1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
|
<?php
require_once('check_login.php');
$id = (int)$_POST["id"];
$message = "";
if(empty($_POST["name"])){
$message .= "Please enter player's name.\\n\\n";
}else{
//check player name
$sql = "select * from player where name = ? and deleted = ? and id != ?";
$parameters = array($_POST["name"], 0, $id);
$result = bind_pdo($sql, $parameters, "selectall");
if(!empty($result)){
$message .= "This player has existed. Please check the player name.\\n\\n";
}
}
if(empty($_POST["gender"])){
$message .= "Please select player's gender.\\n\\n";
}
if(!empty($message)){
echo "<script>alert('".$message."'); window.location.href='player_modifyform.php?id=".$id."';</script>";
exit;
}
$sql = "update player set name=?, gender=?, tel=?, lastupdate=?, lastupby=? ";
$parameters = array($_POST["name"], $_POST["gender"], $_POST["tel"], $nowdate, $_SESSION['cmsloginid']);
$sql .= " where id = ?";
$parameters[] = $id;
bind_pdo($sql, $parameters);
$dbh = null;
header("Location: player_index.php?msg=2");
|