-
Notifications
You must be signed in to change notification settings - Fork 13
/
.drop_event.php
45 lines (36 loc) · 1.37 KB
/
.drop_event.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
<?php
if($_SERVER['REQUEST_METHOD'] === 'POST') {
require_once ".db_config.php";
$connection = new PDO("mysql:host=$dhost;dbname=$dname", $duser, $dpassword);
$connection->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
if(!isset($dname)) {
$dname = 'ambulanc_web';
}
if(!isset($_POST['event_id'])) {
return;
}
include ".functions.php";
$user = getUser($_POST['session_id'], $connection);
$username = $user['username'];
$eventId = $_POST['event_id'];
$statement = $connection->prepare("SELECT * FROM members WHERE username=:username");
$statement->bindParam(':username', $username);
$statement->execute();
$memberInfo = $statement->fetchAll(PDO::FETCH_ASSOC)[0];
$memberId = $memberInfo['id'];
$sql = "SELECT COUNT(*) AS count FROM events_attendees WHERE memberid = :memberId AND eventid = :eventId";
$statement=$connection->prepare($sql);
$statement->bindValue(':eventId', $eventId);
$statement->bindValue(':memberId', $memberId);
$statement->execute();
$alreadySignedUp = ($statement->fetchAll(PDO::FETCH_ASSOC)[0]['count'] > 0);
if(!$alreadySignedUp) {
return;
}
$sql = "DELETE FROM events_attendees WHERE eventid = :eventId AND memberid = :memberId";
$statement=$connection->prepare($sql);
$statement->bindValue(':eventId', $eventId);
$statement->bindValue(':memberId', $memberId);
$statement->execute();
}
?>