diff --git a/public/ajax/connexion.php b/public/ajax/connexion.php
new file mode 100644
index 0000000..00fd3f0
--- /dev/null
+++ b/public/ajax/connexion.php
@@ -0,0 +1,28 @@
+prepare($requete);
+ $query->execute($params);
+ $row = $query->fetch(PDO::FETCH_ASSOC);
+ if (password_verify($_POST['mdp'],$row['password'])) {
+ echo '{"valide":true,"username":"'.$row['username'].'"}';
+ } else {
+ echo '{"valide":false}';
+ }
+ } else {
+ $response['status'] = 200;
+ $response['message'] = "Invalid Request!";
+ }
+} catch (PDOException $e) {
+ echo "Erreur : " . $e->getMessage() . "
";
+}
diff --git a/public/ajax/readRecords.php b/public/ajax/readRecords.php
index f0f485f..e251f71 100644
--- a/public/ajax/readRecords.php
+++ b/public/ajax/readRecords.php
@@ -2,10 +2,11 @@
ini_set('display_errors', 0);
include '../../config/conf.php';
$antenne_slug = $_GET['antenne_slug'];
+$nom_connecte = $_GET['nom_connecte'];
$bdd = new \PDO("mysql:host=$host;dbname=$database_name", $username, $password);
- // Design initial table header
+
$data = '
No. | @@ -14,9 +15,8 @@ $bdd = new \PDO("mysql:host=$host;dbname=$database_name", $username, $password);Vendeur | Clé publique | Quantité | -Prix en junes | -Actions | -Prix en junes | '; + $params["antenne_slug"] = $antenne_slug; $requete = "SELECT products.*, users.username @@ -27,9 +27,23 @@ $bdd = new \PDO("mysql:host=$host;dbname=$database_name", $username, $password); ON users.id = products.user_id WHERE antennes.slug = :antenne_slug"; $stmt = $bdd->prepare($requete); + $stmt2 = $bdd->prepare($requete); $stmt->execute($params); + $stmt2->execute($params); $count = $stmt->rowCount(); - + while ($row2 = $stmt2->fetch(PDO::FETCH_ASSOC)) { + if ($row2['username'] == $nom_connecte) { + $affich_actions = true; + } else { + $affich_actions = false; + } + } + if ($affich_actions) { + $data .= 'Actions | '; + $data .= ''; + } else { + $data .= ''; + } if ($count > 0) { $number = 1; @@ -44,38 +58,42 @@ $bdd = new \PDO("mysql:host=$host;dbname=$database_name", $username, $password); $data .= ''; $data .= ' | '.$row['quantite'].' | '; $data .= ''.$row['prix'].' | '; - $data .= ''; - $data .= ' |
---|