SELECT
        `userID`,
        `username`,
@@ -127,8 +127,8 @@ function search20UsersFromN($db, $n, $keyword) {
    return $q;
 }
-function search20UsersFromNByStatus($db, $n, $keyword, $status) {
+function search20UsersFromNByStatus($n, $keyword, $status) {
-    $q = $db->prepare("
+    $q = $GLOBALS["db"]->prepare("
    SELECT
        `userID`,
        `username`,
@@ -155,8 +155,8 @@ function search20UsersFromNByStatus($db, $n, $keyword, $status) {
    return $q;
 }
-function changeUserStatusByID($db, $id, $status) {
+function changeUserStatusByID($id, $status) {
-    $q = $db->query("
+    $q = $GLOBALS["db"]->query("
    UPDATE
        `user`
    SET
--- a/website/views/adminpanel.php
+++ b/website/views/adminpanel.php
@@ -61,9 +61,9 @@ if ($_SERVER["REQUEST_METHOD"] == "POST") {
    }
    if (!empty($_POST["actions"]) && !empty($_POST["userID"])) {
-        changeUserStatusByID($db, $_POST["userID"], $_POST["actions"]);
+        changeUserStatusByID($_POST["userID"], $_POST["actions"]);
    } elseif (!empty($_POST["actions"]) && !empty($_POST["groupID"])) {
-        changeGroupStatusByID($db, $_POST["groupID"], $_POST["actions"]);
+        changeGroupStatusByID($_POST["groupID"], $_POST["actions"]);
    }
 }
@@ -183,7 +183,7 @@ function test_input($data) {
                    <!-- Table construction via php PDO. -->
                    <?php
                    if ($pagetype == 'user') {
-                        $q = search20UsersFromNByStatus($db, $listnr, $search, $status);
+                        $q = search20UsersFromNByStatus($listnr, $search, $status);
                        while($user = $q->fetch(PDO::FETCH_ASSOC)) {
                            $userID = $user['userID'];
@@ -218,7 +218,7 @@ function test_input($data) {
                            ");
                        }
                    } else {
-                        $q = search20GroupsFromNByStatus($db, $listnr, $search, $groupstatus);
+                        $q = search20GroupsFromNByStatus($listnr, $search, $groupstatus);
                        while ($group = $q->fetch(PDO::FETCH_ASSOC)) {
                            $groupID = $group['groupID'];
--- a/website/views/chat-view.php
+++ b/website/views/chat-view.php
@@ -6,11 +6,8 @@
                <?php
                include_once("../queries/friendship.php");
                if (empty($_SESSION["userID"]))
                    $_SESSION["userID"] = 2;
                // Get all the friends of a user.
-                $friends = selectAllFriends($db, $_SESSION["userID"]);
+                $friends = selectAllFriends($_SESSION["userID"]);
                $i = 0;
                // Print all the users.
@@ -28,7 +25,7 @@
                    // Echo the friend.
                    echo "
-                        <li class='friend-item' onclick='switchUser(\"$userID\")'>
+                        <li class='friend-item' id='friend-item-$userID' onclick='switchUser(\"$userID\")'>
                            <div class='friend'>
                                <img alt='PF' class='profile-picture' src='$pf'/>
                                $username
@@ -38,12 +35,6 @@
                }
                ?>
            </ul>
            <!--            <a href="#">-->
            <!--                <div class="chat-conversation">-->
            <!--                    <img class="profile-picture" src="https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTDnuRSeeyPve7KwDvJJ6OBzj3gyghwLcE2z9kZeYBOyZavh3mw">-->
            <!--                    Rudolf Leslo-->
            <!--                </div>-->
            <!--            </a>-->
        </nav>
        <div class="chat-right right">
            <div id="chat-history" class="chat-history platform">
@@ -74,7 +65,7 @@
                        <input type="text"
                               name="content"
                               id="newContent"
-                               placeholder="Reageer..."
+                               placeholder="Schrijf een bericht..."
                               autofocus
                               required
                        />
--- a/website/views/head.php
+++ b/website/views/head.php
@@ -18,3 +18,7 @@
 include_once("../queries/connect.php");
 session_start();
 if(!isset($_SESSION["userID"])){
    header("location:login.php");
 }
--- a/website/views/header.php
+++ b/website/views/header.php
@@ -1,5 +1,4 @@
 <?php
 session_start();
 include_once ("../queries/header.php");
 $userinfo = getHeaderInfo();
@@ -21,7 +20,7 @@ $userinfo = getHeaderInfo();
    </div>
    <div class="right profile-menu">
        <div id="profile-menu-popup">
-            <a href="index.php"><span style="color: red;" class="fa fa-sign-out" data-title="Uitloggen"></span></a> |
+            <a href="logout.php"><span style="color: red;" class="fa fa-sign-out" data-title="Uitloggen"></span></a> |
            <a href="settings.php"><span style="color: blue;" class="fa fa-cog" data-title="Instellingen"></span></a> |
            <a href="profile.php"><span style="color: green;" class="fa fa-user" data-title="Profiel"></span></a>
        </div>
@@ -29,7 +28,7 @@ $userinfo = getHeaderInfo();
            <div id="hello-loop">
                Hallo
            </div>
-            <?=$userinfo["fname"]?> <?=$userinfo["lname"]?>
+            <?=$userinfo["fname"]?>
        </div>
        <img id="own-profile-picture" class="profile-picture" src="<?=$userinfo["profilepicture"]?>"/>
    </div>
--- a/website/views/login-view.php
+++ b/website/views/login-view.php
@@ -3,49 +3,49 @@
         src="img/top-logo.png"
         alt="MyHyvesbook+">
 </div>
-
+<div class="platform">
 <!-- Login content  -->
 <form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>"
      return= $correct
      method="post">
    <h1>Welkom bij MyHyvesbook+</h1>
    <!-- Login content  -->
    <form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>"
          return= $correct
          method="post">
-    <!-- Login name -->
+        <!-- Login name -->
        <div class="login_containerlogin">
            <label><b>Gebruikersnaam</b></label>
            <input type="text"
                   placeholder="Voer uw gebruikersnaam in"
                   name="uname"
                   value="<?php echo $uname ?>"
                   title="Moet 6 of meer karakters bevatten"
                   >
        </div>
        <!-- Login password -->
        <div class="login_containerlogin">
            <label><b>Wachtwoord</b></label>
            <input type="password"
                   placeholder="Voer uw wachtwoord in"
                   name="psw"
                   title="Moet minstens 8 karakters lang zijn"
                   >
        </div>
        <!-- Error message -->
        <div class="login_containerfault"><span><?php echo $loginErr; ?></span></div>
        <!-- Button for logging in -->
        <div class="login_containerlogin">
            <button type="submit"
                   value="Login"
                   name="submit"
                   id="frm1_submit">
            Login
            </button>
        </div>
    </form>
    <!-- Button for going to the register screen -->
    <div class="login_containerlogin">
-        <label><b>Gebruikersnaam</b></label>
+      <a href="https://myhyvesbookplus.nl/register.php" class="button">Registreer een account</a>
        <input type="text"
               placeholder="Voer uw gebruikersnaam in"
               name="uname"
               value="<?php echo $uname ?>"
               title="Moet 6 of meer karakters bevatten"
               >
    </div>
    <!-- Login password -->
    <div class="login_containerlogin">
        <label><b>Wachtwoord</b></label>
        <input type="password"
               placeholder="Voer uw wachtwoord in"
               name="psw"
               title="Moet minstens 8 karakters lang zijn"
               >
    </div>
    <!-- Error message -->
    <div class="login_containerfault"><span><?php echo $loginErr; ?></span></div>
    <!-- Button for logging in -->
    <div class="login_containerlogin">
        <button type="submit"
               value="Login"
               name="submit"
               id="frm1_submit">
        Login
        </button>
    </div>
 </form>
 <!-- Button for going to the register screen -->
 <div class="login_containerlogin">
    <a href="https://myhyvesbookplus.nl/~joey/public/register.php" class="button">Registreer een account</a>
 </div>
--- a/website/views/login_head.php
+++ b/website/views/login_head.php
@@ -1,6 +1,9 @@
 <head>
    <meta charset="utf-8">
    <title>MyHyvesbook+</title>
    <link rel="stylesheet"
          type="text/css"
          href="styles/main.css">
    <link rel="stylesheet"
          type="text/css"
          href="styles/index.css">
--- a/website/views/menu.php
+++ b/website/views/menu.php
@@ -9,9 +9,6 @@
            // Load file.
            include_once("../queries/friendship.php");
            if (empty($_SESSION["userID"]))
                $_SESSION["userID"] = 2;
            // Get all the friends of a user.
            $friends = selectAllFriends($_SESSION["userID"]);
            $i = 0;
@@ -69,7 +66,7 @@
            include_once("../queries/group_member.php");
            // Get all the friends of a user.
-            $groups = selectAllGroupsFromUser($db, $_SESSION["userID"]);
+            $groups = selectAllGroupsFromUser($_SESSION["userID"]);
            $i = 0;
            // Print all the users.
--- a/website/views/register-view.php
+++ b/website/views/register-view.php
@@ -4,132 +4,132 @@
         alt="MyHyvesbook+">
 </div>
-<!-- Register Content -->
+<div class="platform">
-<form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>"
+  <h1>Registreer uw account</h1>
-      return= $correct
+    <!-- Register Content -->
-      method="post">
+    <form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>"
-    <h2>Registreer uw account</h2>
+          return= $correct
          method="post">
-    <!-- Error message -->
+        <!-- Error message -->
-    <div class="login_containerfault"><?php echo $genericErr;?></span></div>
+        <div class="login_containerfault"><?php echo $genericErr;?></span></div>
-    <!-- Register name -->
+        <!-- Register name -->
-    <div class="login_containerregister">
+        <div class="login_containerregister">
-        <label><b>Naam</b></label>
+            <label><b>Naam</b></label>
-        <input type="text"
+            <input type="text"
-               placeholder="Voer uw naam in"
+                   placeholder="Voer uw naam in"
-               name="name"
+                   name="name"
-               value="<?php echo $name ?>"
+                   value="<?php echo $name ?>"
-               title="Mag alleen letters bevatten"
+                   title="Mag alleen letters bevatten"
-               >
+                   >
-        <span class="error">* <?php echo $nameErr;?></span>
+            *<span class="error"><?php echo $nameErr;?></span>
        </div>
        <!-- Register surname -->
        <div class="login_containerregister">
            <label><b>Achternaam</b></label>
            <input type="text"
                   placeholder="Voer uw achternaam in"
                   name="surname"
                   value="<?php echo $surname ?>"
                   title="Mag alleen letters bevatten"
                   >
            *<span class="error"> <?php echo $surnameErr;?></span>
        </div>
        <!-- Register birthday -->
        <div class="login_containerregister">
            <label><b>Geboortedatum</b></label>
            <input type="date"
                   name="bday"
                   value="<?php echo $bday ?>"
                   id="bday"
                   placeholder="01/01/1900"
                   >
            *<span class="error"> <?php echo $bdayErr;?></span>
        </div>
        <!-- Register username -->
        <div class="login_containerregister">
            <label><b>Gebruikersnaam</b></label>
            <input type="text"
                   placeholder="Voer uw gebruikersnaam in"
                   name="username"
                   value="<?php echo $username ?>"
                   title="Moet minimaal 6 karakters bevatten"
                   >
            *<span class="error"> <?php echo $usernameErr;?></span>
            <ul>
                <li>Minstens 6 karakters</li>
            </ul>
          </div>
        <!-- Register password -->
        <div class="login_containerregister">
            <label><b>Wachtwoord</b></label>
            <input type="password"
                   placeholder="Voer uw wachtwoord in"
                   name="password"
                   value="<?php echo $password ?>"
                   id="password"
                   >
            *<span class="error"> <?php echo $passwordErr;?></span>
        <ul>
          <li>Minstens 8 karakters</li>
        </ul>
        </div>
        <!-- Repeat password -->
        <div class="login_containerregister">
            <label><b>Herhaal wachtwoord</b></label>
            <input type="password"
                   placeholder="Herhaal wachtwoord"
                   name="confirmpassword"
                   value="<?php echo $confirmpassword ?>"
                   id="confirmpassword"
                   title="Herhaal wachtwoord"
                  >
            *<span class="error"> <?php echo $confirmpasswordErr;?></span>
        </div>
        <!-- Register location -->
        <div class="login_containerregister">
            <label><b>Woonplaats</b></label>
            <input type="text"
                   placeholder="Voer uw woonplaats in"
                   name="location"
                   value="<?php echo $location ?>"
                   pattern="[A-Za-z]{1,}"
                   title="Mag alleen letters bevatten">
            *<span class="error"> <?php echo $locationErr;?></span>
        </div>
        <!-- Register email -->
        <div class="login_containerregister">
            <label><b>Email</b></label>
            <input type="text"
                   placeholder="Voer uw email in"
                   name="email"
                   value="<?php echo $email ?>"
                   id="email"
                   title="Voer een geldige email in">
            *<span class="error"> <?php echo $emailErr;?></span>
        </div>
        <!-- Button for registering -->
        <div class="login_containerregister">
            <button type="submit"
                   value="Registreer uw account"
                   name="Submit"
                   id="frm1_submit">
            Registreer uw account
            </button>
        </div>
    </form>
    <!-- Button for going back to login screen -->
    <div class="login_containerlogin">
        <a href="https://myhyvesbookplus.nl/login.php" class="button">Login met een account</a>
    </div>
    <!-- Register surname -->
    <div class="login_containerregister">
        <label><b>Achternaam</b></label>
        <input type="text"
               placeholder="Voer uw achternaam in"
               name="surname"
               value="<?php echo $surname ?>"
               title="Mag alleen letters bevatten"
               >
        <span class="error">* <?php echo $surnameErr;?></span>
    </div>
    <!-- Register birthday -->
    <div class="login_containerregister">
        <label><b>Geboortedatum</b></label>
        <input type="date"
               name="bday"
               value="<?php echo $bday ?>"
               id="bday"
               placeholder="01/01/1900"
               >
        <span class="error">* <?php echo $bdayErr;?></span>
    </div>
    <!-- Register username -->
    <div class="login_containerregister">
        <label><b>Gebruikersnaam</b></label>
        <input type="text"
               placeholder="Voer uw gebruikersnaam in"
               name="username"
               value="<?php echo $username ?>"
               title="Moet minimaal 6 karakters bevatten"
               >
        <span class="error">* <?php echo $usernameErr;?></span>
    </div>
    <ul>
      <li>Minstens 6 karakters</li>
    </ul>
    <!-- Register password -->
    <div class="login_containerregister">
        <label><b>Wachtwoord</b></label>
        <input type="password"
               placeholder="Voer uw wachtwoord in"
               name="password"
               value="<?php echo $password ?>"
               id="password"
               >
        <span class="error">* <?php echo $passwordErr;?></span>
    </div>
    <ul>
      <li>Minstens 8 karakters</li>
    </ul>
    <!-- Repeat password -->
    <div class="login_containerregister">
        <label><b>Herhaal wachtwoord</b></label>
        <input type="password"
               placeholder="Herhaal wachtwoord"
               name="confirmpassword"
               value="<?php echo $confirmpassword ?>"
               id="confirmpassword"
               title="Herhaal wachtwoord"
              >
        <span class="error">* <?php echo $confirmpasswordErr;?></span>
    </div>
    <!-- Register location -->
    <div class="login_containerregister">
        <label><b>Woonplaats</b></label>
        <input type="text"
               placeholder="Voer uw woonplaats in"
               name="location"
               value="<?php echo $location ?>"
               pattern="[A-Za-z]{1,}"
               title="Mag alleen letters bevatten">
        <span class="error">* <?php echo $locationErr;?></span>
    </div>
    <!-- Register email -->
    <div class="login_containerregister">
        <label><b>Email</b></label>
        <input type="email"
               placeholder="Voer uw email in"
               name="email"
               value="<?php echo $email ?>"
               id="email"
               title="Voer een geldige email in">
        <span class="error">* <?php echo $emailErr;?></span>
    </div>
    <!-- Button for registering -->
    <div class="login_containerregister">
        <button type="submit"
               value="Registreer uw account"
               name="Submit"
               id="frm1_submit">
        Registreer uw account
        </button>
    </div>
 </form>
 <!-- Button for going back to login screen -->
 <div class="login_containerlogin">
    <a href="https://myhyvesbookplus.nl/~joey/public/login.php" class="button">Login met een account</a>
 </div>
--- a/website/views/settings-view.php
+++ b/website/views/settings-view.php
@@ -6,9 +6,9 @@ $settings = getSettings();
    <div class="settings">
        <?php
        if ($_SERVER["REQUEST_METHOD"] == "POST") {
-            echo "<div class='platform settings-message ${result["type"]}'>
+            echo "<div class='platform settings-message ". $result->getClass()."'>".
-            ${result["message"]}
+            $result->getMessage().
-        </div>";
+        "</div>";
        }
        ?>
        <form class="settings-profile platform" method="post">