-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathmessageAction.php
More file actions
76 lines (67 loc) · 2.45 KB
/
messageAction.php
File metadata and controls
76 lines (67 loc) · 2.45 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
<?php
/*
** messageAction.php
** Author: Peter DiSalvo
** Date: 12/14/2012
** Performs the given action on a message in a message box.
*/
require_once 'config.inc.php';
if(!empty($_GET[Config::PARAM_MSG_ACT]))
{
$messageAction = !empty($_GET[Config::PARAM_MSG_ACT]) ? $_GET[Config::PARAM_MSG_ACT] : "NULL";
$messageID = !empty($_GET[Config::PARAM_MSG_ID]) ? $_GET[Config::PARAM_MSG_ID] : "NULL";
$mysqliConnection = new mysqli(Config::DB_CONN, Config::DB_USER, Config::DB_PASS, Config::DB_NAME);
if (mysqli_connect_error())
{
die(Config::DB_ERROR_TEXT . mysqli_connect_errno() . ' ' . mysqli_connect_error());
}
switch($messageAction)
{
case 'C':
$updateMessageQueryString = <<<SQL
DELETE FROM recruitmessage WHERE MessageID = {$messageID};
SQL;
$mysqliConnection->query($updateMessageQueryString) or die($mysqliConnection->error);
break;
case 'RA':
$updateMessageQueryString = <<<SQL
UPDATE recruitmessage SET ResultAcknowledged = TRUE WHERE MessageID = {$messageID};
SQL;
$mysqliConnection->query($updateMessageQueryString) or die($mysqliConnection->error);
break;
case 'A':
// Add player to roster
$addToRosterQueryString = <<<SQL
INSERT INTO teamroster (TeamID, PlayerAccountNumber)
SELECT rm.TeamID, rm.PlayerAccountNumber
FROM recruitmessage rm
WHERE rm.MessageID = {$messageID};
SQL;
$mysqliConnection->query($addToRosterQueryString) or die($mysqliConnection->error);
$rosterID = $mysqliConnection->insert_id;
// Assign player to position
$addPositionQueryString = <<<SQL
INSERT INTO teamrosterassignment (RosterID, TeamID, PositionID)
SELECT {$rosterID}, rm.TeamID, rm.PositionID
FROM recruitmessage rm
WHERE rm.MessageID = {$messageID}
AND rm.PositionID IS NOT NULL;
SQL;
$mysqliConnection->query($addPositionQueryString) or die($mysqliConnection->error);
// Update message
$updateMessageQueryString = <<<SQL
UPDATE recruitmessage SET MessageStateID = '{$messageAction}', DateResponded = NOW() WHERE MessageID = {$messageID};
SQL;
$mysqliConnection->query($updateMessageQueryString) or die($mysqliConnection->error);
break;
case 'D':
$updateMessageQueryString = <<<SQL
UPDATE recruitmessage SET MessageStateID = '{$messageAction}', DateResponded = NOW() WHERE MessageID = {$messageID};
SQL;
$mysqliConnection->query($updateMessageQueryString) or die($mysqliConnection->error);
break;
}
$mysqliConnection->close();
require_once 'messageBox.inc.php';
}
?>