ITW/parent_registor.php at master · enpitut/ITW · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
<?php
  $dsn = 'mysql:dbname=enpit2015_ITW;host=localhost;charset=utf8';
  $user = 'root';
  $password = 'enPiT2015ITW';

  if(!isset($_POST["parent_id"])){$_POST["parent_id"]="";}
  if(!isset($_POST["user_id"])){$_POST["user_id"]="";}

  $parentid = htmlspecialchars($_POST["parent_id"]);
  $user_id = htmlspecialchars($_POST["user_id"]);

  try{
    $dbh = new PDO($dsn, $user, $password);
    if($dbh == null){
      echo -1;
    }else{
      $dbh->setAttribute(PDO::ATTR_EMULATE_PREPARES, false);
      $check_sql = 'SELECT * FROM users WHERE id = :user_id';
      $check_stmt = $dbh->prepare($check_sql);
      $check_stmt->bindValue(':user_id', $user_id, PDO::PARAM_INT);
      $check_stmt->execute();
      $rc = $check_stmt->rowCount();

      if($rc == 0){
      /*
        $insert_sql = 'INSERT INTO positions (id, parentid) values (:user_id, :parentid)';
        $stmt = $dbh->prepare($insert_sql);
        $stmt->bindValue(':parentid', $parentid, PDO::PARAM_INT);
        $stmt->bindValue(':user_id', $user_id, PDO::PARAM_INT);
        $stmt->execute();*/
      }else{
        $update_sql = 'UPDATE users SET parentid = :parentid WHERE id=:user_id';
        $stmt = $dbh->prepare($update_sql);
        $stmt->bindValue(':parentid', $parentid, PDO::PARAM_INT);
        $stmt->bindValue(':user_id', $user_id, PDO::PARAM_INT);
        $stmt->execute();
      }
      echo 1;
    }
  }catch (PDOException $e){
    //print('Connection failed : ' .$e->getMessage());
    echo -1;
    die();
  }
?>