PHP - Adding Data Through Form Interface, Into Mysql

Greetings,

What I'm trying to do is have users upload their event information into a database which would include a flyer.  I don't want the image file to go into the database (other than the filename) rather I'd like it to be dropped into a directory.  In the same script I'd like to dynamically generate a thumbnail.  I have the two scripts and separately they work fine, but I can't get them to work together.

I'm guessing the conflict because the thumbnail script is using $_POST and the mysql script is using $_SESSION.  If so how can I modify them to both use $_SESSION?

The thumbnail script is goes from line 1 - 146 and the mysql portion is the rest.

The results of processing this look something like this.

QUERY TEXT:
INSERT INTO td_events (eventgenre_sel, eventname, eventvenue, eventdate, eventgenre, eventprice, eventpromoter, eventflyer) VALUES ('12', 'spooky times', 'Ironwood Stage & Grill', '2010-12-17 22:36:00', 'DNB', '5000', 'me', '174366-1.jpg')


<?php

$debug = FALSE;

/**********************************************************************************************
   
   CREATES THUMBNAIL
   
**********************************************************************************************/

 //define a maxim size for the uploaded images
 define ("MAX_SIZE","1024"); 
 // define the width and height for the thumbnail
 // note that theese dimmensions are considered the maximum dimmension and are not fixed, 
 // because we have to keep the image ratio intact or it will be deformed
 define ("WIDTH","500"); 
 define ("HEIGHT","650"); 

  // this is the function that will create the thumbnail image from the uploaded image
 // the resize will be done considering the width and height defined, but without deforming the image
 function make_thumb($img_name,$filename,$new_w,$new_h)
 {
  //get image extension.
  $ext=getExtension($img_name);
  //creates the new image using the appropriate function from gd library
  if(!strcmp("jpg",$ext) || !strcmp("jpeg",$ext) || !strcmp("JPG",$ext))
  $src_img=imagecreatefromjpeg($img_name);

   if(!strcmp("png",$ext) || !strcmp("PNG",$ext))
  $src_img=imagecreatefrompng($img_name);

    //gets the dimmensions of the image
  $old_x=imageSX($src_img);
  $old_y=imageSY($src_img);

   // next we will calculate the new dimmensions for the thumbnail image
  // the next steps will be taken: 
  //  1. calculate the ratio by dividing the old dimmensions with the new ones
  // 2. if the ratio for the width is higher, the width will remain the one define in WIDTH variable
  // and the height will be calculated so the image ratio will not change
  // 3. otherwise we will use the height ratio for the image
  // as a result, only one of the dimmensions will be from the fixed ones
  $ratio1=$old_x/$new_w;
  $ratio2=$old_y/$new_h;
  if($ratio1>$ratio2) {
  $thumb_w=$new_w;
  $thumb_h=$old_y/$ratio1;
  }
  else {
  $thumb_h=$new_h;
  $thumb_w=$old_x/$ratio2;
  }

   // we create a new image with the new dimmensions
  $dst_img=ImageCreateTrueColor($thumb_w,$thumb_h);

  // resize the big image to the new created one
  imagecopyresampled($dst_img,$src_img,0,0,0,0,$thumb_w,$thumb_h,$old_x,$old_y); 

  // output the created image to the file. Now we will have the thumbnail into the file named by $filename
  if(!strcmp("png",$ext))
  imagepng($dst_img,$filename); 
  else
  imagejpeg($dst_img,$filename); 

   //destroys source and destination images. 
  imagedestroy($dst_img); 
  imagedestroy($src_img); 
 }

 // This function reads the extension of the file. 
 // It is used to determine if the file is an image by checking the extension. 
 function getExtension($str) {
         $i = strrpos($str,".");
         if (!$i) { return ""; }
         $l = strlen($str) - $i;
         $ext = substr($str,$i+1,$l);
         return $ext;
 }
 // This variable is used as a flag. The value is initialized with 0 (meaning no error found) 
 // and it will be changed to 1 if an error occurs. If the error occurs the file will not be uploaded.
 $errors=0;
 // checks if the form has been submitted
 if(isset($_POST['Submit']))
 {
 //reads the name of the file the user submitted for uploading
  $image=$_FILES['eventflyer']['name'];
  // if it is not empty
  if ($image) 
  {
  // get the original name of the file from the clients machine
  $filename = stripslashes($_FILES['eventflyer']['name']);
 
  // get the extension of the file in a lower case format
    $extension = getExtension($filename);
  $extension = strtolower($extension);
  // if it is not a known extension, we will suppose it is an error, print an error message 
  // and will not upload the file, otherwise we continue
  if (($extension != "jpg")  && ($extension != "jpeg") && ($extension != "JPG") && ($extension != "PNG") && ($extension != "png"))
  {
  echo '<h1>Unknown extension!</h1>';
  $errors=1;
  }
  else
  {
  // get the size of the image in bytes
  // $_FILES[\'image\'][\'tmp_name\'] is the temporary filename of the file in which 
// the uploaded file was stored on the server
  $size=getimagesize($_FILES['eventflyer']['tmp_name']);
  $sizekb=filesize($_FILES['eventflyer']['tmp_name']);

  //compare the size with the maxim size we defined and print error if bigger
  if ($sizekb > MAX_SIZE*500)
  {
  echo '<h1>You have exceeded the size limit!</h1>';
  $errors=1;
  }

   //we will give an unique name, for example the time in unix time format
  $image_name=$filename;
  //the new name will be containing the full path where will be stored (images folder)
    $newname="flyers/".$image_name;
  $copied = copy($_FILES['eventflyer']['tmp_name'], $newname);
  //we verify if the image has been uploaded, and print error instead
  if (!$copied) 
  {
  echo '<h1>Copy unsuccessfull!</h1>';
  $errors=1;
  }
  else
  {
  // the new thumbnail image will be placed in images/thumbs/ folder
  $thumb_name='flyers/thumb_'.$image_name;
  // call the function that will create the thumbnail. The function will get as parameters 
  // the image name, the thumbnail name and the width and height desired for the thumbnail
  $thumb=make_thumb($newname,$thumb_name,WIDTH,HEIGHT);
  }} }}

  //If no errors registred, print the success message and show the thumbnail image created
 if(isset($_POST['Submit']) && !$errors) 
 {
  echo "<h1>Thumbnail created Successfully!</h1>";
  echo '<img src="'.$thumb_name.'">';
 }


/************************************************************
   Adjust the headers...
************************************************************/
header("Expires: Thu, 17 May 2001 10:17:17 GMT");    // Date in the past
   header ("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT"); // always modified
header ("Cache-Control: no-cache, must-revalidate");  // HTTP/1.1
header ("Pragma: no-cache");                          // HTTP/1.0

/*****************************************************************************
   Check the session details.
   we will store all the post variables in session variables
   this will make it easier to work with the verification routines
*****************************************************************************/
session_start();


if (!isset($_SESSION['SESSION'])) require_once( "../include/session_init.php");

$arVal = array();
require_once("../include/session_funcs1.php");

reset ($_POST);
while (list ($key, $val) = each ($_POST)) {
if ($val == "") $val = "NULL";
$arVals[$key] = (get_magic_quotes_gpc()) ? $val : addslashes($val); 
if ($val == "NULL")
$_SESSION[$key] = NULL;
else
$_SESSION[$key] = $val;

if ($debug) echo $key . " : " . $arVals[$key] . "<br>";
}

/**********************************************************************************************
   Make sure session variables have been set and then check for required fields
   otherwise return to the registration form to fix the errors.
**********************************************************************************************/

// check to see if these variables have been set...
if ((!isset($_SESSION["eventname"])) || (!isset($_SESSION["eventvenue"])) || (!isset($_SESSION["eventdate"])) ||  (!isset($_SESSION["eventgenre"]))
 || (!isset($_SESSION["eventprice"])) || (!isset($_SESSION["eventpromoter"])) || (!isset($_SESSION["eventflyer"]))) {
 resendToForm("?flg=red");
}
// form variables must have something in them...
if ($_SESSION['eventname'] == "" || $_SESSION['eventvenue'] == "" || $_SESSION['eventdate'] == "" || $_SESSION['eventgenre'] == "" || $_SESSION['eventprice'] == "" || $_SESSION['eventpromoter'] == "" || $_SESSION['eventflyer'] == "") {
resendToForm("?flg=red");
}

/**********************************************************************************************
  Insert into the database...
**********************************************************************************************/

$conn = mysql_connect($_SESSION['MYSQL_SERVER1'],$_SESSION['MYSQL_LOGIN1'],$_SESSION['MYSQL_PASS1']) or die ('Error connecting to mysql');

mysql_select_db($_SESSION['MYSQL_DB1']) or die("Unable to select database");

$eventgenre_sel = addslashes($_REQUEST['eventgenre_sel']);
$eventname = addslashes($_REQUEST['eventname']);
$eventvenue = addslashes($_REQUEST['eventvenue']);
$eventdate = addslashes($_REQUEST['eventdate']);
$eventgenre = addslashes($_REQUEST['eventgenre']);
$eventprice = addslashes($_REQUEST['eventprice']);
$eventpromoter = addslashes($_REQUEST['eventpromoter']);
$eventflyer = addslashes($_REQUEST['eventflyer']);

$sqlquery = "INSERT INTO td_events (eventgenre_sel, eventname, eventvenue, eventdate, eventgenre, eventprice, eventpromoter, eventflyer) "
."VALUES ('$eventgenre_sel', '$eventname', '$eventvenue', '$eventdate', '$eventgenre', '$eventprice', '$eventpromoter', '$eventflyer')";

echo 'QUERY TEXT:<br />'.$sqlquery;

$result = MYSQL_QUERY($sqlquery);

$insertid = mysql_insert_id();

/*** This following function will update session variables and resend to the form so the user can fix errors ***/

function resendToForm($flags) {
reset ($_POST);
// store variables in session...
while (list ($key, $val) = each ($_POST)) {
$_SESSION[$key] = $val;
}
// go back to the form...
//echo $flags;
header("Location: /user_registration.php".$flags);
exit;
}
mysql_close($conn);


?>

So i have an event page where it will show the next 3 events, then i need logged in users to click either of two buttons to say there attending or not attending.

i have the below code showing events, and the <form> and the submit and both buttons, but if i submit 1 button on event ID: 1 it inserts data into the database but for event ID: 2, and if i click the button on event ID :2 it also puts it into database with eventid:2

so no matter which event i click it seems to submit data with the latest event ID shown on page, and not for "each" event seperatly.

i have moved the submit query everywhere around and still same results or duplicate results if its in the loop.

i assume its looping the submit and only submitting the latests event ID.

 

<?php
if ($result = $con->query("SELECT * FROM events ORDER BY id ASC LIMIT 3")) {
if ($result->num_rows > 0) {
while ($row = $result->fetch_object()) {
$event_id = $row->id;
// set up table and echo data!
echo "<table border='1' cellpadding='2' width='50%'>";
echo "<tr><td>";
echo "<p><img src='images/raid_banners/" . $row->bannerimg . "'>" . $row->name . " (iLvl: " . $row->itemlevel . ")</p>";
echo "<p>Event Starts: " . $row->datestart . " - " . $row->timestart . "</p>";
echo "<p>Event Ends: " . $row->dateend . " - " . $row->timeend . "</p>";
echo "<p>Raid Lead: " . $row->raidlead . "</p>";
echo "<form action='' name='$event_id' method='post'>";
// Process and populate SELECT form element
echo "<select name=\"charname\">";
$sql = mysqli_query($con, "SELECT * FROM characters WHERE userid = $userid");
while ($row = $sql->fetch_assoc()){ echo "<option value=\"{$row['id']}\">{$row['charname']}</option>"; }
echo "</select>";
echo "<input type='hidden' name='raidid' value ='$event_id'>";
echo "<input type='hidden' name='action' value='submit' />";
echo "<input type=\"submit\" name=\"submit\" value=\"going\">";
echo "<input type=\"submit\" name=\"submit\" value=\"notgoing\">";
echo "</form></td></tr></table><br><br>"; 
 } 
 if(isset($_POST['action'])){
$charid = $_POST['charname'];
$submit = $_POST['submit'];
// Submit the data from dropdown in the form
mysqli_query($con,"INSERT INTO eventsignup (eventid, charid, userid, status) VALUES ('$event_id', '$charid', '$userid', '$submit')");  } 
}
else { echo "No results to display!"; } }
else { echo "Error: " . $con->error; }
$con->close();
?>

any help would be awesome. im tearing my hair out here.

There are two pieces to this- The HTML Form and the resulting php. I can't seem to make the leap, from the code to having the form produce the php page so others can view it until the form is again submitted overwriting the php, thus generating new content.

The environment I am working in is limited to IIs 5.1 and php 5.2.17 without mySQL or other DB

I'm new to php, this isn't homework,or commercialization,  it's for children.  I am thinking perhaps fwrite / fread but can't get my head around it.

Code snipets below. Any help, please use portions of this code in hopes I can understand it

Thanks

Code snipet from Output.php
Code: [Select]
<?php
$t1image = $_POST["t1image"];
$t1title = $_POST["t1title"];
$t1info = $_POST["t1info"];
$t2image = $_POST["t2image"];
$t2title = $_POST["t2title"];
$t2info = $_POST["t2info"];
?>
...
<tbody>
    <tr><!--Headers-->
      <td style="vertical-align: top; text-align: center; background-color: rgb(204, 255, 255);">Animal</td>
      <td style="vertical-align: top; text-align: center; background-color: rgb(204, 255, 255);">Image thumb<br>
      </td>
      <td style="vertical-align: top; text-align: center; background-color: rgb(204, 255, 255);">Date<br>
      </td>
      <td style="vertical-align: top; text-align: center; background-color: rgb(204, 255, 255);">Information<br>
      </td>
    </tr>
    <tr>
      <td style="vertical-align: top; text-align: center;">Monkey
      </td>
      <td style="vertical-align: top; text-align: center;"><img src="<?php echo $t1image.'.gif'; ?>"><!--single image presented selected from radio buttons-->
      </td>
      <td style="vertical-align: top; text-align: center;"><?php echo date("m/d/Yh:i A"); ?><!--time stamp generated when submitted form populates all fields at once-->
      </td>
      <td style="vertical-align: top; text-align: center;"><a href="#monkey" rel="facebox"><?php echo $t1title ?></a><!--Link name provided by "Title 1", that links to hidden Div generated page with content from "Info1" field-->
  <div id="Monkey" style="display:none">
<?php echo $t1info; ?>
</div>
      </td>
    </tr>
    <tr>
      <td style="vertical-align: top; text-align: center;">Cat<br>
      </td>
      <td style="vertical-align: top; text-align: center;"><img src="<?php echo $t2image.'.gif'?>"></td>
      <td style="vertical-align: top; text-align: center;"><?php echo date("m/d/Yh:i A"); ?></td>
      <td style="vertical-align: top; text-align: center;"><a href="#Cat" rel="facebox"><?php echo $t2title ?></a>
  <div id="Cat" style="display:none">
<?php echo $t2info; ?>
</div>
      </td>
    </tr>
    <tr>

This replicates several times down the page around 15-20 times ( t1### - t20###)


Code Snipet from HTML Form
Code: [Select]
<form action="animals.php" method="post">
<div style="text-align: left;"><big
style="font-family: Garamond; font-weight: bold; color: rgb(51, 51, 255);"><big><big><span>Monkey</span></big></big></big><br>
<table style="text-align: left; width: 110px;" border="0"
cellpadding="2" cellspacing="0">
<tbody><tr>
<td style="vertical-align: top;">Image thumb<br>
<input type="radio" name="t1image" value="No opinion" checked><img src="eh.gif" alt="Eh">
<input type="radio" name="t1image" value="Ok"><img src="ok.gif" alt="ok">
<input type="radio" name="t1image" value="Like"><img src="like.gif" alt="Like">
<input type="radio" name="t1image" value="Dont"><img src="dont.gif" alt="Don't Like">
<input type="radio" name="t1image" value="Hate"><img src="hate.gif" alt="Hate">
<input type="radio" name="t1image" value="Other"><img src="other.gif" alt="Other">
<br>
Why Title:<input type="text" name="t1title" size="45" value="..."/></td>
<td style="vertical-align: top;">
Explain:<br>
<textarea name="t1info" cols=45 rows=3 value="..."></textarea>
</td></tr></table>
<br>
<!--Next-->

How do I get the Form data to save to the php page for others to view?

I am trying to set up a item entry page form.png:

Upon submission it shows unsuccessful even though I have checked the fields on mysql table and seem to be good am I missing something?

Code: [Select]
<form action="" method="post" enctype="multipart/form-data" name="Product_Entry">
<TABLE>
<TR>
<TD>Product ID</TD><TD><input name="SKU_ProductID" value="<?php if (isset($_post['SKU_ProductID'])) echo $_POST['SKU_ProductID']; ?>" type="text" size="11" maxlength="11" /></TD>
</TR>
<TR>
<TD>Merchant SKU ID</TD><TD><input name="SKU_MerchSKUID" value="<?php if (isset($_post['SKU_MerchSKUID'])) echo $_POST['SKU_MerchSKUID']; ?>" type="text" size="18" maxlength="30" /></TD>
</TR>
<TR>
<TD>Game Title</TD><TD><input name="Game_Title" value="<?php if (isset($_post['Game_Title'])) echo $_POST['Game_Title']; ?>" type="text" size="40" maxlength="40" /></TD>
</TR>
<TR>
<TD>Platform</TD><TD><input name="Platform" value="<?php if (isset($_post['Platform'])) echo $_POST['Platform']; ?>" type="text" size="20" maxlength="20" /></TD>
</TR>
<TR>
<TD>Genre</TD><TD><input name="Genre" value="<?php if (isset($_post['Genre'])) echo $_POST['Genre']; ?>" type="text" size="11" maxlength="11" /></TD>
</TR>
<TR>
<TD>Weight</TD><TD><input name="Weight" value="<?php if (isset($_post['Weight'])) echo $_POST['Weight']; ?>" type="text" size="7" maxlength="7" /></TD>
</TR>
<TR>
<TD>Supplier</TD><TD><input name="Supplier" Value="<?php if (isset($_post['Supplier'])) echo $_POST['Supplier']; ?>" type="text" size="25" maxlength="25" /></TD>
</TR>
<TR>
<TD>Suppliers Price</TD><TD><input name="Supplier_Price" value="<?php if (isset($_post['Supplier_Price'])) echo $_POST['Supplier_Price']; ?>" type="text" size="10" maxlength="12" /></TD>
</TR>
<TR>
<TD>Cashback</TD><TD><input name="Cashback" value="<?php if (isset($_post['Cashback'])) echo $_POST['Cashback']; ?>" type="text" size="6" maxlength="8" /></TD>
</TR>
<TR>
<TD>Cashback Amount</TD><TD><input name="Cashback_Amount" value="<?php if (isset($_post['Cashback_Amount'])) echo $_POST['Cashback_Amount']; ?>" type="text" size="7" maxlength="11" /></TD>
</TR>
<TR>
<TD><input type="hidden" name="submitted" value="true"/></TD><TD><input name="Submit" type="submit" value="Add_Product" /></TD>
</TR></form></TABLE>

<?php # Product Entry

$page_title = 'Product Entry';

if (isset($_POST['Submit'])) {

$errors = array();

if (empty($_POST['SKU_ProductID'])) {
$errors[] = 'Please enter Product ID.';
} else {
$sid = trim($_POST['SKU_ProductID']);
}

if (empty($_POST['SKU_MerchSKUID'])) {
$errors[] = 'Please enter Merchant SKU.';
} else {
$mid = trim($_POST['SKU_MerchSKUID']);
}

if (empty($_POST['Game_Title'])) {
$errors[] = 'Please enter Game Title.';
} else {
$gt = trim($_POST['Game_Title']);
}

if (empty($_POST['Platform'])) {
$errors[] = 'Please enter Platform.';
} else {
$pl = trim($_POST['Platform']);
}

if (empty($_POST['Genre'])) {
$errors[] = 'Please enter Genre.';
} else {
$ge = trim($_POST['Genre']);
}

if (empty($_POST['Weight'])) {
$errors[] = 'Please enter Weight.';
} else {
$we = trim($_POST['Weight']);
}

if (empty($_POST['Supplier'])) {
$errors[] = 'Please enter Supplier.';
} else {
$sup = trim($_POST['Supplier']);
}

if (empty($_POST['Supplier_Price'])) {
$errors[] = 'Please enter Supplier Price.';
} else {
$sp = trim($_POST['Supplier_Price']);
}

if (empty($_POST['Cashback'])) {
$errors[] = 'Please enter Cashback %.';
} else {
$cb = trim($_POST['Cashback']);
}

if (empty($_POST['Cashback_Amount'])) {
$errors[] = 'Please enter Cashback Amount.';
} else {
$cba = trim($_POST['Cashback_Amount']);
}

if (empty($errors)) {

require_once ('connect.php');

[b]$q = "INSERT INTO `Products` (`SKU_ProductID`, `SKU_MerchSKUID`, `Game_Title`, `Platform`, `Genre`, `Weight`, `Supplier`, `Supplier_Price`, `Cashback`, `Cashback_Amount`) VALUES ('$sid', '$mid', '$gt', '$pl', '$ge', '$we', '$sup', '$sp', '$cb', '$cba')";
$r = @mysql_query ($dbc, $q);

if ($r) { // If it ran OK.

// Print a message:
echo '<h1>Thank you!</h1>
<p>Product Inserted!</p><p><br /></p>';

} else { // If it did not run OK.

// Public message:
echo '<h1>System Error</h1>
<p class="error">You could not be registered due to a system error. We apologize for any inconvenience.</p>'; 

// Debugging message:
echo '<p>' . mysqli_error($dbc) . '<br /><br />Query: ' . $q . '</p>';

} // End of if ($r) IF.

mysqli_close($dbc); // Close the database connection.[/b]
// Include the footer and quit the script:
include ('includes/footer.html'); 
exit();

} else {

echo '<H1>Error!</H1>
<p class="error">The Following error(s) occurred:<br />';

foreach ($errors as $msg) {

echo " - $msg<br />\n";
}

echo '</p><p>Please try again.</p><p><br /></p>';

}

}

?>
If there is anything else needed let me know

I've got a form on my site, with a textbox...and the info is sent to a db.

How would I get the textbox info to be displayed the same as it was entered?

For instance if I put in an address:

11
Street
Town
City
PostCode

It gets displayed like:

11StreetTownCityPostCode

How could I have it so when I press enter it actually adds a <br> or something to the db?

Thanks.

Hi.

I'm making a private webpage for my self where i can post news, games, music titles and movies.
I'm made it so that i can post and delete them from my page.
Also i wanted to have the option to edit them.

So i made a action that shows me a list og the posts in each category.
And then i want the option to hit UPDATE, and then it should open the form with the info's from MySQL.

I've made those two options as the following:

Code: [Select]
elseif ( $action == "EditNews" ) {
 // EDIT NEWS START
if ( !$_GET['id'] ) {
?>
<div id="content">

<?php
$sql = mysql_query("SELECT * FROM news") or die(mysql_error());
while ( $row = mysql_fetch_assoc($sql) ) {
echo "<a href=\"?page=Admin&action=UpdateNews&id=" . $row['news_id'] . "\">Update</a>  | " . $row['subject'] . "<br>";
}
echo "</div>";

} else {
$type = $_GET['type'];
$id = $_GET['id'];
}
 // EDIT NEWS END

 } elseif ( $action == "UpdateNews" ) {
 // UPDATE NEWS START
if ( !$_POST['submit'] ) {
$id = $_GET['id'];
$sql = mysql_query("SELECT * FROM news WHERE news_id='$id'") or die(mysql_error());

$user_id = $_SESSION['uid'];
$subject = $_row['subject'];
$body = nl2br($_row['body']);

?>
<div id="content">
<form action="?page=Admin&action=EditNews" method="post">
<div id="">Subject</div>
<div id=""><input id="input" type="text" name="subject"></div>
<div id="">Message</div>
<div id=""><textarea id="input" name='body' cols='15' rows='4'></textarea></div>
<div id=""><input id="submit" class="input" type="submit" name="submit" value="Post News"></div>
</form>
</div>
<?php
} else {
?>
<div id="content">Not Working!</div>
<?php
}
 // UPDATE NEWS END
 } 

- I know i miss something, but i've tried to get to the point, where i only have the form as blank, and need some help from there.
I hope someone can help me with my problem.

MOD EDIT: [code] . . . [/code] tags added.

Basically what I am needing is when a visitor comes to my site and request info on a product, the form sends the product id or name.   I have the site set up like product.php?Item=26 and the item number changes based on the product. The page items are being populated with info stored in the mysql databse.   I need the email being sent to say something like Visitors Name has requested info on Item 26

Name - Visitors Name
Email - email@me.com
Phone - 123-456-7890
Company - Visitors Company

Item info requested for
Here is the products name URL to product page   Basically the "item info" is being pulled from the database.   I have asked on different forums and I cannot get a good answer that I can use to make this happen. I might not be explaining it right.   Page the form is on is (and all other new-product.php pages)

http://www.packagingequipment4sale.com/new-product.php?Item=26

Any help would be greatly appreciated

I am having difficulty inserting the following codes values into my database. I know that the variables contain a value as I am displaying them on the output screen.


Code: [Select]
$link = mysql_connect($db_host,$db_user,$db_pass) or die('Unable to establish a DB connection');

mysql_select_db($db_database,$link);
mysql_query("SET names UTF8");
$usr = $userid;
$golfer = $_REQUEST['golfer'];
$tourney = $_REQUEST['tournament'];
$backup = $_REQUEST['backup'];
date_default_timezone_set('US/Eastern');
$time = date("Y-m-d H:i:s");
$t_id=1;



mysql_query("INSERT INTO weekly_picks (t_id, tournament, user, player, backup, timestamp) VALUES ('$t_id', '$tournament', '$usr', '$golfer', '$backup', '$time') or die('Error, insert query failed')");

echo $t_id; echo "<br />";
echo $tourney; echo "<br />";
echo $usr; echo "<br />";
echo $golfer; echo "<br />";
echo $backup; echo "<br />";
echo $time; echo "<br />";
echo $userdetail['email']; echo "<br />";

$to = $userdetail['email'];
$subject = "Weekly Tournament Pick for: $tourney";
$message = "This email is to confirm your pick for $tourney has been received.
Your pick is: $golfer.
Your backup pick is: $backup
The time it was submitted was $time
Do not reply to this email, the mailbox does not exist.
Contact me with any issues at xxxxxxx@xxxxxxx.com";

$from = "noreply@chubstersgcc.com";
$headers = "From:" . $from;
mail($to,$subject,$message,$headers);
?>

<div>
<p>This is to confirm that your pick has been submitted for the following tournament: <?php echo $tourney; ?>. A confirmation of your pick as also been emailed to you.</p>
<p>Your golfer: <?php echo $golfer; ?></p>
<p>Your backup: <?php echo $backup; ?></p>
<p>Your pick was submitted at: <?php echo $time; ?></p>
</div>

This is a continuation of a previous post.
I am trying to get the names of countries that are in a database table.
It's not working! All I get is a Submit button, but no data.
This is what I understand from the code that Psycho suggested:
I am unfamiliar with the function and the use of the FOREACH constuct.
looking at the PHP manual there are two syntaxes. It appears that Psyhco has used the second form where the current element's key is assigned to $key variable for each itteration.
foreach (array_expression as $key => $value
The 2 variables he used are $id and $label
I assume that the line: $optionsHTML = ''; is the array built from the expression: $optionsHTML .= "{$label}\n";
Because I was not familiar with the PDO method, but have used mysqli, I had to rewrite the data retrival part which I believe is OK.
I guess that the line : $countryOptions = buildSelectOptions($countries); is used in conjunction with the function to build the array.
The HTML part that Psycho wrote puts the variable into the Form format for a selection list.
Why is the $optionsHTML also inclosed in the option tags?
Have I got the HTML part correct or is it the data extraction part that is incorrect?
Here is the code:
 

<?
include("AddStats_admin_connect.php");
//connect to database
doDB();
//Function to build select options based on passed array
function buildSelectOptions($options)
{
$optionsHTML = '';
foreach($options as $id => $label)
{
$optionsHTML .= "<option value='{$id}'>{$label}</option>\n";
}
return $optionsHTML;
}

//Run query to get the ID and Name from the table
//Then populate into an array
$clist_sql = "SELECT CID, Country FROM Countries";
$clist_res= mysqli_query($mysqli, $clist_sql) or die(mysqli_error($mysqli));
if (mysqli_num_rows($clist_res) < 1) {
//this Country not exist
$display_block = "<p><em>You have selected an invalid Country.<br/>
Please try again.</em></p>";
}
$countries = array();
while($Ctry_info = mysqli_fetch_array($clist_res)) {
$countries[$Ctry_info['CID'] = $Ctry_info['Country']];
}
$countryOptions = buildSelectOptions($countries);
?>

<!DOCTYPE html>
<html lang="en">
<head>

<title>Stats</title>
<link rel="stylesheet" href="stylesheets/style.css" />
<!--[if IE]>
<script src="http://html5shim.googlecode.com/svn/trunk/html5.js"></script>
<![endif]-->
</head>
<body>
<? echo $countryOptions; ?>
</br></br></br></br></br></br></br></br>
<!Later in the HTML for the page
<form action="Ctrystats.php" method="post">
<option name="country" value=<? echo $countryOptions;?>Country</option></br></br>
<input type="submit" value="Submit Choice">
</form></p>


</body>
</html>

I think I am nearly there so I would appreciate some help to finish this coding.

Note: If you make your questions easy to read, then you have better chances of a quality answer.
Use [ code ] ] tags.

Hi, I am extracting data from a mysql db to then edit and update back into the db and use below to list items first -

Code: [Select]
<?php

// Connect to server and select database.
mysql_connect('localhost', 'xxxxxxxxx', 'xxxxxxxxxxxxx') or die("Error: ".mysql_error());
mysql_select_db("xxxxxxxxx");

$sql="SELECT * FROM properties";
$result=mysql_query($sql);
?>
<table width="400" border="0" cellspacing="1" cellpadding="0">
<tr>
<td>
<table width="400" border="1" cellspacing="0" cellpadding="3">
<tr>
<td colspan="4"><strong>List data from mysql </strong> </td>
</tr>

<tr>
<td align="center"><strong>Name</strong></td>
<td align="center"><strong>Lastname</strong></td>
<td align="center"><strong>Email</strong></td>
<td align="center"><strong>Update</strong></td>
</tr>
<?php
while($rows=mysql_fetch_array($result)){
?>
<tr>
<td><? echo $rows['Property_Rating']; ?></td>



<td align="center"><a href="update.php?id=<? echo $rows['ID']; ?>">update</a></td>
</tr>
<?php
}
?>
</table>
</td>
</tr>
</table>
<?php
mysql_close();
?>

I then go next page where I show data and allow editing -
<?php

// Connect to server and select database.
mysql_connect('localhost', 'xxxxxxxxx', 'xxxxxxxxxxxxx') or die("Error: ".mysql_error());
mysql_select_db("xxxxxxxxx");

// get value of id that sent from address bar
$id=$_GET['id'];


// Retrieve data from database
$sql="SELECT * FROM properties WHERE id='$id'";
$result=mysql_query($sql);

$rows=mysql_fetch_array($result);
?>
<table width="400" border="0" cellspacing="1" cellpadding="0">
<tr>
<form name="form1" method="post" action="update_ac.php">
<td>
<table width="100%" border="0" cellspacing="1" cellpadding="0">
<tr>
<td>&nbsp;</td>
<td colspan="3"><strong>Update data in mysql</strong> </td>
</tr>
<tr>
<td align="center">&nbsp;</td>
<td align="center">&nbsp;</td>
<td align="center">&nbsp;</td>
<td align="center">&nbsp;</td>
</tr>
<tr>
<td align="center">&nbsp;</td>
<td align="center"><strong>Property_Name</strong></td>
<td align="center"><strong>roperty_Rating</strong></td>
<td align="center"><strong>Property_Address</strong></td>
</tr>
<tr>
<td>&nbsp;</td>
<td align="center"><input name="Property_Rating" type="text" id="Property_Rating" value="<? echo $rows['Property_Rating']; ?>"></td>

</tr>
<tr>
<td>&nbsp;</td>
<td><input name="id" type="hidden" id="id" value="<? echo $rows['id']; ?>"></td>
<td align="center"><input type="submit" name="Submit" value="Submit"></td>
<td>&nbsp;</td>
</tr>
</table>
</td>
</form>
</tr>
</table>

<?

// close connection
mysql_close();

?>

And then the update page -

<?php

// Connect to server and select database.
mysql_connect('localhost', 'xxxxxxxxx', 'xxxxxxxxxxxxx') or die("Error: ".mysql_error());
mysql_select_db("xxxxxxxxx");

// update data in mysql database
$sql="UPDATE properties SET Property_Name='$Property_Name' WHERE id='$id'";
$result=mysql_query($sql);

// if successfully updated.
if($result){
echo "Successful";

}

else {
echo "ERROR";
}

?>
Everything seems ok but when I edit the data and submit I get the success message but data not changed in db.

Any ideas?

Thanks.

MOD EDIT: code tags added.

Hi everyone,

First off thank you very kindly to anyone who can provide some enlightenment to this total php/mysql newb.  I am creating my first database and while I have been able to connect to the database within my php script (or so I believe), the form data does not appear to be actually getting sent. 

I have development experience in other languages but this is completely new to me so if I've missed something that appears painfully obvious like a parse error of some sort, I do apologize.  I am creating a website using Godaddy as the hosting account, and attempting to connect to the mysql database at the following URL (maybe this is where I'm going wrong):

"pnmailinglist.db.4662743.hostedresource.com"

Below is my very simple code:

<?php

//Verify successful connection to database.

$connect = mysql_connect("pnmailinglist.db.4662743.hostedresource.com", "*********", "*********");

if(!$connect)
{die("Could not connect!");
}

//Initialize variables with form data.

$firstname = $_POST['FirstName'];
$lastname = $_POST['LastName'];
$email = $_POST['Email'];
$howfound = $_POST['HowFound'];

//Post data to database, or return error.

mysql_select_db("pnmailinglist", $connect);

mysql_query("INSERT INTO mailinglist (First, Last, Email, How_Found) VALUES ($firstname,$lastname,$email,$howfound)");

mysql_close($connect);

echo "Thank you for joining our mailing list!  We will contact you soon with the dates and times of our upcoming events.";

?>



Thank you again very much for any pointers or hints as to where I'm screwing up.  I get no runtime errors, no syntax errors, and the echo message does display fine at the end -- just no data when I go to check my database! 


Best Regards,

CL

I have deleted mysql info for safety reasons.

Here are the two webpage's codes i'm using right now

menu.php
<?
session_start();
if(!session_is_registered(myusername)){
header("location:login.php");
}

?>

<html><title>ChronoServe - Saving Time</title>
<link href="style.css" rel="stylesheet" type="text/css">
<body>
<table width="100%" border="0" cellpadding="0" cellspacing="0" class="container">
  <tr>
    <td>
    <table width="335px" height="50%" border="1" align="center" cellpadding="0" cellspacing="0" class="centered">
      <tr>
        <td>
              <form method="post" action="insertvalues.php">
        <table width="100%" border="0" align="center" cellpadding="3" cellspacing="10">
      <tr>
        <td colspan="2"><div align="center" class="font2">Activation Information</div></td>
      </tr>
      <tr>
        <td colspan="2"></td>
      </tr>
      <tr>
        <td width="40%" class="font3">First Name :</td>
        <td width="60%">          <div align="center">
            <input name="firstname" type="text" class="font3" id="firstname" maxlength="25" />
            </div></td>
      </tr>
      <tr>
        <td class="font3">Last Name :</td>
        <td>          <div align="center">
            <input name="lastname" type="text" class="font3" id="lastname" maxlength="25" />
            </div></td>
      </tr>
      <tr>
        <td height="28" class="font3">Phone Number :</td>
        <td>          <div align="center">
            <input name="pnumber" type="text" class="font3" id="pnumber" maxlength="10" />
            </div></td>
      </tr>
      <tr>
        <td class="font3">Personnel Activated :</td>
        <td>          <div align="center">
            <input name="numberactivated" type="text" class="font3" id="numberactivated" maxlength="3" />
            </div></td>
      </tr>
      <tr>
        <td height="37" colspan="2"></td>
      </tr>
      <tr>
        <td colspan="2"><div align="center">
          <input name="submit" type="Submit" class="font3" value="Submit" />
        </div>
       </td>
      </tr>
    </table>
     </form></td>
      </tr>
    </table>
    </td>
  </tr>
</table>
</body>
</html>


insertvalues.php
<?php
if(isset($_POST['Submit']))
{
$firstname = $_POST['firstname'];
$lastname = $_POST['lastname'];
$pnumber = $_POST['pnumber'];
$numberactivated = $_POST['numberactivated'];

mysql_connect ("deleted", "deleted", "deleted") or die ('Error: ' . mysql_error());
mysql_select_db ("deleted");

$query = "INSERT INTO disney_database (id, firstname, lastname, pnumber, numberactivated, date) VALUES ('NULL', '".$firstname."', '".$lastname."', '".$pnumber."', '".$numberactivated."', 'NULL')";

mysql_query($query) or die('Error updating database');
header("location:menu.php");
echo "Database Updated With: ".$firstname."" - "".$lastname."" - "".$pnumber."" - "".$numberactivated."";
}
else {
echo "Database Error"
{
?>

Here is my problem. I set a one <form> on every form field I have including the submit button. Now whenever I press the submit button it redirects to insertvalues.php which it should be doing. In insertvalues i told it to query the form data and post it into my database's table. Its not doing that and tells me that it has a database error which i set it to tell me if something goes wrong. Anyone can help me? BTW I can manually query in the information using sql with phpmyadmin.

so can someone please review my code for me? thanks big help!

You can see what is happening.
Visit www.chronoserve.com

The username and password are "admin"

Hi,

Is there a way to send extracted information from one (local) MySQL db, via PHP, to an external web form - having that web form submit that info to it's connected MySQL db without human interaction?

Basically, I need to automate a process using the $_GET function to that form but not sure if there is a way to accomplish this from just connecting to the web form (itself); bypassing direct MySQL access which is the later option.

Any input appreciated - thanks!

Hello

Im quite confused at what filtering I should use on my data when pulling it from a MySQL database.  I don't sanitize my data on input because I am using prepared statements with PHP's PDO Driver which means I don't need to use mysql_real_escape_string() at all.

When I pull the data to be displayed i.e. in a HTML Table I use the below function to make it safe for HTML output.


public static function htmlSafe($data)
{ return nl2br(htmlentities($data, ENT_QUOTES)); }


However the rules change when Im using a HTML Form to edit the data, and I am unsure what I need to strip out. I.e. What would I need to do to make all data safe to insert into the following form input.


<input id = "someInput" type = "text" value = "<?php echo $someVarThatNeedsFiltering ?>" />


Also, one more question, in my html attributes (Valid ones like class, name, id, style, _target) I use a mixture of double quotes(") and single quotes ('), for quoting my values. Which one should I use or which one is more valid, doubles, or singles?