felhantering databasscript

dbFiles/OnlineGameInfo.php

@@ -40,7 +40,7 @@
 					WHERE questions.id IN 
 						(SELECT questionId FROM usersLockedQuestions 
 							WHERE 
-						gameId = $gameId AND playerName = '$userName') ORDER BY answer ASC";
+						gameId = $gameId AND playerId = (SELECT id from users where username ='$userName') ORDER BY answer ASC";
 		$result = $conn->query($sql);
 		$returnArray = array();
 		$i = 0;

dbFiles/OnlineGames.php

@@ -15,10 +15,10 @@
 	$callFunction = $conn->real_escape_string(isset($_POST['f'])?$_POST['f']:"");
 	$gameId = $conn->real_escape_string(isset($_POST['gameId'])?$_POST['gameId']:"");
 	$userName = $conn->real_escape_string(isset($_POST['userName'])?$_POST['userName']:"");
-	$userId = $conn->query("SELECT id FROM users where username = '$userName'");
+	$userId = $conn->query("SELECT id FROM users where username = '$userName'")->fetch_assoc()['id'];
 	
 	if ($callFunction === "list"){	
-		$sql = "SELECT game.*, users.username as playerToAct FROM `game` LEFT JOIN users on currentPlayer = users.id WHERE id IN (SELECT gameId FROM gamePlayers WHERE playerId = $userId)"
+		$sql = "SELECT game.*, users.username as playerToAct FROM game LEFT JOIN users on currentPlayer = users.id WHERE users.id IN (SELECT gameId FROM gamePlayers WHERE playerId = $userId)";
 		$result = $conn->query($sql);
 
 		if ($result->num_rows > 0) {