arman/science-ation
1
1
Fork 0
forked from science-ation/science-ation
Code Pull Requests Activity

pushing 4 files with database line fixes/changes

Browse Source
This commit is contained in:
Muad Sakah 2025-02-07 03:46:17 +00:00
parent a5739a3d90
commit 050db396cd
5 changed files with 80 additions and 79 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

112
admin/student_editor.php
View File

@ -151,26 +151,26 @@ function students_save()
} }
// INSERT new record // INSERT new record
$dob = $_POST['year'][$x] . '-' . $_POST['month'][$x] . '-' . $_POST['day'][$x]; $dob = $_POST['year'][$x] . '-' . $_POST['month'][$x] . '-' . $_POST['day'][$x];
$stmt = $pdo->prepare('INSERT INTO students (registrations_id,firstname,lastname,sex,email,address,city,province,postalcode,phone,dateofbirth,grade,schools_id,tshirt,medicalalert,foodreq,teachername,teacheremail,year) VALUES (' $stmt = $pdo->prepare('INSERT INTO students (registrations_id,firstname,lastname,sex,email,address,city,province,postalcode,phone,dateofbirth,grade,schools_id,tshirt,medicalalert,foodreq,teachername,teacheremail,year) VALUES (
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?" ?,
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?, " ?,
. "?)"); ?)');
$stmt->execute([$registrations_id,iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['firstname'][$x])), $stmt->execute([$registrations_id,iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['firstname'][$x])),
iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['lastname'][$x])),stripslashes($_POST['sex'][$x]), iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['lastname'][$x])),stripslashes($_POST['sex'][$x]),
iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['email'][$x])),iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['address'][$x])), iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['email'][$x])),iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['address'][$x])),
@ -192,37 +192,47 @@ function students_save()
// UPDATE existing record // UPDATE existing record
$dob = $_POST['year'][$x] . '-' . $_POST['month'][$x] . '-' . $_POST['day'][$x]; $dob = $_POST['year'][$x] . '-' . $_POST['month'][$x] . '-' . $_POST['day'][$x];
$stmt = $pdo->prepare('UPDATE students SET ' $stmt = $pdo->prepare('UPDATE students SET
. "firstname=?, " firstname=?,
. "lastname=?, " lastname=?,
. "sex=/, " sex=?,
. "email=?, " email=?,
. "address=?, " address=?,
. "city=?, " city=?,
. "province=?, " province=?,
. "postalcode=?, " postalcode=?,
. "phone=?, " phone=?,
. "dateofbirth=?, " dateofbirth=?,
. "grade=?, " grade=?,
. "?" schoolquery=?,
. "medicalalert=?, " medicalalert=?,
. "foodreq=?, " foodreq=?,
. "teachername=?, " teachername=?,
. "teacheremail=?, " teacheremail=?,
. "tshirt=/ " tshirt=?
. "WHERE id=?"); WHERE id=?');
$stmt->execute([iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['firstname'][$x])),
iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['lastname'][$x])), $stmt->execute([
stripslashes($_POST['sex'][$x]),iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['email'][$x])), iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['firstname'][$x])),
iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['address'][$x])), iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['lastname'][$x])),
iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['city'][$x])), stripslashes($_POST['sex'][$x]),
iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['province'][$x])), iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['email'][$x])),
stripslashes($_POST['postalcode'][$x]),stripslashes($_POST['phone'][$x]), iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['address'][$x])),
$dob,stripslashes($_POST['grade'][$x]),iconv('UTF-8', 'ISO-8859-1//TRANSLIT', $schoolquery,stripslashes($_POST['medicalalert'][$x])), iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['city'][$x])),
iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['foodreq'][$x])), iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['province'][$x])),
iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['teachername'][$x])), stripslashes($_POST['postalcode'][$x]),
iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['teacheremail'][$x])), stripslashes($_POST['phone'][$x]),
stripslashes($_POST['tshirt'][$x]),$_POST['id'][$x]]); $dob,
stripslashes($_POST['grade'][$x]),
$schoolquery,
stripslashes($_POST['medicalalert'][$x]),
stripslashes($_POST['foodreq'][$x]),
iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['teachername'][$x])),
iconv('UTF-8', 'ISO-8859-1//TRANSLIT', stripslashes($_POST['teacheremail'][$x])),
stripslashes($_POST['tshirt'][$x]),
$_POST['id'][$x]
]);
happy_('%1 %2 successfully updated', array(iconv('UTF-8', 'ISO-8859-1//TRANSLIT', $_POST['firstname'][$x]), iconv('UTF-8', 'ISO-8859-1//TRANSLIT', $_POST['lastname'][$x]))); happy_('%1 %2 successfully updated', array(iconv('UTF-8', 'ISO-8859-1//TRANSLIT', $_POST['firstname'][$x]), iconv('UTF-8', 'ISO-8859-1//TRANSLIT', $_POST['lastname'][$x])));
} }
$x++; $x++;

9
judge.inc.php
View File

@ -93,8 +93,8 @@ function judge_status_questions($u)
$rval = 'complete'; $rval = 'complete';
if (count($idList)) { if (count($idList)) {
$q = $pdo->prepare('SELECT COUNT(*) AS tally FROM question_answers WHERE questions_id IN(?) AND users_id=? AND answer IS NOT NULL'); $q = $pdo->prepare('SELECT COUNT(*) AS tally FROM question_answers WHERE questions_id IN(' . implode(',', $idList) . ') AND users_id=? AND answer IS NOT NULL');
$q->execute([implode(',', $idList),$u['id']]); $q->execute([$u['id']]);
$row = $q->fetch(PDO::FETCH_ASSOC); $row = $q->fetch(PDO::FETCH_ASSOC);
if (intval($row['tally']) != count($idList)) if (intval($row['tally']) != count($idList))
$rval = 'incomplete'; $rval = 'incomplete';
@ -148,9 +148,8 @@ function judge_status_availability(&$u)
if ($config['judges_availability_enable'] == 'no') if ($config['judges_availability_enable'] == 'no')
return 'complete'; return 'complete';
$q = $pdo->prepare("SELECT id FROM judges_availability $q = $pdo->prepare("SELECT id FROM judges_availability WHERE users_id=?");
WHERE users_id=\"?\""); $q->execute([$u['id']]);
$q->execute([$u['id']]);
if ($q->rowCount() > 0) if ($q->rowCount() > 0)
return 'complete'; return 'complete';

20
questions.inc.php
View File

@ -180,11 +180,11 @@ function questions_update_question($qs)
global $pdo; global $pdo;
$qs['ord'] = $qs['ord'] ?? ''; $qs['ord'] = $qs['ord'] ?? '';
$stmt = $pdo->prepare("UPDATE questions SET $stmt = $pdo->prepare("UPDATE questions SET
`question`=?, question=?,
`type`=?, type=?,
`db_heading`=?, db_heading=?,
`required`=?, required=?,
`ord`=? ord=?
WHERE id=?"); WHERE id=?");
$stmt->execute([$qs['question'], $qs['type'], $qs['db_heading'], $qs['required'], intval($qs['ord']), $qs['id']]); $stmt->execute([$qs['question'], $qs['type'], $qs['db_heading'], $qs['required'], intval($qs['ord']), $qs['id']]);
show_pdo_errors_if_any($pdo); show_pdo_errors_if_any($pdo);
@ -193,15 +193,7 @@ function questions_update_question($qs)
function questions_save_new_question($qs, $year) function questions_save_new_question($qs, $year)
{ {
global $pdo; global $pdo;
$stmt = $pdo->prepare('INSERT INTO questions ' $stmt = $pdo->prepare('INSERT INTO questions (question,type,section,db_heading,required,ord,year) VALUES (?,?,?,?,?,?,?)');
. '(question,type,section,db_heading,required,ord,year) VALUES (
?,
?,
?,
?,
?,
?,
?)');
$stmt->execute([$qs['question'],$qs['type'],$qs['section'],$qs['db_heading'],$qs['required'],$year]); $stmt->execute([$qs['question'],$qs['type'],$qs['section'],$qs['db_heading'],$qs['required'],$year]);
show_pdo_errors_if_any($pdo); show_pdo_errors_if_any($pdo);
} }

4
scripts/rolloverschools.php
View File

@ -44,8 +44,8 @@ function roll($currentfairyear, $newfairyear, $table, $fields)
$vals .= ",'" . $r[$f] . "'"; $vals .= ",'" . $r[$f] . "'";
} }
$stmt = $pdo->prepare("INSERT INTO ?(`year`,?) VALUES (??)"); $stmt = $pdo->prepare("INSERT INTO $table(`year`,?) VALUES (?,?)");
$stmt->execute([$table,$names,$newfairyear,$vals]); $stmt->execute([$names,$newfairyear,$vals]);
show_pdo_errors_if_any($pdo); show_pdo_errors_if_any($pdo);
} }
} }

14
tableeditor.class.php
View File

@ -465,11 +465,11 @@ class TableEditor
foreach ($this->editfields AS $f => $n) foreach ($this->editfields AS $f => $n)
$query .= ", ?"; $query .= ", ?";
$query .= " FROM ?"; $query .= " FROM ?";
$query .= " WHERE ?=?"; $query .= " WHERE {$this->primaryKey}=?";
if ($this->DEBUG) if ($this->DEBUG)
echo $query; echo $query;
$editquery = $pdo->prepare($query); $editquery = $pdo->prepare($query);
$editquery->execute([$this->primaryKey,$f,$this->table,$this->primaryKey,$_GET['edit']]); $editquery->execute([$this->primaryKey,$f,$this->table,$_GET['edit']]);
$editdata = $editquery->fetch(PDO::FETCH_ASSOC); $editdata = $editquery->fetch(PDO::FETCH_ASSOC);
return $editdata; return $editdata;
} }
@ -504,20 +504,20 @@ class TableEditor
if ($insert_mode) { if ($insert_mode) {
$query .= ')'; $query .= ')';
} else { } else {
$query .= " WHERE ?=?";
} $query .= " WHERE {$this->primaryKey}=?"; }
if ($this->DEBUG) if ($this->DEBUG)
echo $query; echo $query;
$stmt = $pdo->prepare($query); $stmt = $pdo->prepare($query);
$stmt->execute([$this->primaryKey,$keyval]); $stmt->execute($keyval);
} }
function defaultDelete($keyval) function defaultDelete($keyval)
{ {
global $pdo; global $pdo;
$stmt = $pdo->prepare("DELETE FROM ? WHERE ?=?"); $stmt = $pdo->prepare("DELETE FROM $this->table WHERE {$this->primaryKey}=?");
$stmt->execute([$this->table,$this->primaryKey,$keyval]); $stmt->execute([$keyval]);
echo happy(i18n('Successfully deleted %1', array($this->recordType))); echo happy(i18n('Successfully deleted %1', array($this->recordType)));
} }