Version 0.93 released

No don't use this code, it is not sql injection safe....

Arghhh... i forgot... now it is?

[Join us @ facebook]

Yeah, now it looks ok. Thanks for your contribution

[UNTESTED CODE!!!]

UNTESTED CODE!!!

With the prevois Version of my code, Passwords would have been updated to plaintext. That's not what we want. So let's try this:

Code:

<?php

/*
   * Updates a property. Data must be in the form 'property' => 'value'
   * @param array
   * @return bool
   */
  public function updateProperty($properties)
  {
    if(is_array($properties) && count($properties) > 1)
    {
      $i=1;
      $query = "UPDATE `".$this->dbTable."` SET ";

      foreach($properties AS $k => $v)
      {
        if($k == $tbFields['pass'])
        {
          switch(strtolower($this->passMethod))
          {
            case 'sha1':
              $v = sha1($v);
              break;
            case 'md5' :
              $v = md5($v);
              break;
            default:
          }
        }
        $query .= "`".$this->escape($k)."` = '".$this->escape($v)."'".(($i++ < count($properties)) ? ', ' : ' ');
      }

      $query .= "WHERE `".$this->tbFields['userID']."` = '".$this->userID."'";
      return mysql_query($query, $this->dbConn); 
    }
  else
    return false;
  }
?>

hi first of all id like to say great work to nick and all others who may of helped.
its great to see a open source project going along nice n strong as i am creating a smalled based cms which will b open sourced to.

i was wondering if are u able to post a basic example of the updateProperty() function please.

it mite just b because its heading 11.30pm here or i just cant figured it out, any help would b much grateful Ty in advanced

[Join us @ facebook]

It should get an array which has the form :

'tableField' => 'newValue'

But please check it out because none has tested this function (but in the next version it will be working anyway)

i have had a play around with the updateProperty function a bit and it seems to only work when u give it a full case of arrays, not just a single case.
ill post a little example to help with the explaining.

Code:

$updateArray = array(
  'username' => admin,
  'email' => $_POST['email'],
  'password' => $user->get_property('password'),
  'activationHash' => $user->get_property('activationHash'),
  'active' => 1
  );

$user->updateProperty($updateArray);

this example will update a form that has been posted to edit only the users email.

[Join us @ facebook]

So this won't work?

$updateArray = array(
  'email' => $_POST['email']
  );

$user->updateProperty($updateArray);
?>

it will if u mod the original code to remove the "&& count($properties) > 1" section which checks if the array is longer then 1

[Join us @ facebook]

ok I will check that code for the next release. Thanks for finding this "bug" for me

no problem at all ,

its great to have such a useful user class out there like this. i will b using this in my cms project alot.

once again thanks alot Nikolas

[Guest]

[44.136]

Yahoo crawler, Googlebot, Msnbot, adsense, joy830