-
Notifications
You must be signed in to change notification settings - Fork 0
/
send-message.php
22 lines (22 loc) · 873 Bytes
/
send-message.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
<?php
include('./classes/DB.php');
include('./classes/Login.php');
if (Login::isLoggedIn()) {
$userid = Login::isLoggedIn();
} else {
die('Not logged in');
}
if (isset($_POST['send'])) {
if (DB::query('SELECT id FROM users WHERE id=:receiver', array(':receiver'=>$_GET['receiver']))) {
DB::query("INSERT INTO messages VALUES ('', :body, :sender, :receiver, 0)", array(':body'=>$_POST['body'], ':sender'=>$userid, ':receiver'=>htmlspecialchars($_GET['receiver'])));
echo "Message Sent!";
} else {
die('Invalid ID!');
}
}
?>
<h1>Send a Message</h1>
<form action="send-message.php?receiver=<?php echo htmlspecialchars($_GET['receiver']); ?>" method="post">
<textarea name="body" rows="8" cols="80"></textarea>
<input type="submit" name="send" value="Send Message">
</form>