search.php

<?php 
include("includes/header.php"); //Includes $user array

if(isset($_GET['q'])) {
    $query = $_GET['q'];
} else {
    $query = "";
}

if(isset($_GET['type'])) {
    $type = $_GET['type'];
} else {
    $type = "name";
}

?>
<div class="main_column column" id="main_column">

    <?php 
        if ($query == "") {
            echo "You must enter something in the search box.";
        } else {

            // DB QUERIES FROM SEARCH INPUT
            //If query contains an underscore, assume user is searching for usernames  
            if ($type == "username") {
                $usersReturnedQuery = mysqli_query($con, "SELECT * FROM users WHERE username LIKE '$query%' AND user_closed='no' LIMIT 8");
            } else {

                $names = explode(" ", $query); //Explode => search query = risto tõldsep => result = [0] risto [1] tõldsep  = Creates an array!

                //If there are two words, assume they are first and last names, search for either one
                if (count($names) == 3) {
                    $usersReturnedQuery = mysqli_query($con, "SELECT * FROM users WHERE (first_name LIKE '$names[0]%' OR last_name LIKE '$names[2]%') AND user_closed='no'");
                }
                //If query has only one word, search all names
                else if (count($names) == 2) {
                    $usersReturnedQuery = mysqli_query($con, "SELECT * FROM users WHERE (first_name LIKE '$names[0]%' OR last_name LIKE '$names[1]%') AND user_closed='no'");
                }
                else {
                    $usersReturnedQuery = mysqli_query($con, "SELECT * FROM users WHERE (first_name LIKE '$names[0]%' OR last_name LIKE '$names[0]%') AND user_closed='no'");
                }
            }

            //Check if results were found
            if(mysqli_num_rows($usersReturnedQuery) == 0) {
                echo "We can't find anyone with a " . $type . " like: " . $query;
            } else {
                echo mysqli_num_rows($usersReturnedQuery) . " results found for: " . "'" . $query . "'" . "<br><br>";
            }

            echo "<p id='grey'>Try searching for:</p>";
            echo "<a href='search.php?q=" . $query . "&type=name'>Names</a>, <a href='search.php?q=" . $query . "&type=username'>Usernames</a><br><hr>";

            // Search results LOOP
            while ($row = mysqli_fetch_array($usersReturnedQuery)) {
                $user_obj = new User($con, $user['username']);

                $button = "";
                $mutual_friends= "";

                if ($user['username'] != $row['username']) { //Don't show the logged in user 
                    
                    //Generate button depending on friendship status
                    if ($user_obj->isFriend($row['username']))
                        $button = "<input type='submit' name='" . $row['username'] . "' class='danger' value='Remove Friend'>";
                    else if ($user_obj->didReceiveRequest($row['username'])) 
                        $button = "<input type='submit' name='" . $row['username'] . "' class='warning' value='Respond to request'>";
                    else if ($user_obj->didSendRequest($row['username']))
                        $button = "<input type='submit' class='default' value='Request Sent'>";
                    else
                        $button = "<input type='submit' name='" . $row['username'] . "' class='success' value='Add Friend'>";

                    $mutual_friends = $user_obj->getMutualFriends($row['username']) . " friends in common";

                    //Button forms
                    if (isset($_POST[$row['username']])) {

                        if ($user_obj->isFriend($row['username'])) {
                            $user_obj->removeFriend($row['username']);
                            header("Location: http://$_SERVER[HTTP_HOST]$_SERVER[REQUEST_URI]"); //REFRESH THE PAGE...
                        }
                        else if ($user_obj->didReceiveRequest($row['username'])) {
                            header("Location: requests.php");
                        }
                        else if ($user_obj->didSendRequest($row['username'])) {
                            //Maybe cancel request?
                        }
                        else { //Add friend
                            $user_obj->sendRequest($row['username']);
                            header("Location: http://$_SERVER[HTTP_HOST]$_SERVER[REQUEST_URI]"); //REFRESH THE PAGE...
                        }
                    }
                }

                echo "<div class='search_result'>
                        <div class='searchPageFriendButtons'>
                            <form action='' method='POST'>
                                " . $button . "
                                <br>
                            </form>
                        </div>

                        <div class='result_profile_pic'>
                            <a href='" . $row['username'] . "'>
                                <img src='" . $row['profile_pic'] . "' style='height: 100px;'>
                            </a>
                        </div>

                        <a href='" . $row['username'] . "'>
                            " . $row['first_name'] . " " . $row['last_name'] . "
                            <p id='grey'>" . $row['username'] . "</p>
                        </a>
                        <br>
                        " . $mutual_friends . "<br>
                    </div>
                    <hr>";

            } //END WHILE LOOP
        }
    ?>

</div>