Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ini_set("display_errors",1);
- session_start();
- $temp=$_SESSION['username'];
- if(isset($_POST)){
- require 'db.php';
- $Destination = '../userfiles/background-images';
- if(!isset($_FILES['BackgroundImageFile']) || !is_uploaded_file($_FILES['BackgroundImageFile']['tmp_name'])){
- $BackgroundNewImageName= 'default-background.jpg';
- move_uploaded_file($_FILES['BackgroundImageFile']['tmp_name'], "$Destination/$BackgroundNewImageName");
- }
- else{
- $RandomNum = rand(0, 9999999999);
- $ImageName = str_replace(' ','-',strtolower($_FILES['BackgroundImageFile']['name']));
- $ImageType = $_FILES['BackgroundImageFile']['type'];
- $ImageExt = substr($ImageName, strrpos($ImageName, '.'));
- $ImageExt = str_replace('.','',$ImageExt);
- $ImageName = preg_replace("/.[^.s]{3,4}$/", "", $ImageName);
- $BackgroundNewImageName = $ImageName.'-'.$RandomNum.'.'.$ImageExt;
- move_uploaded_file($_FILES['BackgroundImageFile']['tmp_name'], "$Destination/$BackgroundNewImageName");
- }
- $sql1="UPDATE signup SET backgroundpicture='$BackgroundNewImageName' WHERE username = '$temp'";
- $sql2="INSERT INTO signup (backgroundpicture) VALUES ('$BackgroundNewImageName') WHERE username = '$temp'";
- $result = mysqli_query($db,"SELECT * FROM signup WHERE username = '$temp'");
- if( mysqli_num_rows($result) > 0) {
- if(!empty($_FILES['BackgroundImageFile']['name'])){
- mysqli_query($db,$sql1)or die(mysqli_error($db));
- header("location:../edit-profile.php?username=$temp");
- }
- }
- else {
- mysqli_query($db,$sql2)or die(mysqli_error($db));
- header("location:../edit-profile.php?username=$temp");
- }
- $Destination = '../userfiles/avatars';
- if(!isset($_FILES['ImageFile']) || !is_uploaded_file($_FILES['ImageFile']['tmp_name'])){
- $NewImageName= 'default.png';
- move_uploaded_file($_FILES['ImageFile']['tmp_name'], "$Destination/$NewImageName");
- }
- else{
- $RandomNum = rand(0, 9999999999);
- $ImageName = str_replace(' ','-',strtolower($_FILES['ImageFile']['name']));
- $ImageType = $_FILES['ImageFile']['type'];
- $ImageExt = substr($ImageName, strrpos($ImageName, '.'));
- $ImageExt = str_replace('.','',$ImageExt);
- $ImageName = preg_replace("/.[^.s]{3,4}$/", "", $ImageName);
- $NewImageName = $ImageName.'-'.$RandomNum.'.'.$ImageExt;
- move_uploaded_file($_FILES['ImageFile']['tmp_name'], "$Destination/$NewImageName");
- }
- $sql5="UPDATE signup SET avatar='$NewImageName' WHERE username = '$temp'";
- $sql6="INSERT INTO signup (avatar) VALUES ('$NewImageName') WHERE username = '$temp'";
- $result = mysqli_query($db,"SELECT * FROM signup WHERE username = '$temp'");
- if( mysqli_num_rows($result) > 0) {
- if(!empty($_FILES['ImageFile']['name'])){
- mysqli_query($db,$sql5)or die(mysqli_error($db));
- header("location:../edit-profile.php?username=$temp");
- }
- }
- else {
- mysqli_query($db,$sql5)or die(mysqli_error($db));
- header("location:../edit-profile.php?username=$temp");
- }
- $user_firstname=$_REQUEST['firstname'];
- $user_lastname=$_REQUEST['lastname'];
- $user_email=$_REQUEST['email'];
- $user_password=$_REQUEST['password'];
- $user_address=$_REQUEST['address'];
- $user_dob=$_REQUEST['dob'];
- $user_gender=$_REQUEST['gender'];
- $user_country=$_REQUEST['country'];
- $sql3="UPDATE signup SET firstname='$user_firstname',lastname='$user_lastname',address='$user_address',email='$user_email',password='$user_password',
- dob='$user_dob',gender='$user_gender',country='$user_country' WHERE username = '$temp'";
- mysqli_query($db,$sql3)or die(mysqli_error($db));
- header("location:../edit-profile.php?user_username=$temp&request=profile-update&status=success");
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement