pai-sklep/app/Http/Controllers/MainPageController.php

<?php

namespace App\Http\Controllers;

use App\Models\Category;
use App\Models\Product;
use Illuminate\Http\Request;

class MainPageController extends Controller
{
    public function index(Request $request)
    {
        $query = Product::query()->latest()->limit(100);
        $search = $request->query->get("q");
        if ($search) {
            // O(n) query at best, malicious users can just insert % and _ characters into the query if they wanna, but it's fine half the class left every single field vulnurable to sqli so I don't wanna bother doing this properly with a full text search
            $query = $query->where('name', 'like', "%{$search}%")->orWhere('description', 'like', "%{$search}%");
        } 
        $category = $request->query->get("category");
        if ($category) {
            // O(n) query at best, malicious users can just insert % and _ characters into the query if they wanna, but it's fine half the class left every single field vulnurable to sqli so I don't wanna bother doing this properly with a full text search
            $query = $query->whereHas('categories', fn ($b) => $b->where("name","=",$category));
        } 
        return view("index", ["products" => $query->get(), "query" => $search]);
    }
}
Display product on the main page 2021-11-14 20:44:10 +01:00			`<?php`

			`namespace App\Http\Controllers;`

Display and search categories 2021-12-15 18:57:03 +01:00			`use App\Models\Category;`
Display product on the main page 2021-11-14 20:44:10 +01:00			`use App\Models\Product;`
			`use Illuminate\Http\Request;`

			`class MainPageController extends Controller`
			`{`
Add search 2021-12-05 19:22:00 +01:00			`public function index(Request $request)`
Garbage commit, squash me 2021-11-24 11:34:46 +01:00			`{`
Display and search categories 2021-12-15 18:57:03 +01:00			`$query = Product::query()->latest()->limit(100);`
			`$search = $request->query->get("q");`
			`if ($search) {`
Add search 2021-12-05 19:22:00 +01:00			`// O(n) query at best, malicious users can just insert % and _ characters into the query if they wanna, but it's fine half the class left every single field vulnurable to sqli so I don't wanna bother doing this properly with a full text search`
Display and search categories 2021-12-15 18:57:03 +01:00			`$query = $query->where('name', 'like', "%{$search}%")->orWhere('description', 'like', "%{$search}%");`
			`}`
			`$category = $request->query->get("category");`
			`if ($category) {`
			`// O(n) query at best, malicious users can just insert % and _ characters into the query if they wanna, but it's fine half the class left every single field vulnurable to sqli so I don't wanna bother doing this properly with a full text search`
			`$query = $query->whereHas('categories', fn ($b) => $b->where("name","=",$category));`
			`}`
			`return view("index", ["products" => $query->get(), "query" => $search]);`
Display product on the main page 2021-11-14 20:44:10 +01:00			`}`
			`}`