Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $servername = "localhost";
- $username = "devhelpr_ancapiu";
- $password = "ancapi123!";
- $db = "devhelpr_ancapi";
- function getProdStoc($stoc=10)
- {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query = "SELECT nume, (SELECT nume FROM categorii WHERE categorii.id = produse.categorie) AS categorie, stoc, aprovizionare FROM produse WHERE stoc<=:stoc";
- $stmt = $conn->prepare($query);
- $stmt -> bindParam(":stoc", $stoc);
- $stmt -> execute();
- return json_encode($stmt->fetchAll());
- }
- function adaugaCod($cod, $key)
- {
- if(checkLoginKey($key))
- {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query = "UPDATE accounts SET codReducere = :cod WHERE loginKey = :key";
- $stmt = $conn ->prepare($query);
- $stmt -> bindParam(":cod", $cod);
- $stmt -> bindParam(":key", $key);
- $stmt -> execute();
- return 1;
- }
- return 0;
- }
- function marcareComanda($x)
- {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query = "UPDATE comenzi SET status = 1 WHERE id=:id";
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(":id", $x);
- $stmt -> execute();
- return 1;
- }
- function getComenzi()
- {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query = "SELECT id, (SELECT CONCAT(nume,' ',prenume) FROM accounts WHERE accounts.id = comenzi.cumparator) AS nume, adresa, mail, telefon, total FROM comenzi WHERE status = 0 ORDER BY data ASC";
- $stmt = $conn -> prepare($query);
- $stmt -> execute();
- return json_encode($stmt -> fetchAll());
- }
- function stergereReducere($id)
- {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query = "DELETE FROM reduceri WHERE id=:id";
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(":id", $id);
- $stmt -> execute();
- return 1;
- }
- function addReducere($cod, $categorii,$valoare)
- {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $categorii = json_decode($categorii);
- $toAdd="";
- foreach($categorii as $categorie)
- {
- $toAdd.=$categorie;
- }
- if(count($categorii) != 0)
- $tip = 1;
- else
- $tip = 0;
- $query = "INSERT INTO reduceri(tip, cod, categorii,valoare) VALUES(:tip,:cod,:categorii,:valoare)";
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(":tip", $tip);
- $stmt -> bindParam(":cod", $cod);
- $stmt -> bindParam(":categorii", $toAdd);
- $stmt -> bindParam(":valoare", $valoare);
- $stmt -> execute();
- }
- function getDiscount()
- {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query = "SELECT * FROM reduceri";
- $stmt = $conn -> prepare($query);
- $stmt -> execute();
- return json_encode($stmt->fetchAll());
- }
- function getOrderById($key, $id)
- {
- if(checkLoginKey($key))
- {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query = "SELECT id FROM accounts WHERE loginKey = :lgk ";
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(":lgk", $key);
- $stmt -> execute();
- $uId = $stmt -> fetchColumn();
- $query="SELECT cumparator,produse FROM comenzi WHERE id = :id";
- $stmt=$conn->prepare($query);
- $stmt->bindParam(":id",$id);
- $stmt->execute();
- $result = $stmt->fetchAll();
- foreach ($result as $comanda)
- {
- if($uId != $comanda["cumparator"]) return -1;
- $prod = $comanda["produse"];
- $prod = explode(",", $prod);
- $return = array();
- foreach ($prod as $produs)
- {
- $query = "SELECT id, nume, pret, img FROM produse WHERE id=:id";
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(":id", $produs);
- $stmt -> execute();
- $row = $stmt->fetchAll();
- $return[] = array("nume" => $row[0]["nume"], "pret" => $row[0]["pret"], "img" => $row[0]["img"], "id" => $row[0]["id"]);
- }
- }
- return json_encode($return);
- }
- else return -1;
- }
- function placeOrder($key)
- {
- if(checkLoginKey($key))
- {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query="SELECT id, cos, oras, judet, adresa, telefon,email, codReducere FROM accounts WHERE loginKey = :key";
- $stmt=$conn->prepare($query);
- $stmt->bindParam(":key",$key);
- $stmt->execute();
- $row = $stmt->fetchAll();
- $queryReduceri = "SELECT valoare,tip, categorii FROM reduceri WHERE cod = :cod";
- $state = $conn->prepare($queryReduceri);
- $state -> bindParam(":cod", $row[0]["codReducere"]);
- $state -> execute();
- $state = $state->fetchAll();
- $valoareReducere = $state[0]["valoare"];
- $categoriiRed = explode(",",$state[0]["categorii"]);
- $tipReducere = $state[0]["tip"];
- $produse = explode(",", $row[0]["cos"]);
- $prodAct = $row[0]["cos"];
- $id = $row[0]["id"];
- $adresa = $row[0]["oras"].",".$row[0]["judet"].",".$row[0]["adresa"];
- $mail = $row[0]["email"];
- $telefon = $row[0]["telefon"];
- $cnt = 0;
- $total = 0;
- foreach($produse as $prod)
- {
- if($cnt > 0)
- {
- $update = "UPDATE produse SET stoc=stoc-1 WHERE id=:id";
- $state = $conn -> prepare($update);
- $state->bindParam(":id", $prod);
- $state->execute();
- $query = "SELECT pret,categorie FROM produse WHERE id=:id";
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(":id", $prod);
- $stmt -> execute();
- $stmt = $stmt -> fetchAll();
- $pret = $stmt[0]["pret"];
- $categ = $stmt[0]["categorie"];
- $total += $pret;
- if(in_array($categ, $categoriiRed) || $tipReducere == 0)
- $total-=$valoareReducere;
- }
- $cnt++;
- }
- $query = "INSERT INTO comenzi (cumparator, produse, adresa, mail, telefon, total) VALUES (:id, :produse, :adresa, :mail, :telefon, :total)";
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(":id", $id);
- $stmt -> bindParam(":produse", $prodAct);
- $stmt -> bindParam(":adresa", $adresa);
- $stmt -> bindParam(":mail", $mail);
- $stmt -> bindParam(":telefon", $telefon);
- $stmt -> bindParam(":total", $total);
- $stmt -> execute();
- $query = "UPDATE accounts SET cos='' WHERE loginKey=:id";
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(':id', $key);
- $stmt -> execute();
- return 1;
- }
- else
- return -1;
- }
- function editData($oras,$judet,$adresa,$telefon,$key)
- {//Funcite de editare date utilizator.
- //Se trimit catre server variabilele;oras,judet,adresa,telefon si loginkey;in caz de succes,reuseste sa modifice datele in baza de date.
- if(checkLoginKey($key))
- {
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query="UPDATE accounts SET oras=:oras, judet=:judet, adresa=:adresa,telefon=:telefon WHERE loginKey = :key";
- $stmt=$conn->prepare($query);
- $stmt->bindParam(":oras",$oras);
- $stmt->bindParam(":judet",$judet);
- $stmt->bindParam(":adresa",$adresa);
- $stmt->bindParam(":telefon",$telefon);
- $stmt->bindParam(":key",$key);
- $stmt->execute();
- return 1;
- }
- catch(PDOException $e)
- {
- return -1;
- }
- }
- }
- function addToPref($key, $prod)
- {//Functia de adaugare produs
- //Trimite catre baza de date produsul si loginkey-ul,daca reuseste sa introduca in baza de date ,returneaza 1.
- if(checkLoginKey($key))
- {
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query="UPDATE accounts SET favorite=CONCAT(favorite, :prod) WHERE loginKey = :key";
- $stmt=$conn->prepare($query);
- $prod = ",".$prod;
- $stmt->bindParam(":prod",$prod);
- $stmt->bindParam(":key",$key);
- $stmt->execute();
- return 1;
- }
- catch(PDOException $e)
- {
- return -1;
- }
- }
- }
- function addToCart($key, $prod)
- {
- /***************** FUNCTION DESCRIPTION BELOW *****************************
- *
- * In this function we add the requested product to our user's shopping cart
- *
- ***************************************************************************/
- if(checkLoginKey($key))
- {
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query="UPDATE accounts SET cos=CONCAT(cos,:prod) WHERE loginKey = :key";
- $stmt=$conn->prepare($query);
- $prod = ",".$prod;
- $stmt->bindParam(":prod",$prod);
- $stmt->bindParam(":key",$key);
- $stmt->execute();
- return 1;
- }
- catch(PDOException $e)
- {
- return -1;
- }
- }
- }
- function checkLoginKey($key)
- {
- //Functia verifica daca acestui login-key ii corespunde un cont in baza de date. In caz afirmativ, intoarce 1, altfel intoarce -1.
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query="SELECT count(*) from accounts WHERE loginKey=:lgk";
- $stmt=$conn->prepare($query);
- $stmt->bindParam(":lgk",$key);
- $stmt->execute();
- return $stmt->fetchColumn();
- }
- catch(PDOException $e)
- {
- return -1;
- }
- }
- function delProd($y)
- { // Functia cu care stergem produsele din baza de date
- // returns: 1=> cand produsul s-a sters.
- // 0=> cand pordusul nu s-a sters.
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query="DELETE FROM produse WHERE id=:b";
- $stmt=$conn->prepare($query);
- $stmt->bindParam(":b",$y);
- $stmt->execute();
- return 1;
- }
- catch(PDOException $e)
- {
- return 0;
- }
- }
- function getProd($x=-1)
- {
- //aceasta functie isi modifica valoarea intoarsa in functie de parametrul x
- // x = -1 => functia intoarce pentru fiecare produs din baza de date: nume, id, numele categoriei, pretul, descrierea, imaginea codate in format JSON
- // x != -1 =>functia intoarce aceleasi date ca mai sus, insa pentru produsul care are id-ul X
- // in caz de erori, functia intoarce 0 in ambele cazuri
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- if($x==-1)
- $query="SELECT produse.nume,produse.id,categorii.nume AS categorie ,produse.pret,produse.descriere,produse.img AS imagine FROM produse JOIN categorii ON categorii.id=produse.categorie";
- else
- $query="SELECT produse.nume,produse.id,categorii.nume AS categorie ,produse.pret,produse.descriere,produse.img AS imagine FROM produse,categorii WHERE produse.id=:id AND categorii.id=produse.categorie";
- $stmt=$conn->prepare($query);
- if($x!=-1)
- $stmt->bindParam(":id",$x);
- $stmt->execute();
- return json_encode($stmt->fetchAll());
- }
- catch(PDOException $e)
- {
- return 0;
- }
- }
- function uploadImg($img)
- {//Aceasta functie incarca imaginile produselor in baza de date
- $target_dir = "./images/";
- $target_file = $target_dir . basename($img["name"]);
- move_uploaded_file($img["tmp_name"], $target_file);
- return $target_file;
- }
- function adaugareProdus($nume,$categorie,$desc,$pret,$img, $stoc)
- {//Aceasta functie adauga produsele in baza de date
- //returns: 1=>daca produsul a fost adaugat cu succes
- // 0=>daca produsul nu a fost adaugat cu succes
- $img=uploadImg($img);
- // 'telefon.jpg' -> 'images/telefon.jpg'
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query="INSERT INTO produse(nume,categorie,descriere,pret,img,stoc) VALUES(:nume,:categorie,:descriere,:pret,:img,:stoc) ";
- $stmt=$conn->prepare($query);
- $stmt->bindParam(":nume",$nume);
- $stmt->bindParam(":categorie",$categorie);
- $stmt->bindParam(":descriere",$desc);
- $stmt->bindParam(":pret",$pret);
- $stmt->bindParam(":img",$img);
- $stmt->bindParam(":stoc",$stoc);
- $stmt->execute();
- return 1;
- }
- catch(PDOException $e)
- {
- return 0;
- }
- }
- function delCat($x)
- {//Aceasta functie sterge categoriile din baza de date
- //returns: 1=> intoarce 1 cand categoria s-a sters cu succes
- // 0=>intoarce 0 cand categoria nu s-a sters cu succes
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query="DELETE FROM categorii WHERE id=:a";
- $stmt=$conn->prepare($query);
- $stmt->bindParam(':a',$x);
- $stmt->execute();
- return 1;
- }
- catch(PDOException $e)
- {
- return 0;
- }
- }
- function rCat()
- {//Aceasta functie intoarce in caz de succes id,nume,numarProduse
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query="SELECT id,nume,numarProduse FROM categorii";
- $stmt = $conn->prepare($query);
- $stmt ->execute();
- return json_encode($stmt ->fetchAll());
- }
- catch(PDOException $e)
- {
- return 0;
- }
- }
- function addcat($nm)
- {
- /***************** FUNCTION DESCRIPTION BELOW *****************************
- *
- * Function adds a category to our database.
- * Returns:
- * 0 => category was not added
- * 1 => category was successfully added
- *
- ***************************************************************************/
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query="SELECT count(*) FROM categorii where nume=:nume";
- $stmt = $conn->prepare($query);
- $stmt ->bindParam(":nume",$nm);
- $stmt ->execute();
- $nr = $stmt -> fetchColumn();
- if($nr == 0)
- {
- $query="INSERT INTO categorii(nume,numarProduse) VALUES(:nume,0)";
- $stmt= $conn->prepare($query);
- $stmt->bindParam(":nume",$nm);
- $stmt->execute();
- return 1;
- }
- else
- return 0;
- }
- catch(PDOException $e)
- {
- return 0;
- }
- }
- function getDetails($loginKey)
- {
- /***************** OBJECT DESCRIPTION BELOW ********************************
- *
- * $uData
- * succes => it is true when user exists in
- * our database, and false when
- * there is no user with those
- * credentials
- * cos => List of user's products in his
- * shopping cart. Every product
- * separed by a comma
- * favorite => List of user's products in his
- * favorite list. Every product
- * separed by a comma
- * prenume => User's first name
- ***************************************************************************/
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query="SELECT cos,favorite,prenume,oras,judet,adresa,telefon,id,codReducere FROM accounts WHERE loginKey=:lgk";
- $stmt = $conn -> prepare ($query);
- $stmt -> bindParam(":lgk",$loginKey);
- $stmt ->execute();
- while($row = $stmt->fetch())
- if(checkLoginKey($loginKey))
- {
- $dates = $row;
- $queryReduceri = "SELECT tip,categorii,valoare FROM reduceri WHERE cod = :cod";
- $state = $conn->prepare($queryReduceri);
- $state -> bindParam(":cod", $row["codReducere"]);
- $state -> execute();
- $state = $state -> fetchAll();
- $categoriiReducere = $state[0]["categorii"];
- $categoriiReducere = explode(",",$categoriiReducere);
- $valReducere = $state[0]["valoare"];
- $tipReducere = $state[0]["tip"];
- $fav = explode(",", $row["favorite"]);
- $cos = explode(",", $row["cos"]);
- $uId = $row["id"];
- $returnFav = array();
- foreach($fav as $prod)
- {
- $query = "SELECT nume, count(*) AS total FROM produse WHERE id=:id";
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(":id", $prod);
- $stmt -> execute();
- $row = $stmt -> fetch();
- if($row["total"] != 0)
- $returnFav[] = array("id" => $prod, "nume" => $row[0]);
- }
- $returnCos = array();
- foreach($cos as $prod)
- {
- $query = "SELECT nume,count(*) AS total,img,pret,categorie FROM produse WHERE id=:id";
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(":id", $prod);
- $stmt -> execute();
- $row = $stmt -> fetch();
- if($row["total"] != 0)
- {
- if(in_array($row["categorie"], $categoriiReducere) || $tipReducere == 0)
- $returnCos[] = array("id" => $prod, "nume" => $row["nume"], "imagine" => $row["img"], "pret" => $row["pret"] - $valReducere);
- else
- $returnCos[] = array("id" => $prod, "nume" => $row["nume"], "imagine" => $row["img"], "pret" => $row["pret"]);
- }
- }
- $query = "SELECT id,data,total,status FROM comenzi WHERE cumparator = :id ORDER BY data DESC";
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(":id", $uId);
- $stmt -> execute();
- $result = $stmt -> fetchAll();
- $comenzi = array();
- foreach($result as $comanda)
- {
- $comenzi[]= array("id" => $comanda["id"], "data" => $comanda["data"], "total" => $comanda["total"], "status" => $comanda["status"]);
- }
- $uData = array("success"=>1,"cos"=>$returnCos,
- "favorite"=>$returnFav,"prenume"=>$dates[2],
- "oras"=>$dates["oras"], "judet"=>$dates["judet"],
- "adresa"=>$dates["adresa"], "telefon"=>$dates["telefon"],
- "comenzi" => $comenzi);
- return json_encode($uData);
- }
- return json_encode(array("success"=>0));
- }
- catch(PDOException $e)
- {
- return json_encode(array("success"=>0));
- }
- }
- function logIn($email,$uPass)
- {
- //Functia cu care utilizatorul se poate loga la contul creat.
- //returns : 1 => daca utilizator s-a conectat cu succes dupa verificarea parolei
- // 0=>daca au aparut erori la logare.
- // OBJECTS EXPLAINED BELOW
- // $uPass
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $query="SELECT count(*),password FROM accounts WHERE email=:email";
- $stmt = $conn -> prepare ($query);
- $stmt -> bindParam(":email",$email);
- $stmt ->execute();
- while($row = $stmt->fetch())
- if($row[0]!=0)
- if(password_verify($uPass, $row[1]))
- {//Creaza loginKey,apoi il cripteaza. Trimite catre baza de date noul loginKey corespunzator adresei de email.
- $loginKey="".date()."$729ask28".$row[1]."288429429sASF2".$email;
- $loginKey=password_hash($loginKey, PASSWORD_BCRYPT);
- $query = "UPDATE accounts SET loginKey ='$loginKey' WHERE email=:email";
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(":email",$email);
- $stmt -> execute();
- setcookie("loginKey", $loginKey, time() + (86400 * 30), "/"); // 86400 = 1 day
- return 1;
- }
- return 0;
- }
- catch(PDOException $e)
- {
- return 0;
- }
- }
- function register($nume,$prenume,$email,$pass)
- {
- /* returns 1 if account was successfully added, otherwise it will return 0 as an error */
- try {
- $conn = new PDO("mysql:host=".$GLOBALS["servername"].";dbname=".$GLOBALS["db"], $GLOBALS['username'], $GLOBALS['password']);
- // set the PDO error mode to exception
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- /* Checking if account already exists in our database */
- $query2="SELECT count(*) FROM accounts WHERE email=:email";
- $stmt = $conn -> prepare($query2);
- $stmt -> bindParam(":email",$email);
- $stmt ->execute();
- $nr = $stmt -> fetchColumn();
- if($nr == 0)
- {
- /* If email is not in our database, we proceed adding it */
- $query="INSERT INTO accounts (nume,prenume,email,password) VALUES (:nume,:prenume,:email,:pass)";
- $pass = password_hash($pass,PASSWORD_BCRYPT);
- $stmt = $conn -> prepare($query);
- $stmt -> bindParam(":nume", $nume);
- $stmt -> bindParam(":prenume",$prenume);
- $stmt -> bindParam(":email",$email);
- $stmt -> bindParam(":pass",$pass);
- $stmt -> execute();
- return 1;
- }
- return 0;
- }
- catch(PDOException $e)
- {
- return 0;
- }
- }
- function main()
- {
- $action=$_GET['action'];
- switch ($action) {
- case "register":
- echo register($_POST["nume"],$_POST["prenume"],$_POST["email"],$_POST["pass"]); break;
- case "login":
- echo logIn($_POST["email"],$_POST["pass"]); break;
- case "getDetails":
- echo getDetails($_POST["loginKey"]); break;
- case "addCat":
- echo addcat($_POST["numeCategorie"]); break;
- case "retriveCat":
- echo rCat(); break;
- case "delCat":
- echo delCat($_POST["idCat"]);break;
- case "addProd":
- echo adaugareProdus($_POST["numeProd"],$_POST["catProd"],$_POST["descProd"],$_POST["pretProd"],$_FILES["imgProd"], $_POST["stocProd"]);break;
- case "retriveProd":
- echo getProd();break;
- case "delProd":
- echo delProd($_POST["id"]);break;
- case "getCategorii":
- echo rCat();break;
- case "getProdById":
- echo getProd($_POST["id"]);break;
- case "a2c":
- echo addToCart($_POST["loginKey"], $_POST["prodId"]);break;
- case "a2p":
- echo addToPref($_POST["loginKey"], $_POST["prodId"]);break;
- case "editUserDetails":
- echo editData($_POST["oras"], $_POST["judet"], $_POST["adresa"],$_POST["telefon"], $_POST["loginKey"]);break;
- case "placeOrder":
- echo placeOrder($_POST["loginKey"]);break;
- case "getOrderById":
- echo getOrderById($_POST["loginKey"], $_POST["id"]);break;
- case "getDiscount":
- echo getDiscount();break;
- case "addReducere":
- echo addReducere($_POST["cod"], $_POST["cat"],$_POST["val"]);break;
- case "stergereReducere":
- echo stergereReducere($_POST["id"]);break;
- case "getComenzi":
- echo getComenzi();break;
- case "marcareComanda":
- echo marcareComanda($_POST["id"]);break;
- case "adaugaCodReducere":
- echo adaugaCod($_POST["cod"], $_POST["loginKey"]);break;
- case "getProdStocMic":
- echo getProdStoc();break;
- default:
- // code...
- break;
- }
- }
- main();
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement