Borgal/domili
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
7393378a02f01ba6adb4d83d5c1c008def1840ab
domili/profil.php
Borgal dbb2151bf1 Geburtstag hinzugefügt
2025-10-24 14:55:05 +02:00

129 lines
6.0 KiB
PHP
Executable File
Raw Blame History

<?php
require_once 'inc/check_login.php';
require_once 'inc/db.php';
$message = '';
$message_type = '';
$user_id = (int)$_SESSION['user_id']; // Sicherheitshalber als Integer
// Aktuelle Benutzerdaten laden
$stmt_fetch = mysqli_prepare($conn, "SELECT username, email, role, birthday FROM users WHERE id = ?");
mysqli_stmt_bind_param($stmt_fetch, "i", $user_id);
mysqli_stmt_execute($stmt_fetch);
$result = mysqli_stmt_get_result($stmt_fetch);
$user_data = mysqli_fetch_assoc($result);
mysqli_stmt_close($stmt_fetch);
if (!$user_data) {
die("Benutzer nicht gefunden.");
}
$current_username = $user_data['username'];
$current_email = $user_data['email'];
$current_role = $user_data['role'];
$current_birthday = $user_data['birthday'] ?? '';
if ($_SERVER["REQUEST_METHOD"] == "POST") {
$new_username = trim($_POST['username'] ?? '');
$new_email = trim($_POST['email'] ?? '');
$new_birthday = trim($_POST['birthday'] ?? '');
if (empty($new_username)) {
$message = "Benutzername darf nicht leer sein.";
$message_type = 'danger';
} else {
if (!empty($new_email) && !filter_var($new_email, FILTER_VALIDATE_EMAIL)) {
$message = "Ungültige E-Mail-Adresse.";
$message_type = 'danger';
} else {
$stmt = mysqli_prepare($conn, "UPDATE users SET username = ?, email = ?, birthday = ? WHERE id = ?");
if ($stmt) {
$db_email = (!empty($new_email)) ? $new_email : null;
$db_birthday = (!empty($new_birthday)) ? $new_birthday : null;
mysqli_stmt_bind_param($stmt, "sssi", $new_username, $db_email, $db_birthday, $user_id);
if (mysqli_stmt_execute($stmt)) {
$_SESSION['username'] = $new_username;
$_SESSION['email'] = $new_email;
$result_reload = mysqli_query($conn, "SELECT username, email, role, birthday FROM users WHERE id = " . (int)$user_id);
if ($result_reload) {
$user_data = mysqli_fetch_assoc($result_reload);
$current_username = $user_data['username'];
$current_email = $user_data['email'];
$current_role = $user_data['role'];
$current_birthday = $user_data['birthday'] ?? '';
}
$message = "Profil erfolgreich aktualisiert!";
$message_type = 'success';
} else {
$message = "Fehler beim Speichern der Daten.";
$message_type = 'danger';
}
mysqli_stmt_close($stmt);
} else {
$message = "Datenbankfehler: Statement konnte nicht vorbereitet werden.";
$message_type = 'danger';
}
}
}
}
require_once 'inc/header.php';
?>
<div class="container mt-5">
<div class="row justify-content-center">
<div class="col-md-8 col-lg-6">
<h2 class="mb-4">Benutzerverwaltung</h2>
<div class="card shadow">
<div class="card-header bg-primary-subtle text-secondary">
<h4 class="mb-0">Profil bearbeiten</h4>
</div>
<div class="card-body">
<?php if ($message): ?>
<div id="status-message" class="alert alert-<?= htmlspecialchars($message_type) ?> alert-dismissible fade show" role="alert">
<?= htmlspecialchars($message) ?>
<button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>
</div>
<?php endif; ?>
<form action="" method="post">
<div class="mb-3">
<label for="username" class="form-label fw-bold">Benutzername</label>
<input type="text" class="form-control" id="username" name="username" value="<?= htmlspecialchars($current_username) ?>" required>
</div>
<div class="mb-3">
<label for="email" class="form-label fw-bold">E-Mail-Adresse</label>
<input type="email" class="form-control" id="email" name="email" value="<?= htmlspecialchars($current_email) ?>">
</div>
<div class="mb-3">
<label for="birthday" class="form-label fw-bold">Geburtstag</label>
<input type="date" class="form-control" id="birthday" name="birthday" value="<?= htmlspecialchars($current_birthday) ?>">
<small class="form-text text-muted">Für automatische Sonderzahlung.</small>
</div>
<div class="mb-3">
<label for="role" class="form-label fw-bold">Rolle</label>
<input type="text" class="form-control" id="role" name="role" value="<?= htmlspecialchars($current_role) ?>" disabled readonly>
</div>
<div class="d-flex justify-content-between align-items-center mt-3">
<div>
<button type="submit" class="btn btn-sm btn-outline-primary">Speichern</button>
<a href="index.php" class="btn btn-sm btn-outline-secondary">Abbrechen</a>
</div>
<div>
<form action="logout_all_devices.php" method="post" onsubmit="return confirm('Möchtest du dich wirklich auf allen Geräten abmelden?');">
<button type="submit" class="btn btn-sm btn-outline-danger">Auf allen Geräten abmelden</button>
</form>
</div>
</div>
</form>
</div>
</div>
</div>
</div>
</div>
<?php require_once 'inc/footer.php'; ?>
Reference in New Issue View Git Blame Copy Permalink