diff --git a/assets/js/parameters.js b/assets/js/parameters.js
index b46f31b..d7252f6 100644
--- a/assets/js/parameters.js
+++ b/assets/js/parameters.js
@@ -29,6 +29,7 @@ $(document).ready(function(){
new_pass: sha1($(input[1]).val().trim()),
confirm_pass: sha1($(input[2]).val().trim())},
function(data, status, jqXHR) {
+ console.log(data.trim());
if (data.trim() == "true"){
$(".info_message").html("Mot de passe modifié avec succès");
$(".info_message").css("background-color", "#90ee90");
@@ -36,7 +37,7 @@ $(document).ready(function(){
for (let pas = 0; pas < 3; pas++) {
$(input[pas]).val("");
}
- setTimeout(function() { $(".info_message").css("display", "none"); }, 4000);
+ setTimeout(function() { location.href='/controller/Disconnect.php'; }, 1000);
} else if (data.trim() == "new_not_match"){
$(".info_message").html("Le nouveau mot de passe ne correpond pas avec le champ confirmation");
diff --git a/controller/Edit_password.php b/controller/Edit_password.php
index 7996558..77f5a85 100644
--- a/controller/Edit_password.php
+++ b/controller/Edit_password.php
@@ -1,38 +1,40 @@
prepare('SELECT * FROM users NATURAL JOIN roles NATURAL JOIN roles_has_permissions NATURAL JOIN permissions WHERE code_permission="SFx1" AND username=:user AND password_user=:password_user;');
+ $query_check_cookie->execute(['user' => $_COOKIE['username'], 'password_user' => $_COOKIE['pass']]);
+ if ($query_check_cookie->rowCount() == 1){
- if (!$error) { /*Si la connexion a été établie sans erreur*/
- $query = $bdd->prepare('SELECT password_user FROM users WHERE username=:user;');
- $query->execute(['user' => $_SESSION["username"]]); /*Remplissage de la requete avec les données*/
- $results = $query->fetchALL(PDO::FETCH_OBJ); /*Retour un résultat sous forme d'objet*/
+ if ($_SERVER['REQUEST_METHOD'] === 'POST') { /*Seulement si la method est en POST*/
+ if (isset($_POST["actual_pass"]) && isset($_POST["new_pass"]) && isset($_POST["confirm_pass"])){ /*Vérification de l'existance des paramètres*/
+ $actual_pass = $_POST["actual_pass"]; /*Récupération des paramètres*/
+ $new_pass = $_POST["new_pass"];
+ $confirm_pass = $_POST["confirm_pass"];
- if ($query->rowCount() == 1){
- if ($results[0]->password_user == $actual_pass){
- if ($new_pass == $confirm_pass){
- $query_update_pass = $bdd->prepare('UPDATE users SET password_user = :pass WHERE username=:user;');
- $query_update_pass->execute(['user' => $_SESSION["username"], 'pass' => $new_pass]);
- echo "true";
- } else {
- echo "new_not_match";
+ $query = $bdd->prepare('SELECT password_user FROM users WHERE username=:user;');
+ $query->execute(['user' => $_COOKIE["username"]]); /*Remplissage de la requete avec les données*/
+ $results = $query->fetchALL(PDO::FETCH_OBJ); /*Retour un résultat sous forme d'objet*/
+
+ if ($query->rowCount() == 1){
+ if ($results[0]->password_user == $actual_pass){
+ if ($new_pass == $confirm_pass){
+ $query_update_pass = $bdd->prepare('UPDATE users SET password_user = :pass WHERE username=:user;');
+ $query_update_pass->execute(['user' => $_COOKIE["username"], 'pass' => $new_pass]);
+ echo "true";
+ } else {
+ echo "new_not_match";
+ }
}
- }
- else { echo "actual_not_match";} /*false si mot de passe non correct*/
- } else { echo "false";}
- $bdd = null; /*Fin de connexion*/
- } else {echo "false";} /*Dans le cas d'une erreur de connexion à la BDD, retour false (erreur d'authentification)*/
+ else { echo "actual_not_match";} /*false si mot de passe non correct*/
+ } else { echo "false";}
+ $bdd = null; /*Fin de connexion*/
+ }
+ }
+ } else {
+ echo "";
}
}
-} else {
- echo "";
}
?>
\ No newline at end of file
diff --git a/controller/Postuler.php b/controller/Postuler.php
index ebce5f2..73efef4 100644
--- a/controller/Postuler.php
+++ b/controller/Postuler.php
@@ -15,18 +15,21 @@ if (isset($_COOKIE['username']) && isset($_COOKIE['pass'])) {
$query_check_cookie = $bdd->prepare('SELECT * FROM users NATURAL JOIN roles NATURAL JOIN roles_has_permissions NATURAL JOIN permissions WHERE code_permission="SFx1" AND username=:user AND password_user=:password_user;');
$query_check_cookie->execute(['user' => $_COOKIE['username'], 'password_user' => $_COOKIE['pass']]);
if ($query_check_cookie->rowCount() == 1){
+
+
+
if (is_uploaded_file($_FILES['cv']['tmp_name']) && is_uploaded_file($_FILES['lm']['tmp_name']) && isset($_POST["ID_internship"])) {
- $query_ID_user = $bdd->prepare('SELECT ID_user FROM users WHERE username=:user;');
- $query_ID_user->execute(['user' => $_COOKIE["username"]]);
- $ID_user = $query_ID_user->fetchALL(PDO::FETCH_OBJ)[0]->ID_user;
+ $query_user = $bdd->prepare('SELECT ID_user, firstname_user, lastname_user, email_user FROM users WHERE username=:user;');
+ $query_user->execute(['user' => $_COOKIE["username"]]);
+ $results_user = $query_user->fetchALL(PDO::FETCH_OBJ);
- $location_cv = "/documents/users/".$ID_user."/"."candidatures/".$_POST["ID_internship"]."/".$_FILES['cv']['name'];
- $location_lm = "/documents/users/".$ID_user."/"."candidatures/".$_POST["ID_internship"]."/".$_FILES['lm']['name'];
+ $query_pilots_of_user = $bdd->prepare('SELECT * FROM users NATURAL JOIN user_belong_promo NATURAL JOIN promotions INNER JOIN roles ON roles.ID_role=users.ID_role WHERE (name_role="Pilote" OR name_role="Délégué(e)") AND ID_promotion=(SELECT ID_promotion FROM users NATURAL JOIN user_belong_promo NATURAL JOIN promotions WHERE username:user);');
+ $query_pilots_of_user->execute(['user' => $_COOKIE["username"]]);
+ $results_pilots_of_user = $query_pilots_of_user->fetchALL(PDO::FETCH_OBJ);
- echo $location_cv;
- echo "
";
- echo $location_lm;
+ $location_cv = "/documents/users/".$results_user[0]->ID_user."/"."candidatures/".$_POST["ID_internship"]."/".$_FILES['cv']['name'];
+ $location_lm = "/documents/users/".$results_user[0]->ID_user."/"."candidatures/".$_POST["ID_internship"]."/".$_FILES['lm']['name'];
try {
if (!is_dir('../documents/')){
@@ -35,21 +38,21 @@ if (isset($_COOKIE['username']) && isset($_COOKIE['pass'])) {
if (!is_dir('../documents/users')){
mkdir("../documents/users", 0700);
}
- if (!is_dir("../documents/users/".$ID_user."/")){
- mkdir("../documents/users/".$ID_user."/", 0700);
+ if (!is_dir("../documents/users/".$results_user[0]->ID_user."/")){
+ mkdir("../documents/users/".$results_user[0]->ID_user."/", 0700);
}
- if (!is_dir("../documents/users/".$ID_user."/"."candidatures/")){
- mkdir("../documents/users/".$ID_user."/"."candidatures/", 0700);
+ if (!is_dir("../documents/users/".$results_user[0]->ID_user."/"."candidatures/")){
+ mkdir("../documents/users/".$results_user[0]->ID_user."/"."candidatures/", 0700);
}
- if (!is_dir("../documents/users/".$ID_user."/"."candidatures/".$_POST["ID_internship"])){
- mkdir("../documents/users/".$ID_user."/"."candidatures/".$_POST["ID_internship"], 0700);
+ if (!is_dir("../documents/users/".$results_user[0]->ID_user."/"."candidatures/".$_POST["ID_internship"])){
+ mkdir("../documents/users/".$results_user[0]->ID_user."/"."candidatures/".$_POST["ID_internship"], 0700);
}
move_uploaded_file($_FILES['cv']['tmp_name'], "..".$location_cv);
move_uploaded_file($_FILES['lm']['tmp_name'], "..".$location_lm);
$query_ID_user = $bdd->prepare('INSERT INTO candidatures VALUES (NULL, "1", :location_cv, :location_lm, NULL, NULL, :ID_user, :ID_internship);');
- $query_ID_user->execute(['location_cv' => $location_cv, 'location_lm' => $location_lm, 'ID_user' => $ID_user, 'ID_internship' => $_POST["ID_internship"]]);
+ $query_ID_user->execute(['location_cv' => $location_cv, 'location_lm' => $location_lm, 'ID_user' => $results_user[0]->ID_user, 'ID_internship' => $_POST["ID_internship"]]);
try {
$mail->SMTPDebug = SMTP::DEBUG_SERVER;
@@ -62,11 +65,11 @@ if (isset($_COOKIE['username']) && isset($_COOKIE['pass'])) {
$mail->Username = 'teamspeakcompte@gmail.com';
$mail->Password = 'wptjusfmrxurmgcf';
- $mail->setFrom('teamspeakcompte@gmail.com', 'CTS');
+ $mail->setFrom('teamspeakcompte@gmail.com', 'Ceci Ton Stage');
$mail->addAddress('louisdumont4@gmail.com', 'Louis');
-
+
$mail->IsHTML(true);
- $mail->Subject = "Send email using Gmail SMTP and PHPMailer";
+ $mail->Subject = "CTS - ";
$mail->Body = 'HTML message body. Gmail SMTP email body.';
$mail->AltBody = 'Plain text message body for non-HTML email client. Gmail SMTP email body.';
@@ -75,7 +78,6 @@ if (isset($_COOKIE['username']) && isset($_COOKIE['pass'])) {
} catch (Exception $e) {
echo "Error in sending email. Mailer Error: {$mail->ErrorInfo}";
}
-
echo "";
}
catch (Exception $e) {
diff --git a/documents/users/1/candidatures/3/CV.pdf b/documents/users/1/candidatures/3/CV.pdf
deleted file mode 100644
index e41ab97..0000000
Binary files a/documents/users/1/candidatures/3/CV.pdf and /dev/null differ
diff --git a/documents/users/1/candidatures/3/LM.pdf b/documents/users/1/candidatures/3/LM.pdf
deleted file mode 100644
index 0d8eff2..0000000
Binary files a/documents/users/1/candidatures/3/LM.pdf and /dev/null differ
diff --git a/documents/users/1/candidatures/4/CV.pdf b/documents/users/1/candidatures/4/CV.pdf
deleted file mode 100644
index e41ab97..0000000
Binary files a/documents/users/1/candidatures/4/CV.pdf and /dev/null differ
diff --git a/documents/users/1/candidatures/4/LM.pdf b/documents/users/1/candidatures/4/LM.pdf
deleted file mode 100644
index 0d8eff2..0000000
Binary files a/documents/users/1/candidatures/4/LM.pdf and /dev/null differ
diff --git a/documents/users/1/candidatures/2/CV.pdf b/documents/users/2/candidatures/2/CV.pdf
similarity index 100%
rename from documents/users/1/candidatures/2/CV.pdf
rename to documents/users/2/candidatures/2/CV.pdf
diff --git a/documents/users/1/candidatures/2/LM.pdf b/documents/users/2/candidatures/2/LM.pdf
similarity index 100%
rename from documents/users/1/candidatures/2/LM.pdf
rename to documents/users/2/candidatures/2/LM.pdf
diff --git a/documents/users/8/candidatures/3/CV.pdf b/documents/users/8/candidatures/3/CV.pdf
deleted file mode 100644
index e41ab97..0000000
Binary files a/documents/users/8/candidatures/3/CV.pdf and /dev/null differ
diff --git a/documents/users/8/candidatures/3/LM.pdf b/documents/users/8/candidatures/3/LM.pdf
deleted file mode 100644
index 0d8eff2..0000000
Binary files a/documents/users/8/candidatures/3/LM.pdf and /dev/null differ
diff --git a/documents/users/candidatures/3/CV.pdf b/documents/users/candidatures/3/CV.pdf
deleted file mode 100644
index e41ab97..0000000
Binary files a/documents/users/candidatures/3/CV.pdf and /dev/null differ
diff --git a/documents/users/candidatures/3/LM.pdf b/documents/users/candidatures/3/LM.pdf
deleted file mode 100644
index 0d8eff2..0000000
Binary files a/documents/users/candidatures/3/LM.pdf and /dev/null differ
diff --git a/index.php b/index.php
index 93c9d3b..b470337 100644
--- a/index.php
+++ b/index.php
@@ -6,6 +6,7 @@ if (isset($_COOKIE['username']) && isset($_COOKIE['pass'])) {
$query = $bdd->prepare('SELECT * FROM users NATURAL JOIN roles NATURAL JOIN roles_has_permissions NATURAL JOIN permissions WHERE code_permission="SFx1" AND username=:user AND password_user=:password_user;');
$query->execute(['user' => $_COOKIE['username'], 'password_user' => $_COOKIE['pass']]);
if ($query->rowCount() == 1){echo "";}
+ else {echo "";}
}
} else {
?>