The following files exists in this folder. Click to view.
Foogler_blog/pages
PAuthor.php
PCommentProcess.php
PDeleteCommentProcess.php
PDeletePost.php
PDeletePostProcess.php
PEditPost.php
PEditPostProcess.php
PErDiagramme.php
PIndex.php
PInstall.php
PInstallProcess.php
PNewPost.php
PNewPostProcess.php
PRssFeed.php
PShowPost.php
PStatistics.php
PValidate.php
login/
<?php
//----------------------
//PAuthor.php
//
//Shows page with info about chosen author
//----------------------
//-----------------------------------
//Handles GET variables
$chosenAuthor = isset($_GET['id']) ? $_GET['id'] : '';
//-----------------------------------
//Handles DB query
$mysqli = new mysqli(DB_HOST, DB_USER, DB_PASSWORD, DB_DATABASE); //New DB object
$tableAuthor = DB_PREFIX . 'Author';
if (mysqli_connect_error()) {
echo "Connect failed: ".mysqli_connect_error()."<br>";
exit();
}
$mysqli->set_charset("utf8");
$chosenAuthor = $mysqli->real_escape_string($chosenAuthor); //Prevent SQL-injections
//--------------------
//SQL query
$query = <<<END
--
-- Gets author info
--
SELECT info FROM {$tableAuthor} WHERE screenname = '{$chosenAuthor}';
END;
//Performs query
$res = $mysqli->query($query) or die("Could not query database" . $mysqli->errno .":" . $mysqli->error);
//Gets result from query
$row = $res->fetch_object();
$html = <<<END
<h2>About {$chosenAuthor}</h2>
<span class="post">{$row->info}</span>
END;
$res->close();
$mysqli->close();
//-----------------------------------
//Prints HTML
require_once(TP_SOURCEPATH . "CHTMLPage.php");
$page = new CHTMLPage();
$page->printHTMLHeader();
$page->printPageHeader();
$page->printPageBody($html);
$page->printTagList();
$page->printRightColumn();