PHP - Place Input Data Inside Sent Url

I thought this would be fairly straightforward but for some reason isn't working.

I have an array built from some MySQL data: -

Code: [Select]
$all_products[1] = array(
"title"=>"widget",
"product_code"=>"wid-123",
"colour"=>"blue"); 

$all_products[2] = array(
"title"=>"thingy",
"product_code"=>"thi-345",
"colour"=>"red");
This works fine when used like: -

echo 'Product #1 is a ' . $all_products[1]['colour'] . $all_products[1]['title'] . ', code: ' . $all_products[1]['code'];

Gives: "Product #1 is a blue widget, code: wid-123"

However, if I do this: -

function showproductinfo($thisproduct)
{

echo 'Product #' . $thisproduct . ' is a ' . $all_products[$thisproduct]['colour'] . $all_products[$thisproduct]['title'] . ', code: ' . $all_products[$thisproduct]['code'];
}

showproductinfo(1);

It gives nothing

Can I use a variable passed via a function as the array key in this way? If so, how? And if not, what's the best way to do what I, trying to do?

Hi, I have a (probably quite simple) question about passing form data to a php script that contains an iframe with another php script that also needs some of this form data.

Basically, my problem is as follows:

I have the following code in a file called example1.php:

Code: [Select]
<html>
//some html stuff

<?php
if(isset($_POST['from'])) {$from1 = $_POST['from'];} 
else {$from1 = 'English';}
$langList = array('English', 'French', 'German', 'Dutch');

print('<select id="from" name="from">');
foreach ($langList as $lang) {printf('<option %s>%s</option>', 
     ($from1 == $lang ? 'selected="selected"' : ''), $lang);
     }
echo '</select>';
?>

//some more html stuff
</html>

As you can see, it retrieves a variable via POST and selects its value from a list. The variable is posted from an html file (example0.htm) containing the following:

Code: [Select]
<form method="post" action="example1.php">

This worked fine, until I put example1.php inside an iframe in example2.php as follows:
Code: [Select]
<html>
//some html here
<?php
//some php here
?>
<iframe src ='example1.php' id='something' name='something' >
</iframe>
</html>
and changed: "post" action="example2.php" in my html form.

My question is: how do I pass form data from example0.htm to example2.php to example1.php, so that example2.php gets loaded when the submit button on my form gets pressed, but so that example1.php (which gets loaded from the iframe in example2.php) can also access the form data?

Thanks!

Hello all,

What I'm trying to do is insert dynamic data supplied by the user into an array, but for some reason, the loop only builds arrays inside of arrays (or so it seems) and doesn't create an array with unique indexes and associated data.

I was hoping someone could point me in the right path? I've searched numerous forums, threads and google but cannot find an answer.

Here is the code snippet I'm working on.  What it's supposed to do is collect a user's input, which is a Quantity amount and a high number, and based on that amount,  create an array of random integers. This is my latest attempt. Now, maybe I'm just losing it, but when I place print_r($output) inside the loop, I see how it's being created but no unique indexes, just nested arrays. When I place it outside of the loop, I only receive one array with one index and value even though a high quantity was sent to the script.

Code: [Select]

$i = 1;

while ($i <= $Quantity){

$output = array(rand($RandLow, $RandHigh));

$i++;
}
print_r($output);

Here is another attempt, which again proved to be unsuccessful, at least to my tire brain.

Code: [Select]

$i = 1;

while ($i <= $Quantity){

$output = rand($RandLow, $RandHigh);
$total = array($output);

$i++;
}

 print_r($total);
I've tried the for() loop as well but I just can't seem to make heads or tails of this and I'm sure it's going to be something simple that I'm missing.

Thanks in advance for any help and insight if you know a better way to do this.

At the moment I collect data from an .XML file and it gets inserted into a database and it works great however the way in which the .xml files work has changed and I need to update my script to accommodate,   before everything was processed by 1x .xml file and i collected data, now its done via 2x .xml files.   So here is my current script;

<?php 
// INCLUDE DB CONNECTION FILE
include("includes/connect.php");
 
// CHANGE THE VALUES HERE
include("includes/config.php");

// URL FOR XML DATA
$url = "https://api.eveonline.com/corp/StarbaseList.xml.aspx?keyID=".$keyID."&vCode=".$vCode."";

// RUN XML DATA READY FOR INSERT
$xml = simplexml_load_file($url);

// Loop Through Names
$insertValues = array();
$modifiedTS = date('Y-m-d h:i:s');
foreach ($xml->result->rowset[0] as $value)
{
        //Prepare the values
        $itemID = $value['itemID'];
        $typeID = mysql_real_escape_string($value['typeID']);
        $locationID = $value['locationID'];
        $moonID = $value['moonID'];
        $state = mysql_real_escape_string($value['state']);
        $stateTimestamp = mysql_real_escape_string($value['stateTimestamp']);
        $onlineTimestamp  = $value['onlineTimestamp'];
        $standingOwnerID = $value['standingOwnerID'];

//Create and run ONE INSERT statement (with UPDATE clause)
    $insert = "INSERT INTO `ecmt_poslist` (itemID,typeID,locationID,moonID,state,stateTimestamp,onlineTimestamp,standingOwnerID,last_modified) VALUES('$itemID','$typeID','$locationID','$moonID','$state','$stateTimestamp','$onlineTimestamp','$standingOwnerID','$modifiedTS') ON DUPLICATE KEY UPDATE 
state='$state',
stateTimestamp='$stateTimestamp',
onlineTimestamp='$onlineTimestamp',
last_modified = '$modifiedTS'";
						
mysql_query($insert) or die(mysql_error());


//ERROR CHECKING OPTION ONLY!
//echo $insert;
//echo "<br><br>";

};
//UPDATE last time this script ran and insert timestamp into Database 
$timeNow = date('Y-m-d H:i:s', strtotime('-1 hour'));
$insertTime = "UPDATE `ecmt_API` SET time=1, time='$timeNow'";
mysql_query($insertTime) or die(mysql_error());

//Run query to delete records that were not just inserted/updated
$delete = "DELETE FROM `ecmt_poslist` WHERE last_modified < '$modifiedTS'";
mysql_query($delete) or die(mysql_error());

?>

and here is the wiki page about the .xml file and its data;   http://wiki.eve-id.n...tarbaseList_XML   i now need it to collect more data from a 2nd .xml file but the url will include the $itemID of the items pulled by the above script;   http://wiki.eve-id.n...rbaseDetail_XML   now i guess i need to put the code in the above foreach loop so I can say for each $itemID gather data from the second .xml file and input into a seperate table in my database named: `ecmt_poslistdetails`   but i have no idea where to start as the rowset and layout of the 2nd .xml file is different, can anyone help me.. i'm not even sure if I wrote out this post to make sense from someone looking in from outside or not. its hard to explain.   but hopefully the links provided will help.   Ultimately I hope to have 2 tables in my database ecmt_poslist and ecmt_poslistdetails both containing the data from the above 2x .xml files.

Hey Guys...I am trying to secure my php file and have been reading a lot regarding sql injection.

I still dont understand clearly how to prevent sql injection through numeric data input, since from what I understood mysql_real_escape_string() does nothing about it only prevents attacks on string input.

Here's an example:


if ($action == "checkId")
{
//retreive data from flash
$user_id=mysql_real_escape_string($_POST['Id']);


$result = mysql_query("SELECT user_id from users WHERE user_id = '$user_id'");
if (mysql_num_rows($result) > 0) 
{
echo "status1=exists";
} 
else 
{
echo "status1=id doesnt exist";
}
}


I would like to create a function like this:

foreach($_POST as $post)
{
$postvars[$key] = htmlentities($post); //XSS prevention
$postvars[$key] = mysql_real_escape_string($post); //Sql String Prevention
}

But then again...How do I check on the numeric POST's ? how do I validate them through this function?

Any suggestions and/or ideas?

Thanks a lot in advance!
Cheers.

Hi People.

I am trying to insert data from a form into my database.

Now I have the following code to connect to the DB to update a table so I know that I can connect to the DB ok

Code: [Select]
<?php 
// this code I got from the new boston, PHP tutorial 25 in selecting a mysql db
// opens connection to mysql server
$dbc = mysql_connect('localhost', 'VinnyG', 'thepassword');
if (!$dbc) {
die("Not Connected:" . mysql_error ());
}
// select database
$db_selected = mysql_select_db ("sitename",$dbc);
if(!$db_selected)
{
die("can not connect:" . mysql_error ());

}
// testing code

$query="UPDATE users SET username = 'testing testing' WHERE user_id = '2'";
$result=mysql_query($query);


?>

Now here is the code from my form.

Code: [Select]
</head>

<body>
<?php
//include "connection_file.php" 
//include "config01.php"

$username = "username";
$height_above = "height_above";
$mb_diff = "mb_diff";
$alternative = "alternative"; 

?>

<form name = 'form1' method = 'post' action='config01.php'>
<table width="700" border="1" cellspacing="5" cellpadding="5">
  <caption>
    Submit Your Airfield Details
  </caption>
  <tr>
    <td width="100">&nbsp;</td>
    <td width="200">Your Name</td>
    <td width="200"><input type='text' name='username' maxlength='30'></td>
    <td width="100">&nbsp;</td>
  </tr>
  <tr>
    <td>&nbsp;</td>
    <td>Height Above MSL</td>
    <td><input type='text' name='height_above'maxlength= '30'></td>
    <td>&nbsp;</td>
  </tr>
  <tr>
    <td>&nbsp;</td>
    <td>Mb Difference</td>
    <td><input type='text' name='mb_diff'maxlength='40'></td>
    <td>&nbsp;</td>
  </tr>
  <tr>
    <td>&nbsp;</td>
    <td>Alternative Airfield</td>
    <td><input type='text' name='alternative' maxlength='30'></td>
    <td>&nbsp;</td>
  </tr>
  <tr>
    <td>&nbsp;</td>
    <td>&nbsp;</td>
    <td>&nbsp;</td>
    <td>&nbsp;</td>
  </tr>
  <tr>
    <td><input type='submit' name='submit' value='post' /></td>
    <td>&nbsp;</td>
    <td>&nbsp;</td>
    <td>&nbsp;</td>
  </tr>
</table>
</form>
<?php
$sql01 = "INSERT INTO users SET user_id = '', username = '$username',height_above = '$height_above', mb_diff = $mb_diff, alternative = $alternative";
$result=mysql_query($sql01);
?>

</body>
</html>

here is the config01.php that the form refers to in the 'action' above.

Code: [Select]
<?php
$host = 'localhost';
$username = 'VinnyG';
$password = 'thepassword';
$db_name = 'sitename';

//connect to database
mysql_connect ("$host","$username","password")or die ("cannot connect to server");
mysql_select_db ("db_name") or die ("cannot select DB");

?>
Please could someone look at the above code and tell me where I'm going wrong.  I can connect to the DB and update using the top script but I can't submit the form for some reason.  I get a "cannot connect to server" message.

Please someone help.  It's been driving me crazy for the past two days.

Regards
VinceG
http://www.microlightforum.com

Hi, I have a connection set up to an API using a PHP script - the API sends back data in JSON format, and if I capture it and echo it, it displays in extremely unfriendly format on the screen.

I've tried to find a way to convert this data into readable format, ideally in a HTML table, but although there are articles on converting manually inputted JSON data into a HTML table using Javascript, I can't find a way to do it from a PHP variable.

This is what I have so far:

if ($_POST['getcompany']) {
$companyname = $_POST['_Name'];
	
$ch = curl_init();

$data_array2 =  array(
      'token' => $token
);
$make_call2 = json_encode($data_array2);
	//echo 'Token is '.$token;
	$token2 = substr($token, 14);
	$token3 = substr($token2, 0, -3);
	
	//echo 'Token 2 is '.$token3;
	//echo 'Company Name is '.$companyname;

//curl_setopt($ch, CURLOPT_GET, 1);
//curl_setopt($ch, CURLOPT_POSTFIELDS, $make_call2);
curl_setopt($ch, CURLOPT_HTTPHEADER, array('Content-Type: application/json','Authorization: '.$token3.'')); 
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_URL, 'https://connectionurl?countries=GB&name='.$companyname);

//Execute the request
$result = curl_exec($ch);

echo 'Companies: '.$result; //This displays the data provided by the search, but is in JSON format

 

So I need a way to get the data held in $result, into a HTML table. Any idea how I can do this?

I've been poking around online for about a day now trying to find a good way to do the following:

I have an "order" I'm reading in from a MySQL database (not completely relevant, but just fyi). And, for this order there are a number of "parts" (automotive parts) that have been ordered. For each part there is data pertaining to the quantity of parts that have been ordered and the number of parts that have been allocated (based on our inventory) and then a third column that has the number of parts still in that order that are still to be allocated at a future date.

Basically, I'm displaying this data in a form with each row having a checkbox to the far left. What I want to do is allow the user to check any number of check boxes. If a check box is checked the form should submit all of the input text boxes for that row (the user can update the quantities) that I talked about in the second paragraph for that "part" (each part is displayed in a row and has a checkbox).

Unfortunately, most of the examples I found for checkboxes in a form submit a specific value (like a number of a letter). I need the form to submit the values that are in the textboxes. So basically, I'm thinking I need the page to update a PHP object whenever the value of a textbox is changed and then when the user clicks a button it will send the php object for each checked row through GET or POST. But, how would I get it to onchange update a PHP object (the PHP object would need to be a 2-D array where the first index allows you to select the part and the second index allows you to select which quantity you will change). I'm thinking I would need to call a script from the onchange like: onchange="somePHPfunction(partNumberIndex, whichQuantityI'mChanging, currentValueOfThatQuantity)" but of course that would require me to embed some php inside the onchange call since the partNumberIndex and whichQuantity are PHP variables..

Any ideas on how to do this sort of thing?
Or any ideas on how to do this differently?
I'm trying to avoid javascript because it would place a javascript constraint on the users.
But, maybe there's no other way to do this sort of thing?

Any help would be greatly appreciated!

Guys, quick one.

Im writing a script for a form to post info into a MySql table.

Now rather than just having a single row for input I'd like to have lets say 10 rows, so I can add 10 records to the database.

What I'm pondering is 2 things:

1: can i just repeat
  Code: [Select]
<input type="text" name="opponent" size="27" />
over and over, or is it going to need its own name each time for example;
Code: [Select]
<input type="text" name="opponent2" size="27" />
<input type="text" name="opponent3" size="27" />

2: when it comes to the processing script is it more economical to have the forms input field named the same over and over (if it IS possible) and if not whats the most econimcal way to code my
Code: [Select]
$opp= $_POST['opponent'];
$query="INSERT INTO fixtures (match_date, season, opponent) VALUES ('$date', '$season', '$opp',)";


Your help and comments are appreciated as always guys

Tom

Hi..

I used this code for displaying formatted number and I notice that instead comma(,) it become point(.):

Code: [Select]
$P28_maxdoz = $row['P28_maxdoz']; 
$P28_maxdoz = number_format($P28_maxdoz, 2, '.', ',');


<table>
<tr>
<td><input type='text' name='P28_maxdoz' value="<?php echo $P28_maxdoz;?>"></td>
</tr>
</table>

the output is : 22.782.20

i need output is : 22,782.20

Thank you

I have a 'subscribe' form on a website that uses Ajax to validate the input fields, the form is then processed via php. The actual html code resides on a Wordpress page.   I had actually just got the form to work again. The website was static, and I transferred everything over to Wordpress, and the form didnt work. I was able to get it working by specifying the url: in ajax, as an absolute path to my php form. Overnight, something, I'm not sure what, stopped the form from processing. No data is posted to myql, and no email is sent or received. The status message just hangs at "Please wait while we process your information..." This message is in part of my Ajax code, so I am thinking something is wrong with my php script. I have a 'contact' page that uses nearly identical code that the 'subscribe' pages uses to validate the input fields, and it works.   I was able to recover both the ajax and php script from an earlier time when they did work, I uploaded back to my server and nothing, the form still does not process. I also made sure my database credentials were correct with my host, and even tested my connection to mysql which I was able to connect. Next, I made sure I was able to send mail with my host.   I don't know what is causing the form to hang, and I would love to get this solved; any help would be appreciated!

As a complete newbie to php and webdesigning i have a following problem.I would like to retrieve the data from database and display it in a drop down menu.Then i should allow the user to select the values from drop down list along with other details,in other words i have to embed the drop down output as the form input for the user and store the form data in another table.I am running a xampp server and i am using php 5.4 version.Please help.My code is as follows.In this case project_name is displayed as the drop down output.but how do i use the same drop down output as a input in the form.
 
 
 
<html>
<head></head>
<body>
<?php
error_reporting(E_ALL ^ E_DEPRECATED);
include 'connect.php' ;
$tbl_name="projects";


$sql="SELECT project_name FROM $tbl_name ";

$result=mysql_query($sql);


if($result === FALSE) {
    die(mysql_error());
}
?>


<form name="resources" action="hourssubmit.php"  method="post" >

<?php
echo "<select name='project_name'>";
while ($row = mysql_fetch_array($result)) {
    
    echo "<option value='" . $row['project_name'] ."'>" . $row['project_name'] ."</option>";
}
echo "</select>";
?>

</form>
</body>
</html>

Dear All Members

here is my table data..

(4 Columns/1row in mysql table)

id                 order_no               order_date                  miles
310                001                   02-15-2020                MI,108.53
                                                                                     Oh,194.57
                                                                                     PA,182.22
                                                                                     WA,238.57

How to split(miles) single column into (state, miles) two columns and output like following 5 columns /4rows in mysql using php code.

(5 Columns in mysql table)
------------------------------------------------------------------------------------

id                  order_no              order_date              state      miles

310                001                   02-15-2020               MI          108.53

310                001                   02-15-2020              Oh          194.57

310                001                   02-15-2020              PA          182.22

310                001                   02-15-2020             WA          238.57
 

------------------my php code -----------

 

<?php
//invoice.php  
include('../includes/config.php');

if(isset($_POST["add"]))
{
$order_no=$_GET['order_no'];
$order_date=$_GET['order_date'];
$miles=$_POST['miles'];

$miles = explode("\r\n", $_POST["miles"]);
$newdata = "'" . implode("','", $_POST["miles"]) . "'";
$sql ="INSERT INTO tble_states_miles(order_no,order_date, miles) VALUES(:order_no, :order_date, :newdata)";

$query = $dbh->prepare($sql);
$query-> bindParam(':order_no', $order_no, PDO::PARAM_STR);
$query-> bindParam(':order_date', $order_date, PDO::PARAM_STR);
$query-> bindParam(':miles', $newdata, PDO::PARAM_STR);

$lastInsertId = $dbh->lastInsertId();
if($lastInsertId)
{
echo "<script type='text/javascript'>alert('Added Sucessfull!');</script>";
echo "<script type='text/javascript'> document.location = 'ifta_miles_calculationlist_added.php'; </script>";
}
else 
{
$error="Something went wrong. Please try again";
}

if($query->execute()) {

$sql = "update tis_invoice set flag='1' where order_no=:order_no";
$query = $dbh->prepare($sql);
$query-> bindParam(':order_no', $order_no, PDO::PARAM_STR);

$query->execute();

}
}
?>

----------------- my form code ------------------

 

 <?php
                   $order_no=$_GET['order_no'];
        $sql = "SELECT * from tis_invoice where order_no = :order_no";
        $query = $dbh -> prepare($sql);
        $query->execute(
  array(
   ':order_no'       =>  $_GET["order_no"]
  )
 );
        $result = $query->fetchAll();
        foreach($result as $row)
?>
    
                    <form method="post">
                        <table align="center" style="width: 55%">
                        <tr><td>Invoice Number</td></tr>
                        <tr><td><input type="text" name="order_no" value="<?php echo $row["order_no"]; ?>" readonly=""></td></tr>
                        <tr><td>Invoice Date</td></tr>
                        <tr><td><input type="text" name="order_no" value="<?php echo $row["order_date"]; ?>" readonly=""></td></tr>
                        <tr><td>
                               <textarea name="miles" class="form-control" rows="10" placeholder="" required></textarea>
                           </td></tr>
                           <tr><td>
                         
                            <input type="submit" name="add" class="btn btn-primary" value="Add" />
                       </td></tr></table>
                    </form>

-- Can any one help how to correct my code..present nothing inserted on table

 

Thank You

Edited February 8, 2020 by karthicbabu

This topic has been moved to JavaScript Help.

http://www.phpfreaks.com/forums/index.php?topic=316454.0