diff --git a/website/.htaccess b/website/.htaccess new file mode 100644 index 0000000..5c0147b --- /dev/null +++ b/website/.htaccess @@ -0,0 +1,14 @@ +Options +FollowSymLinks +RewriteEngine On + +ErrorDocument 404 /error404.jpg + +RewriteCond %{SCRIPT_FILENAME} !-d +RewriteCond %{SCRIPT_FILENAME} !-f + +# Resolve .php file for extensionless php urls +RewriteRule ^([^/.]+)$ $1.php [L] + +RewriteRule ^([^/.]+)\/$ $1.php [L] + +RewriteRule ^profile/([A-z0-9]+)\/?$ profile.php?username=$1 [NC] \ No newline at end of file diff --git a/website/mysql_config.xml b/website/mysql_config.xml deleted file mode 100644 index de2d929..0000000 --- a/website/mysql_config.xml +++ /dev/null @@ -1,7 +0,0 @@ - - - localhost - myhyvesbookplus - mhbp - qdtboXhCHJyL2szC - \ No newline at end of file diff --git a/website/public/login.php b/website/public/login.php index f889f2f..65babdf 100644 --- a/website/public/login.php +++ b/website/public/login.php @@ -4,27 +4,34 @@ include("../views/login_head.php"); require_once("../queries/connect.php"); include_once("../queries/login.php"); + include_once("../queries/checkInput.php") ?> + window.onload=checkLoggedIn(); + "; + } + // Define variables and set to empty values $uname = $psw =""; $loginErr =""; // Trying to login if ($_SERVER["REQUEST_METHOD"] == "POST") { - $uname=strtolower($_POST["uname"]); // Empty username or password field if (empty($_POST["uname"]) || empty($_POST["psw"])) { $loginErr = "Gebruikersnaam of wachtwoord is niet ingevuld"; } else { - $psw=$_POST["psw"]; - $hash=getUser()["password"]; - $userid=getUser()["userID"]; + $uname = strtolower(test_input($_POST["uname"])); + $psw = test_input($_POST["psw"]); + $hash = getUser()["password"]; + $userid = getUser()["userID"]; // If there's an account, go to the profile page if(password_verify($psw, $hash)) { @@ -41,5 +48,18 @@ /* This view adds login view */ include("../views/login-view.php"); ?> + + + diff --git a/website/public/profile.php b/website/public/profile.php index 562bfb8..e35935b 100644 --- a/website/public/profile.php +++ b/website/public/profile.php @@ -49,8 +49,8 @@ if(empty($_GET["username"])) { $userID = getUserID($_GET["username"]); $user = selectUser($userID); -$friends = selectAllFriends($userID); -$groups = selectAllUserGroups($userID); +$profile_friends = selectAllFriends($userID); +$profile_groups = selectAllUserGroups($userID); $posts = selectAllUserPosts($userID); ?> diff --git a/website/public/register.php b/website/public/register.php index c454d66..9d9f884 100644 --- a/website/public/register.php +++ b/website/public/register.php @@ -4,7 +4,7 @@ include("../views/login_head.php"); require_once("../queries/connect.php"); include_once("../queries/register.php"); - + include_once("../queries/checkInput.php"); ?> diff --git a/website/queries/checkInput.php b/website/queries/checkInput.php new file mode 100644 index 0000000..f711676 --- /dev/null +++ b/website/queries/checkInput.php @@ -0,0 +1,105 @@ + diff --git a/website/queries/friendship.php b/website/queries/friendship.php index f058c70..258699f 100644 --- a/website/queries/friendship.php +++ b/website/queries/friendship.php @@ -7,7 +7,7 @@ function selectAllFriends($userID) { `username`, IFNULL( `profilepicture`, - 'img/notbad.jpg' + '../img/notbad.jpg' ) AS profilepicture, `onlinestatus`, `role` diff --git a/website/queries/user.php b/website/queries/user.php index f33968f..c52ef1c 100644 --- a/website/queries/user.php +++ b/website/queries/user.php @@ -22,7 +22,7 @@ function selectUser($userID) { `username`, IFNULL( `profilepicture`, - 'img/notbad.png' + '../img/notbad.jpg' ) AS profilepicture, `bio`, `role`, diff --git a/website/views/login-view.php b/website/views/login-view.php index 9214a89..33fa7e9 100644 --- a/website/views/login-view.php +++ b/website/views/login-view.php @@ -46,6 +46,6 @@
- Registreer een account + Registreer een account
diff --git a/website/views/profile.php b/website/views/profile.php index 395dd15..6c273a6 100644 --- a/website/views/profile.php +++ b/website/views/profile.php @@ -4,18 +4,19 @@

Als vriend toevoegen

-

-

+

()

+

Vrienden

fetch()) { - echo "" . $friend["username"] . ""; + while($friend = $profile_friends->fetch()) { + echo "${friend["username"]}"; } + if($friends->rowCount() === 0) { echo "

Deze gebruiker heeft nog geen vrienden gemaakt.

"; } @@ -27,7 +28,7 @@

Groepen

fetch()) { + while($group = $profile_groups->fetch()) { echo "${group["name"]}s logo"; } @@ -51,4 +52,5 @@ "; } ?> +

\ No newline at end of file diff --git a/website/views/register-view.php b/website/views/register-view.php index f2b9257..b95dd81 100644 --- a/website/views/register-view.php +++ b/website/views/register-view.php @@ -108,7 +108,7 @@
-
- Login met een account + Login met een account