148 lines
No EOL
5.6 KiB
PHP
148 lines
No EOL
5.6 KiB
PHP
<?php
|
|
session_start();
|
|
if(!isset($_SESSION['user_id'])) {
|
|
die("<p>Du musst dich zuerst Einloggen oder Regestrieren <br> <a href='login/login-page.html'>Hier Einloggen</a> <br> <a href='signup/signup-page.html'>Hier Regestrieren</a>");
|
|
}
|
|
|
|
include "db_connect.php";
|
|
|
|
if (!isset($_GET['user'])) {
|
|
die("Kein Benutzer angegeben.");
|
|
}
|
|
|
|
$username = $_GET['user'];
|
|
$userId = $_SESSION['user_id'];
|
|
|
|
try {
|
|
// Benutzerdaten abrufen
|
|
$stmt = $pdo->prepare("SELECT id, username, email, created_at FROM users WHERE username = :username");
|
|
$stmt->execute([':username' => $username]);
|
|
$selected_user = $stmt->fetch(PDO::FETCH_ASSOC);
|
|
|
|
$stmt1 = $pdo->prepare("SELECT username, email, created_at FROM users WHERE id = :id");
|
|
$stmt1->execute([':id' => $userId]);
|
|
$user = $stmt1->fetch(PDO::FETCH_ASSOC);
|
|
|
|
$stmt2 = $pdo->prepare("SELECT file_path FROM profile_pictures WHERE user_id = :user_id");
|
|
$stmt2->execute([':user_id' => $userId]);
|
|
$profile_pic2 = $stmt2->fetch(PDO::FETCH_ASSOC);
|
|
|
|
$stmt3 = $pdo->prepare("
|
|
SELECT users.username, profile_pictures.file_path
|
|
FROM users
|
|
LEFT JOIN profile_pictures ON users.id = profile_pictures.user_id
|
|
ORDER BY profile_pictures.uploaded_at DESC
|
|
");
|
|
$stmt3->execute();
|
|
$users = $stmt3->fetchAll(PDO::FETCH_ASSOC);
|
|
|
|
if (!$selected_user) {
|
|
die("Benutzer nicht gefunden!");
|
|
}
|
|
|
|
$stmt2 = $pdo->prepare("SELECT file_path FROM profile_pictures WHERE user_id = :user_id");
|
|
$stmt2->execute([':user_id' => $selected_user['id']]);
|
|
$profile_pic = $stmt2->fetch(PDO::FETCH_ASSOC);
|
|
|
|
|
|
if ($profile_pic) {
|
|
$selected_profile_image = $profile_pic['file_path'];
|
|
} else {
|
|
$selected_profile_image = 'profile-pics/default.jpeg';
|
|
}
|
|
|
|
if ($profile_pic2) {
|
|
$selected_profile_image1 = $profile_pic2['file_path'];
|
|
} else {
|
|
$selected_profile_image1 = 'profile-pics/default.jpeg';
|
|
}
|
|
|
|
} catch (PDOException $e) {
|
|
die("Fehler: " . $e->getMessage());
|
|
}
|
|
?>
|
|
|
|
<!DOCTYPE html>
|
|
<html lang="de">
|
|
<head>
|
|
<meta charset="UTF-8">
|
|
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
|
<title>Profil von <?php echo htmlspecialchars($selected_user['username']); ?></title>
|
|
<link rel="stylesheet" href="style.css?v=<?php echo time(); ?>">
|
|
</head>
|
|
<body>
|
|
<div class="container">
|
|
<div class="col-3">
|
|
<div class="navigation-body">
|
|
<h1>
|
|
<?php echo "<img class = 'profile-pictures' src='$selected_profile_image1' alt='pv' width='50'>";?>
|
|
<a href=""><?php echo htmlspecialchars($user['username']); ?></a>
|
|
</h1>
|
|
<ul>
|
|
<li><a href="index.php">Home</a></li>
|
|
<li><a href="index.php?page=settings">Profil</a></li>
|
|
<li><a href="">Nachrichten</a></li>
|
|
<li><a href="">Benachrichtiungen</a></li>
|
|
|
|
</ul>
|
|
</div>
|
|
<div class="navigation-body">
|
|
<ul>
|
|
<?php foreach ($users as $benutzer): ?>
|
|
<li>
|
|
<form action="profile.php" method="post">
|
|
<img src="<?= htmlspecialchars($benutzer['file_path']) ?: 'profile-pics/default.jpeg' ?>" alt="Profilbild">
|
|
<a href="profile.php?user=<?= urlencode($benutzer['username']) ?>"><?= htmlspecialchars($benutzer['username']) ?></a>
|
|
</form>
|
|
</li>
|
|
<?php endforeach; ?>
|
|
</ul>
|
|
</div>
|
|
|
|
</div>
|
|
<div class="profile-body col-9">
|
|
<div class="profile-header">
|
|
<h1>Profil von <?php echo htmlspecialchars($selected_user['username']); ?></h1>
|
|
<img src="<?php echo htmlspecialchars($selected_profile_image); ?>" alt="Profilbild" width="100">
|
|
<p>Email: <?php echo htmlspecialchars($selected_user['email']); ?></p>
|
|
<p>Registriert seit: <?php echo htmlspecialchars($selected_user['created_at']); ?></p>
|
|
<a href="index.php">Zurück zur Startseite</a>
|
|
</div>
|
|
|
|
<?php
|
|
$stmt45 = $pdo->prepare("
|
|
SELECT posts.*, profile_pictures.file_path AS profile_picture, users.username
|
|
FROM posts
|
|
LEFT JOIN profile_pictures ON posts.user_id = profile_pictures.user_id
|
|
LEFT JOIN users ON posts.user_id = users.id
|
|
WHERE users.username = :username
|
|
ORDER BY posts.created_at DESC
|
|
");
|
|
$stmt45->execute([':username' => $username]);
|
|
$posts = $stmt45->fetchAll(PDO::FETCH_ASSOC);
|
|
?>
|
|
<?php foreach ($posts as $post): ?>
|
|
<div class="post">
|
|
<img src="<?= htmlspecialchars($post['profile_picture']) ?: 'profile-pics/default.jpeg'; ?>" width="50px" alt="">
|
|
<p><strong><?php echo $post['username']; ?></strong></p>
|
|
<p><?php echo nl2br(htmlspecialchars($post['text_content'])); ?></p>
|
|
|
|
<?php if (!empty($post['image_path'])): ?>
|
|
<img class="post-pics" src="<?php echo htmlspecialchars($post['image_path']); ?>" alt="Bild zum Post">
|
|
<?php endif; ?>
|
|
|
|
<p><small>Erstellt am: <?php echo $post['created_at']; ?></small></p>
|
|
<?php if ($userId == $post['user_id']): ?>
|
|
<form action="upload-post/delete-post.php" method="post">
|
|
<input type="hidden" name="post_id" value="<?= htmlspecialchars($post['id']) ?>">
|
|
<button type="submit">Löschen</button>
|
|
</form>
|
|
<?php endif; ?>
|
|
|
|
</div>
|
|
<?php endforeach; ?>
|
|
|
|
</div>
|
|
</div>
|
|
</body>
|
|
</html>
|