summaryrefslogtreecommitdiff
path: root/final/app/profil.php
diff options
context:
space:
mode:
Diffstat (limited to 'final/app/profil.php')
-rw-r--r--final/app/profil.php56
1 files changed, 45 insertions, 11 deletions
diff --git a/final/app/profil.php b/final/app/profil.php
index 16d3449..eebc750 100644
--- a/final/app/profil.php
+++ b/final/app/profil.php
@@ -3,20 +3,37 @@ require('include/ludo/session_verify.inc.php');
require_once('include/ludo/html_elements.inc.php');
require_once('include/connect.inc.php');
require_once('include/ju.inc.php');
+require_once('include/je.inc.php');
+require_once('include/tools.inc.php');
if ( isset($_REQUEST['action']) )
{
+
if ($_POST['action'] == "maj_profil")
{
- if (1==1)//Verification auth puis traitement
+ include('auth_dialog.php');
+ if ( authentification(addslashes_if_needed($_POST['loginP']),addslashes_if_needed($_POST['pass']),addslashes_if_needed($_POST['methodeAuth'])) === true )
{
$nom_func = 'traiter_formulaire_' . $_REQUEST['action'];
- $nom_func();
+ $result_fonc = $nom_func();
+ }
+ else
+ {
+ $result_fonc = -1;
}
}
}
+if (isset($_POST['pre_action']) )
+{
+ if (($_POST['pre_action'] == "verif_profil" & ($_POST["oldLogin"] == $_POST["loginP"]) | ($_POST["oldMethodeAuth"] == $_POST["methodeAuth"])))
+ {
+ $nom_func = 'traiter_formulaire_maj_profil';
+ $result_fonc = $nom_func();
+ }
+}
generate_html_doctype_and_head("Administration du profil");
echo "<body>\n";
+
generate_html_divs_menu();
?>
<div id="sous_menu">
@@ -37,29 +54,42 @@ else
{
$nom = $_SESSION['session_loginP'];
}
-if (isset($_POST['pre_action']) & $_POST['pre_action']=="verif_profil")
+$verif_auth = false;
+if (isset($_POST['pre_action']) )
{
-
+ if ($_POST['pre_action']=="verif_profil" & ($_POST["oldLogin"] != $_POST["loginP"]) | ($_POST["oldMethodeAuth"] != $_POST["methodeAuth"]))
+ {
+
echo "<form method=\"post\" action=\"profil.php\" >\n";
echo "<table><tr><th>Confirmer votre authentification</th></tr>";
- echo "<tr><td>Identifiant : ".$_POST['loginP']."</td></tr>";
+ echo "<tr><td>Identifiant : ".stripslashes_if_needed($_POST['loginP'])."</td></tr>";
echo "<tr><td>Mot de passe : <input name=\"pass\" type=\"password\" size=\"20\" /></td></tr>";
echo "<tr><td><input type=\"submit\" /></td></tr>";
echo "</table>";
- echo "<input type=\"hidden\" name=\"loginP\" value=\"".$_POST['loginP']."\"/>\n";
- echo "<input type=\"hidden\" name=\"courrielP\" value=\"".$_POST['courrielP']."\"/>\n";
- echo "<input type=\"hidden\" name=\"nomP\" value=\"".$_POST['nomP']."\"/>\n";
- echo "<input type=\"hidden\" name=\"methodeAuth\" value=\"".$_POST['methodeAuth']."\"/>\n";
- echo "<input type=\"hidden\" name=\"prenomP\" value=\"".$_POST['prenomP']."\"/>\n";
+ echo "<input type=\"hidden\" name=\"loginP\" value=\"".stripslashes_if_needed($_POST['loginP'])."\"/>\n";
+ echo "<input type=\"hidden\" name=\"courrielP\" value=\"".stripslashes_if_needed($_POST['courrielP'])."\"/>\n";
+ echo "<input type=\"hidden\" name=\"nomP\" value=\"".stripslashes_if_needed($_POST['nomP'])."\"/>\n";
+ echo "<input type=\"hidden\" name=\"methodeAuth\" value=\"".stripslashes_if_needed($_POST['methodeAuth'])."\"/>\n";
+ echo "<input type=\"hidden\" name=\"prenomP\" value=\"".stripslashes_if_needed($_POST['prenomP'])."\"/>\n";
echo "<input type=\"hidden\" name=\"action\" value=\"maj_profil\" />\n";
echo "</form>\n";
+ $verif_auth=true;
+ }
}
-else
+if ($verif_auth==false)
{
$resultat = mysql_query("SELECT * FROM AWOR_Personne WHERE idP = '".$_SESSION['session_idP']."'");
if($resultat != false)
{
+ if (isset($result_fonc))
+ {
+ if ($result_fonc === true) echo "Les modifications ont &eacute;t&eacute; prises en compte.";
+ if ($result_fonc === false) echo "Erreur de modification de votre compte.";
+ if ($result_fonc === -1) echo "Erreur, le mot de passe et le login ne sont pas conformes.";
+ echo "<br/><br/>\n";
+
+ }
$p = mysql_fetch_array($resultat);
echo "<form method=\"post\" action=\"profil.php\" onSubmit=\"return verifProfil()\" >\n";
echo "<table summary=\"Formulaire permettant de modifier le profil de l'utilisateur\" >\n";
@@ -71,9 +101,13 @@ else
echo "<tr><td>Votre adresse mail :</td><td><input type=\"text\" name=\"courrielP\" id=\"courrielP\" value=\"".htmlentities($p["courrielP"], ENT_QUOTES)."\"/></td></tr>\n";
echo "<tr><td>Votre nom :</td><td><input type=\"text\" name=\"nomP\" id=\"nomP\" value=\"".htmlentities($p["nomP"], ENT_QUOTES)."\"/></td></tr>\n";
echo "<tr><td>Votre prenom :</td><td><input type=\"text\" name=\"prenomP\" id=\"prenomP\" value=\"".htmlentities($p["prenomP"], ENT_QUOTES)."\"/></td></tr>\n";
+ echo "<tr><td>Votre choix d'apparence :</td><td>";generate_html_div_css_chooser();echo"</td></tr>\n";
echo "<tr><td colspan=\"2\"><input type=\"submit\" /></td></tr>\n";
echo "</table>\n";
+ echo "<input type=\"hidden\" name=\"oldMethodeAuth\" value=\"".$p["methodeAuth"]."\" />\n";
+ echo "<input type=\"hidden\" name=\"oldLogin\" value=\"".$p["loginP"]."\" />\n";
echo "<input type=\"hidden\" name=\"pre_action\" value=\"verif_profil\" />\n";
+
echo "</form>\n";
echo "</div>\n";
}