PageRenderTime 54ms CodeModel.GetById 28ms RepoModel.GetById 0ms app.codeStats 1ms

/profile.php

https://bitbucket.org/wlynch92/cs336-dbproject
PHP | 294 lines | 241 code | 36 blank | 17 comment | 77 complexity | 08b604b18fb7b43e964574d1f1881339 MD5 | raw file
  1. <html>
  2. <head><title>My Profile</title></head>
  3. <body>
  4. <a href="/profile.php"><h1>Music Box</h1></a>
  5. A social music site for everyone!<p>
  6. <?php
  7. session_start();
  8. if($_SESSION['username']){
  9. #echo "<br>";
  10. echo "<div align = \"left\"> <a href=\"/logout.php\">Logout</a><br></div>";
  11. }
  12. if ($_SESSION['username']){
  13. echo "Logged in as: ".$_SESSION['username']."\n<p>\n";
  14. }
  15. ?>
  16. <form method="get">
  17. Search user: <input type="text" name="username">
  18. <input type="submit" value="Search">
  19. </form>
  20. <div align="right">
  21. |
  22. <a href="/music.php">Top Songs & Artists</a> |
  23. <a href="/artistfind.php">Search for Artist</a> |
  24. <a href="/random.php">Site Info and Facts</a> |
  25. <?php
  26. session_start();
  27. function messagebox($con, $user) {
  28. $message = mysql_query("SELECT u2.username sender, m.subject, m.time, m.content FROM user u1, user u2, message m WHERE u1.uid=m.ownerid AND u2.uid=m.senderid AND u1.username='$user'");
  29. echo "<p><b>Message Box</b><br>";
  30. if (mysql_num_rows($message) != 0) {
  31. while ($mes = mysql_fetch_array($message)) {
  32. echo "From: ".$mes['sender']."<br>";
  33. echo "Subject: ".$mes['subject']."<br>";
  34. echo "Time: ".$mes['time']."<br>";
  35. echo "Content: ".$mes['content']."<p>";
  36. }
  37. }
  38. else {
  39. echo "<i>No messages.</i>";
  40. }
  41. }
  42. function pending_friends($con, $user) {
  43. $pending = mysql_query("SELECT u1.username requesting, u1.uid uid FROM user u1, user u2, pending_friend p WHERE u1.uid=p.requesting AND u2.uid=p.requested AND u2.username='$user'");
  44. if (mysql_num_rows($pending) != 0) {
  45. echo "<p><b>Friend requests</b><ul>";
  46. while ($reqs = mysql_fetch_array($pending)) {
  47. echo "<li>".$reqs['requesting'];
  48. $_SESSION['requesting'] = $reqs['uid'];
  49. ?>
  50. <form method="post" action="/friendreq.php">
  51. <input type="radio" name="friendreq" value="accept">accept
  52. <input type="radio" name="friendreq" value="ignore">ignore
  53. <input type="submit" name="sub" value="confirm">
  54. </form>
  55. <?php
  56. }
  57. echo "</ul>";
  58. }
  59. }
  60. /* establish connection to database */
  61. $con = mysql_connect("cs336-64.rutgers.edu", "csuser", "cs277315");
  62. if (!$con) {
  63. die('cannot connect: '.mysql_error());
  64. }
  65. mysql_select_db("cs336", $con);
  66. $user = $_GET['username'];
  67. if (!$user){
  68. $_SESSION['ownerID'] = $user;
  69. $user=$_SESSION['username'];
  70. }
  71. if (!$user){
  72. exit();
  73. }
  74. $nouser = 0; /* flag to limit 'send message' and 'add friend' to valid users */
  75. $checkuser = mysql_query("SELECT * FROM user WHERE username='$user'");
  76. if (mysql_num_rows($checkuser) == 0) {
  77. $nouser = 1;
  78. }
  79. /* CHECK FOR SPECIAL CASES TO NOT DISPLAY 'ADD FRIEND' */
  80. /* if user is already friends with you */
  81. $friendslist = mysql_query("SELECT u2.username FROM user u1, user u2, friend f WHERE ((u1.uid=f.user1 AND u2.uid=f.user2) OR (u1.uid=f.user2 AND u2.uid=f.user1)) AND (u1.username='$user')");
  82. $friends = 0;
  83. if (mysql_num_rows($friendslist) != 0) {
  84. #echo "YOUR FRIENDS";
  85. while($friend = mysql_fetch_array($friendslist)) {
  86. if ($_SESSION['username'] == $friend['username']) {
  87. $friends = 1;
  88. }
  89. }
  90. }
  91. $curr = $_SESSION['username'];
  92. $requestedFriend = 0;
  93. /* logged in user cannot be added again by requesting user */
  94. $pending = mysql_query("SELECT u1.username as requesting, u1.uid as uid FROM user u1, user u2, pending_friend p WHERE u1.uid=p.requesting AND u2.uid=p.requested AND u2.username='$user'");
  95. if (mysql_num_rows($pending) != 0) {
  96. while ($reqs = mysql_fetch_array($pending)) {
  97. if($_SESSION['username'] == $reqs['requesting']) {
  98. $requestedFriend = 1;
  99. }
  100. }
  101. }
  102. /* viewed user cannot add the requesting user */
  103. $currpending = mysql_query("SELECT u1.username as requesting FROM user u1, user u2, pending_friend p WHERE u1.uid=p.requesting AND u2.uid=p.requested AND u2.username='$curr'");
  104. if (mysql_num_rows($currpending) != 0) {
  105. while ($req = mysql_fetch_array($currpending)) {
  106. if ($user == $req['requesting']) {
  107. $requestedFriend = 1;
  108. }
  109. }
  110. }
  111. if ($nouser == 0) {
  112. if ($user != $_SESSION['username']) {
  113. echo "<a href=\"/message.php\">Send message</a> | ";
  114. }
  115. if ($user == $_SESSION['username']) {
  116. echo "<a href=\"/editProfile.php\">Edit my profile</a> |";
  117. }
  118. if ($user != $_SESSION['username'] AND $friends == 0 AND $requestedFriend == 0) {
  119. echo "<a href=\"/addfriend.php\">Add as friend</a> |";
  120. }
  121. }
  122. echo "</div><p><center><hr width=100% noshade=noshade></center><p>";
  123. /* Queries for user information */
  124. $userinfo = mysql_query("SELECT * FROM user u WHERE u.username='$user'");
  125. $education = mysql_query("SELECT * FROM user u, attended a, school s WHERE u.uid=a.uid AND a.sid=s.sid AND u.username='$user'");
  126. $employment = mysql_query("SELECT * FROM user u, company c, employment e WHERE u.uid=e.uid AND c.cid=e.cid AND u.username='$user'");
  127. $songresult = mysql_query("SELECT * FROM user u, song s, likesSong ls WHERE ls.sid = s.sid AND ls.uid = u.uid AND u.username ='$user'
  128. GROUP BY s.sname");
  129. $artistresult = mysql_query("SELECT * FROM user u, artist a, likesArtist la WHERE la.aid = a.aid AND la.uid = u.uid AND u.username = '$user' GROUP BY name");
  130. $activityresult = mysql_query("SELECT * FROM user u, activity a, interested_in i WHERE i.uid = u.uid AND i.actid = a.aid AND u.username = '$user' Group BY aname");
  131. $friendslist = mysql_query("SELECT u2.username FROM user u1, user u2, friend f WHERE ((u1.uid=f.user1 AND u2.uid=f.user2) OR (u1.uid=f.user2 AND u2.uid=f.user1)) AND (u1.username='$user')");
  132. $mutualfriends = mysql_query("SELECT u2.username FROM user u1, user u2, friend f WHERE ((u1.uid=f.user1 AND u2.uid=f.user2) OR (u1.uid=f.user2 AND u2.uid=f.user1)) AND (u1.username='$curr') AND u2.username IN (SELECT u2.username FROM user u1, user u2, friend f WHERE ((u1.uid=f.user1 AND u2.uid=f.user2) OR (u1.uid=f.user2 AND u2.uid=f.user1)) AND (u1.username='$user'))");
  133. $relationship = mysql_query("select u2.firstname, u2.lastname, r.status, u2.username from user u1, user u2, in_relationship_with r WHERE ((u1.uid=r.user1 AND u2.uid=r.user2) OR (u1.uid=r.user2 AND u2.uid=r.user1)) AND (u1.username = '$user')");
  134. /* user info */
  135. if (mysql_num_rows($userinfo) == 0) {
  136. die('user not found');
  137. }
  138. else {
  139. $userrow = mysql_fetch_array($userinfo);
  140. echo "<b>".$userrow['firstname']." ".$userrow['lastname']."</b><br>";
  141. if ($userrow['picurl'] != NULL) {
  142. echo "<img src=".$userrow['picurl']." width=200 height=200><br>";
  143. }
  144. else {
  145. echo "<img src=http://i47.tinypic.com/30rxys8.jpg width=200 height=200><br>";
  146. }
  147. echo "Username: ".$userrow['username']."<br>";
  148. echo "Gender: ".$userrow['gender']."<br>";
  149. echo "Birthday: ".$userrow['birth']."<br>";
  150. echo "Address: ".$userrow['address']."<br>";
  151. echo "Email: ".$userrow['email']."<br>";
  152. }
  153. /* education */
  154. echo "<p><b>Education</b><br>";
  155. while ($schoolrow = mysql_fetch_array($education)) {
  156. echo "School: ".$schoolrow['sname']."<br>";
  157. echo "Address: ".$schoolrow['address']."<br>";
  158. echo "Degree: ".$schoolrow['degree']."<br>";
  159. echo "Attended from ".$schoolrow['start']." until ".$schoolrow['end']."<p>";
  160. }
  161. /* employment */
  162. if (mysql_num_rows($employment) != 0) {
  163. echo "<p><b>Employment(s)</b><br> ";
  164. while ($jobrow = mysql_fetch_array($employment)) {
  165. echo "Employer: ".$jobrow['employer_name']."<br>";
  166. echo "Address: ".$jobrow['address']."<br>";
  167. echo "Position: ".$jobrow['job_title']."<br>";
  168. echo "Salary: $".$jobrow['salary']."/hr<br>";
  169. echo "From ".$jobrow['start']." until ";
  170. if ($jobrow['end']) {
  171. echo $jobrow['end']."<p>";
  172. }
  173. else {
  174. echo "present<p>";
  175. }
  176. }
  177. }
  178. else {
  179. echo "<p><b>Employment</b>: forever unemployed :(";
  180. }
  181. /* songs */
  182. echo "<p><b>Songs I like</b><br>";
  183. if (mysql_num_rows($songresult) != 0) {
  184. echo "<ul>";
  185. while ($songs = mysql_fetch_array($songresult)) {
  186. echo "<li>".$songs['sname']."</li>";
  187. }
  188. echo "</ul>";
  189. }
  190. else {
  191. echo "<i>None, add some please!</i>";
  192. }
  193. /* artists */
  194. echo "<p><b>Artists I like</b><br>";
  195. if (mysql_num_rows($artistresult) != 0) {
  196. echo "<ul>";
  197. while ($artists = mysql_fetch_array($artistresult)) {
  198. echo "<li>".$artists['name']."</li>";
  199. }
  200. echo "</ul>";
  201. }
  202. else {
  203. echo "<i>None, add some please!</i>";
  204. }
  205. /* interests */
  206. echo "<p><b>Interests</b><br>";
  207. if (mysql_num_rows($activityresult) != 0) {
  208. echo "<ul>";
  209. while ($act = mysql_fetch_array($activityresult)) {
  210. echo "<li>".$act['aname']."</li>";
  211. }
  212. echo "</ul>";
  213. }
  214. else {
  215. echo "<i>I am a boring person, I have no interests. :(</i>";
  216. }
  217. /* friend list */
  218. echo "<p><b>Friends</b><br>";
  219. if (mysql_num_rows($friendslist) != 0) {
  220. echo "<ul>";
  221. while($friend = mysql_fetch_array($friendslist)) {
  222. echo "<li>".$friend['username']."</li>";
  223. }
  224. echo "</ul>";
  225. }
  226. else {
  227. echo "<i>I have no friends, please add me!</i>";
  228. }
  229. /* mutual friends list */
  230. if ($user != $_SESSION['username']) {
  231. echo "<p><b>Mutual Friends</b><br>";
  232. if (mysql_num_rows($mutualfriends) != 0) {
  233. echo "<ul>";
  234. while($mfriend = mysql_fetch_array($mutualfriends)) {
  235. echo "<li>".$mfriend['username']."</li>";
  236. }
  237. echo "</ul>";
  238. }
  239. else {
  240. echo "<i>No mutual friends.</i>";
  241. }
  242. }
  243. /* relationship status */
  244. if (mysql_num_rows($relationship)!= 0) {
  245. echo "<p><b>Relationship Status</b>: ";
  246. while ($rel = mysql_fetch_array($relationship)) {
  247. echo $rel['status']." with ".$rel['firstname']." ".$rel['lastname']." (".$rel['username'].")";
  248. }
  249. }
  250. $_SESSION['receiver'] = $user;
  251. if ($user == $_SESSION['username']) {
  252. messagebox($con, $user);
  253. pending_friends($con, $user);
  254. }
  255. mysql_close($con);
  256. ?>
  257. </body>
  258. </html>