profileEdit.php

<html>
	<head>
		<title>theWTVlist
		</title>
	<?php 
	$server=<server_name>;
	$user=<username>;
	$pass=<password>;
	$db=<database>;
	$conn=new mysqli($server,$user,$pass,$db) or die("unable to connect");
	session_start();

	?>
		<link rel="stylesheet" type="text/css" href="includes/styleSheet.css">
	</head>
	<body class="page-common"><table  width=100%><tr><td>
	
	<?php
// define variables and set to empty values
$unameErr = $emailErr = $pwordErr= $oldpwordErr ="" ;
$errFlag=0;
if ($_SERVER["REQUEST_METHOD"] == "POST") {
	

	
	
  if (empty($_POST["oldpword"])) {
    $oldpwordErr = "*It is a required field";$errFlag=1;
  } 
else
	{

if (strcmp($_POST['oldpword'],$_SESSION['pword'])) {
		
      $oldpwordErr = "*Incorrect Password";$errFlag=1;
    }
  
  
	}
    
	
	
	
	
	
	
  if (!empty($_POST["email"])) 
  {
	  if(!filter_var(test_input($_POST["email"]), FILTER_VALIDATE_EMAIL)) // check if e-mail address is well-formed
  {
      $emailErr = "*Invalid email format";$errFlag=1;
	  $errFlag=1;
    }
else
	{	
	
		$sql = "SELECT * FROM `ulist` WHERE email='".$_POST["email"]."'";
	
$result = $conn->query($sql);

if ($result->num_rows > 0) {
		
      $emailErr = "*Email already registered";$errFlag=1;
    }
  
  
	}
    
  }
	
  if (!empty($_POST["uname"])) {
   if (strlen($_POST["uname"])<2 ||  strlen($_POST["uname"])>8) {
      $unameErr	 = "*invalid Length";$errFlag=1;
    }
    // check if name only contains letters and whitespace
    elseif (!preg_match("/^[a-zA-Z]*$/",test_input($_POST["uname"]))) {
      $unameErr = "*Only letters allowed";$errFlag=1;
    }
	else
	{	
	
		$sql = "SELECT * FROM `ulist` WHERE uname='".$_POST["uname"]."'";
	
$result = $conn->query($sql);

if ($result->num_rows > 0) {
		
      $unameErr = "*UserName already taken";$errFlag=1;
    }
  
  
	}
  }
  
 if (!empty($_POST["pword"])) {
	 if (strlen($_POST["pword"])<6) {
      $pwordErr = "*invalid Length";$errFlag=1;
    }
    // check if name only contains letters and whitespace
    elseif (!preg_match("/^[a-zA-Z0-9]*$/",test_input($_POST["pword"]))) {
      $pwordErr = "*Only letters and numbers are allowed";$errFlag=1;
    }
	
	
  }

  
  
  
  if(!$errFlag)
  {

	  $commaFlag=0;
	$sql = "UPDATE `ulist` SET ";
	 if (!empty($_POST["email"])) {
    $sql = $sql."`email` = '".$_POST["email"]."' ";
	$commaFlag=1;
  } 
   if (!empty($_POST["uname"])) {
	   if($commaFlag)
	   {
		   $sql=$sql.", ";

	   }
    $sql = $sql."`uname` = '".$_POST["uname"]."' ";
			   		$_SESSION['uname']=$_POST['uname'];

	$commaFlag=1;
  } 
  if (!empty($_POST["pword"])) {
	   if($commaFlag)
	   {
		   $sql=$sql.", ";
	   }
    $sql = $sql."`pword` = '".$_POST["pword"]."' ";
			$_SESSION['pword']=$_POST['pword'];

  }




$sql=$sql." where uid = ".$_SESSION['uid'];

	$result=$conn->query($sql);
$conn->close();	
	header("Location: /");
  }
 
}

function test_input($data) {
  $data = trim($data);
  $data = stripslashes($data);
  $data = htmlspecialchars($data);
  return $data;
}
?>

	
	
	
	
		<div class="wrapper">
			<div class= "header">
				<Table width="100%" align="center" border=0>
				
					<tr>
						<td align="left">
<a href="/"><img src="includes/logo.png" class="logoName"></img></a>						</td>
						<td align="right">
						<?php 
						if(isset($_SESSION['uid']))
						{
						?>
						<script src="/includes/uname.js"></script>
						<div class="dropdown">
						<font color=lightgrey>|  </font>
						<b><font size=3px onclick="myFunction()" class="dropbtn"><?php echo $_SESSION['uname'];	?>&nbsp&nbsp</font></b>
						  <div id="myDropdown" class="dropdown-content"><center>
							<a href ="/profileEdit.php"><p>Edit Profile</p></a>
							<?php echo "<a href='/listView.php?show=0'>" ?><p>MyList</p></a> 
							<a href="/includes/logout.php"><p>LogOut</p></a>
						 </center> </div>
						</div>
						<?php }
						else { ?>
						<div class="menu-option">
													<a class="btn-login" href="/login.php">Login</a>
							<a class="btn-signup" href="/signup.php">Sign Up</a>
						<?php } ?>
						</td>
					</tr>
				</table>
				<Table width="100%" align="center" border=0 bgcolor="#2e51a2" valign=center>
				
					<tr valign=center>
						<td align="left">
							<font color="#fff"><b>&nbsp  Welcome to Archive of Web Television!!!	
							</b	></font>
						</td>
						<td align="right" valign=center>
							<form action="search.php" mehtod="GET">
						<div class="search-select">
							<select name="search-select" id="search-select">
						<option value="Sname">Name</option>
						<option value="director">Director</option>
						<option value="producer">Producer</option>
						<option value="network">Network</option>
						</select>
						<input  type="text" name="q" placeholder= "Search Series...">
						<button type="submit"><b>Search&nbsp&nbsp</b></button>
						<a href="/advSearchOptions.php"><font size=1.5px color=lightblue >+Adv&nbsp&nbsp<font></a>
						</div>
						</form>
						</td>
					</tr>
				</table>
				<Table width="100%" align="center" border="0px" bgcolor="lightblue" cellpadding=5px>
				
					<tr>
						<td align="left">
							<b>#ProfileEditor</b>
						</td>						
					</tr>
					
				</table>
				<hr color="blue" size="1px">
				
			<br>	<br>
			<div class="wbox">
			<table align=center width=530px> 
			<tr>
			<td align=center>
			<font size=4px>Edit Your Profile</font></br></br>
			<hr size=1px color=lightgrey>
			<br>
			<form align=left  method="post" action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>">
			<font color=black size=2px>
			New Email:</font><br><font size=3px><input type=text name="email"></font>
			<font size=1px color=red > <?php echo $emailErr;?> <font>
			
			
			<br><br>
			<font color=black size=2px>
				
			New Username:</font><br><font size=3px><input type=text name="uname"></font>
			<font size=1px color=red > <?php echo $unameErr;?> <font>
			<font color=black size=2px>
			<p align=right>
			<font color=lightgrey size=1px align=right>
			*Word length should be between 2 and 8</font></p>
			New Password:</font><br><font size=3px><input type=password name="pword"></font>
			<font size=1px color=red > <?php echo $pwordErr;?> <font>
			<p align=right>
			<font color=lightgrey size=1px align=right>
			*Must be greater than 6 letters</font></p>
			<br><br>
						<hr size=1px color=lightgrey>

			<font color=black size=2px>
			<br>
			Currnet Password:</font><br><font size=3px><input type=password name="oldpword"></font>
			<font size=1px color=red > <?php echo $oldpwordErr;?> <font>
			</td></tr><tr><td align=center>
			<br>
			<button type=submit>Save Changes</button>
			</form>
			</td>
			</tr>
			</table>
			</div>
			<br>
			<br>
			<br>
			<br>
		</div>
	
</td></tr>
<tr><td>
<div class="footer">
<style>
.footer
{
	display:block;
	width:100%;
	background-color:#2e51a2;
	align-content:center;
	padding:15px 0;
	}
</style>
        <table width="100%" border=0px >
            <tr width="100%">
                
                <td colspan="3">
                    <br>
                    <b><FONT SIZE="3" color="white" face="times new roman"  ><center>ABOUT US</center></FONT></b>
                    <br>
                </td>
                </tr>
                <tr >
                <td colspan="3">
                    <i><center><font size="4" color="white" face="times new roman">this is a website to entertain the mass with finominal tv and web serieses.
                        the world is connected on the emotional level the best way to do so is entertainment.
                        <br><br><br><br>
                        </font></center>
                    </i>
                </td></tr>
          
            <tr align="center" >
                
                <td>
                   <a href="https://www.instagram.com/" target=_blank> <img src="images/Instagram_icon.png"  width="50px" height="50" ></img></a>
                </td>
        <td>
              <a href="https://m.facebook.com/Thewtvlist-1123916401124528/" target=_blank> <img src="images/facebook-black-icon-8.png"  width="50px" height="50" ></img></a>

        </td>
               
 <td>
    <a href="mailto:thewtvlist@gmail.com"> <img src="images/gmail.png"  width="50px" height="50" ></img></a>

        </td>
            </tr>

        </table>
</div>
</td></tr></table>
	</body>
</html>