Loading connection.php +7 −5 Original line number Diff line number Diff line Loading @@ -7,7 +7,7 @@ "123456", [ PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION, PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_NUM PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC ] ); } catch (Exception $e) { Loading @@ -15,21 +15,23 @@ } function getRubrica() { global $pdo; $query = "SELECT * FROM Rubrica WHERE sessionKey = :key"; $stmt = $pdo->prepare($query); $stmt->bindParam(":key", $_SESSION["key"], PDO::PARAM_STR); $stmt->bindValue(":key", isset($_SESSION["key"]) ? $_SESSION["key"] : null, PDO::PARAM_STR); $stmt->execute(); return $stmt->fetchAll(); } function inserisciUtente($nome, $cognome, $numeroTelefono){ $query = "INSERT INTO Rubrica VALUES (:numeroTelefono, :nome, :cognome, :key)"; global $pdo; $query = "INSERT INTO Rubrica (telefono, nome, cognome, sessionKey) VALUES (:telefono, :nome, :cognome, :key)"; $stmt = $pdo->prepare($query); $stmt->bindParam(":numeroTelefono", $numeroTelefono, PDO::PARAM_STR); $stmt->bindParam(":telefono", $numeroTelefono, PDO::PARAM_STR); $stmt->bindParam(":nome", $nome, PDO::PARAM_STR); $stmt->bindParam(":cognome", $cognome, PDO::PARAM_STR); $stmt->bindParam(":key", $_SESSION["key"], PDO::PARAM_STR); $stmt->bindValue(":key", isset($_SESSION["key"]) ? $_SESSION["key"] : null, PDO::PARAM_STR); $stmt->execute(); } ?> No newline at end of file index.php +7 −9 Original line number Diff line number Diff line <?php require "connection.php"; session_start(); include_once('/home-itt-alunni/alandavide.bovo/public_html/connection.php'); if (!isset($_SESSION["key"])) { $_SESSION["key"] = bin2hex(random_bytes(16)); } Loading Loading @@ -65,16 +65,14 @@ </thead> <tbody> <?php require "connection.php"; try { $contatti = getRubrica(); foreach ($contatti as $contatto) { echo "<tr> <td>" . htmlspecialchars($contatto['nome']) . "</td> <td>" . htmlspecialchars($contatto['cognome']) . "</td> <td>" . htmlspecialchars($contatto['telefono']) . "</td> </tr>"; echo "<tr>" . "<td>" . htmlspecialchars($contatto['nome']) . "</td>" . "<td>" . htmlspecialchars($contatto['cognome']) . "</td>" . "<td>" . htmlspecialchars($contatto['telefono']) . "</td>" . "</tr>"; } } catch (Exception $e) { echo 'Errore trovato: ', $e->getMessage(), "\n"; Loading Loading
connection.php +7 −5 Original line number Diff line number Diff line Loading @@ -7,7 +7,7 @@ "123456", [ PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION, PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_NUM PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC ] ); } catch (Exception $e) { Loading @@ -15,21 +15,23 @@ } function getRubrica() { global $pdo; $query = "SELECT * FROM Rubrica WHERE sessionKey = :key"; $stmt = $pdo->prepare($query); $stmt->bindParam(":key", $_SESSION["key"], PDO::PARAM_STR); $stmt->bindValue(":key", isset($_SESSION["key"]) ? $_SESSION["key"] : null, PDO::PARAM_STR); $stmt->execute(); return $stmt->fetchAll(); } function inserisciUtente($nome, $cognome, $numeroTelefono){ $query = "INSERT INTO Rubrica VALUES (:numeroTelefono, :nome, :cognome, :key)"; global $pdo; $query = "INSERT INTO Rubrica (telefono, nome, cognome, sessionKey) VALUES (:telefono, :nome, :cognome, :key)"; $stmt = $pdo->prepare($query); $stmt->bindParam(":numeroTelefono", $numeroTelefono, PDO::PARAM_STR); $stmt->bindParam(":telefono", $numeroTelefono, PDO::PARAM_STR); $stmt->bindParam(":nome", $nome, PDO::PARAM_STR); $stmt->bindParam(":cognome", $cognome, PDO::PARAM_STR); $stmt->bindParam(":key", $_SESSION["key"], PDO::PARAM_STR); $stmt->bindValue(":key", isset($_SESSION["key"]) ? $_SESSION["key"] : null, PDO::PARAM_STR); $stmt->execute(); } ?> No newline at end of file
index.php +7 −9 Original line number Diff line number Diff line <?php require "connection.php"; session_start(); include_once('/home-itt-alunni/alandavide.bovo/public_html/connection.php'); if (!isset($_SESSION["key"])) { $_SESSION["key"] = bin2hex(random_bytes(16)); } Loading Loading @@ -65,16 +65,14 @@ </thead> <tbody> <?php require "connection.php"; try { $contatti = getRubrica(); foreach ($contatti as $contatto) { echo "<tr> <td>" . htmlspecialchars($contatto['nome']) . "</td> <td>" . htmlspecialchars($contatto['cognome']) . "</td> <td>" . htmlspecialchars($contatto['telefono']) . "</td> </tr>"; echo "<tr>" . "<td>" . htmlspecialchars($contatto['nome']) . "</td>" . "<td>" . htmlspecialchars($contatto['cognome']) . "</td>" . "<td>" . htmlspecialchars($contatto['telefono']) . "</td>" . "</tr>"; } } catch (Exception $e) { echo 'Errore trovato: ', $e->getMessage(), "\n"; Loading
