Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- require('include/config.php');
- if(isset($_SESSION['id'])) {
- $requser = $bdd->prepare("SELECT * FROM membres WHERE id = ?");
- $requser->execute(array($_SESSION['id']));
- $user = $requser->fetch();
- if(isset($_POST['newpseudo']) AND !empty($_POST['newpseudo']) AND $_POST['newpseudo'] != $user['pseudo']) {
- $newpseudo = htmlspecialchars($_POST['newpseudo']);
- $insertpseudo = $bdd->prepare("UPDATE membres SET pseudo = ? WHERE id = ?");
- $insertpseudo->execute(array($newpseudo, $_SESSION['id']));
- header('Location: profil.php?id='.$_SESSION['id']);
- }
- if(isset($_POST['newmail']) AND !empty($_POST['newmail']) AND $_POST['newmail'] != $user['mail']) {
- $newmail = htmlspecialchars($_POST['newmail']);
- $insertmail = $bdd->prepare("UPDATE membres SET mail = ? WHERE id = ?");
- $insertmail->execute(array($newmail, $_SESSION['id']));
- header('Location: profil.php?id='.$_SESSION['id']);
- }
- if(isset($_POST['newmdp1']) AND !empty($_POST['newmdp1']) AND isset($_POST['newmdp2']) AND !empty($_POST['newmdp2'])) {
- $mdp1 = sha1($_POST['newmdp1']);
- $mdp2 = sha1($_POST['newmdp2']);
- if($mdp1 == $mdp2) {
- $insertmdp = $bdd->prepare("UPDATE membres SET motdepasse = ? WHERE id = ?");
- $insertmdp->execute(array($mdp1, $_SESSION['id']));
- header('Location: profil.php?id='.$_SESSION['id']);
- } else {
- $msg = "<div class=\"alert alert-danger\">Vos mots de passe ne correspondent pas !</div>";
- }
- }
- if(isset($_FILES['avatar']) AND !empty($_FILES['avatar']['name'])) {
- $tailleMax = 2097152;
- $extensionsValides = array('jpg', 'jpeg', 'png');
- if($_FILES['avatar']['size'] <= $tailleMax)
- {
- $extensionUpload = strtolower(substr(strrchr($_FILES['avatar']['name'], '.'), 1));
- if(in_array($extensionUpload, $extensionsValides))
- {
- $chemin = "membres/avatars/".$_SESSION['id'].".".$extensionUpload;
- $resultat = move_uploaded_file($_FILES['avatar']['tmp_name'], $chemin);
- if($resultat)
- {
- $updateavatar = $bdd->prepare('UPDATE membres SET avatar = :avatar WHERE id = :id');
- $updateavatar->execute(array(
- 'avatar' => $_SESSION['id'].".".$extensionUpload,
- 'id' => $_SESSION['id']
- ));
- header('Location: profil.php?id='.$_SESSION['id']);
- }
- else
- {
- $msg = "Une erreur s'est produite lors de l'envoi de votre fichier.";
- }
- }
- else
- {
- $msg = "Votre photo de profil doit être au format jpg, jpeg ou png.";
- }
- }
- else
- {
- $msg = "Votre photo de profil ne doit pas dépassée 2Mo.";
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement