PHP - Function If Statement Question

I have an array that has comma sep values.

I am wanting to run a select statement that includes a NOT IN function.

SELECT user_firstname, user_lastname, user_id
                            FROM ssm_user
                            WHERE user_role_id = ? and where user_id NOT IN(?)

Is this possible, oir does the ? just represent a literal string.

If so do i need to convert the array to a string before running the above?

probably a very stupid question, but i pose it because it's counterintuitive for me to write it:

i find in alot of wordpress code if statements like:

if ( false === $var)

i suppose it's the same as if ( $var === false) ? why would one right it in the first way?

when you build a switch, does it have to have a default case? If so, is there a way to get it to default to the first case instead of re posting the code in the default?

Hi Guys

I don't know if this is possible but can someone point me in the right direction. I have a php function which takes two inputs and returns an output. for simplicity's sake let's say it's an addition function. What I want to do is use a mysql select statement to show all the rows from a database where field1 and field2 equal '3'. Here's the sort of thing I mean.

function addNumbers($one,$two) {
return $one + $two;
}

mysql_query("SELECT * FROM table WHERE 'addNumbers(field1,field2)' = '3'");

What I actually want to do is a lot more complex than this but I am trying to understand how to make the syntax work in simple terms first.

Can anybody help?

Many Thanks
Dan

Hi

I need to send out +- 10 000 statements to our customers.

How do I prevent from being marked as a spammer? I think the daily limit is 500.

Should I use a public smtp?

Thanks
Jay

I want the login script to echo out a statement, and then after 5 seconds (if the user hasn't clicked the link manually) I want it to redirect with the header redirect. I'm using the sleep function for the delay of the redirect. Here's the concerned portion of the login script:

// check to see if the INPUT DATA matches the DATABASE COLUMNS!

if ($nickname == $dbuser_name && sha1($password) == $dbuser_password) {

// set a session after login

$_SESSION['user_name'] = $dbuser_name;

$_SESSION['user_id'] = $dbuser_id;

echo "<center>You're logged in! 

<a href='01.php'>Click here</a> to go to the main page.</center>";

sleep(5); // seconds to wait

header ('Location: 01.php');

// password incorrect error message

} else {

echo "<center>Incorrect password!</center>";

}


But the echo statement never gets printed out, any idea why it gets swallowed by the sleep function?

Hi Guys.

I am trying to call variables inside a function:

Here is what i am trying to do, but doesnt like it?

Code: [Select]

function disable($var1,$var2)
 {
if ( $var1 == "" ) {
   $var2="disabled";
}
 }
 
 disable("$form", "$select");
Cheers

Hi  I have a question about a function someone gae to me.  When Im inserting data into the database from a form I always follow the same format. for example let say I have name, description number...

if(isset($_POST['submit_member'])){   

//trim
$name    = trim($_POST['name']);    
$description    = trim($_POST['description']);    
$number           = trim($_POST['number']);

//check for errors
$errors = array();    
if(empty($name))    {        
$errors[] = "Please enter a name";    
}
if(empty($description))    { 
$errors[] = "Please enter a description";    
}    

//mysql_real_escape_string!

$name    = mysql_real_escape_string($name);        

$description      = mysql_real_escape_string($description );        

$number           = mysql_real_escape_string($number);    

then the insert into the database here ......



now if you have a lot of fields you will be repeating yourself constantly.  On this basis my friend gave me this code...


foreach ($_POST as $key => $value) 
        { 
           $$key=trim(mysql_real_escape_string(($value)); 
        }  


The first question is... is my friend right and should it be written this way.  The second question is what would the the data come out like

eg

$_POST['name'];
$_POST['description'];

Would they come out like....

$name
$description

??????

I have a question about functions and what is the benefit of using a function over multiple if/else statements.  For example:

What would be the difference in using this function:

Code: [Select]
<?php

 function getRealIpAddr()
{
    if (!empty($_SERVER['HTTP_CLIENT_IP']))   //check ip from share internet
    {
      $ip=$_SERVER['HTTP_CLIENT_IP'];
    }
    elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR']))   //to check ip is pass from proxy
    {
      $ip=$_SERVER['HTTP_X_FORWARDED_FOR'];
    }
    else
    {
      $ip=$_SERVER['REMOTE_ADDR'];
    }
    return $ip;
}

?>

or just using this code:

Code: [Select]
<?php

    if (!empty($_SERVER['HTTP_CLIENT_IP']))   //check ip from share internet
    {
      $ip=$_SERVER['HTTP_CLIENT_IP'];
    }
    elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR']))   //to check ip is pass from proxy
    {
      $ip=$_SERVER['HTTP_X_FORWARDED_FOR'];
    }
    else
    {
      $ip=$_SERVER['REMOTE_ADDR'];
    }

?>

With the first example, I try to echo the ip address ($ip) to the page and nothing happens.  With the second, I echo $ip and the ip address is shown on the page.  Why?  Am I doing something wrong or taking a shortcut that shouldn't be taken?

This may seem like a silly question but I'm trying to figure this out and sometimes it's easier to just use multiple if/else statements to accomplish my task rather than an actual function.

Thanks for your help.

This thread is about what you can and cannot call Variables and Parameters in a Function...

I have this query which returns 1 or 2 for $gender...
Code: [Select]
// Check # of Records Returned.
if (mysqli_stmt_num_rows($stmt1)==1){
// Member was Found.

// Bind result-set to variables.
mysqli_stmt_bind_result($stmt1, $firstName, $username, $photoName, $photoLabel,
$gender, $birthYear, $location,
$occupation, $interests, $aboutMe);


And here is my Function...
Code: [Select]
function displayGender($gender){
if ($gender == 1){
$gender = 'Male';
}elseif ($gender == 2){
$gender = 'Female';
}else{
$gender = '';
}

return $gender;
}//End of displayGender


Questions:
1.) Is it a problem having $gender as both my Parameter and Argument?

2.) Is it a problem renaming $gender inside the Function like I do?

3.) Is it a problem returning $gender like I do?


Thanks,


Debbie

Hi, Im learning php, but Im a bit confused on this basic problem.

I have the following code:

<?php
include "tax.php";
$price = 95;
echo "Price before tax: $price <br>";
echo "Price after tax: ";
echo add_tax ($price);
?>


Which uses the function below

<?php
function add_tax ($amount) {
     $total = $amount * 1.09;
     return $total;
}
?>

When I execute the code I can see that it does work, but I do not understand why this part works!

echo add_tax ($price);   

There is no multiplier symbol here, so is the function performed on the ($price) variable simply because of where it is located on this line of code?   Thanks

When you use the sleep function in a script, will the script resume from that exact spot? I guess what I need to know is will it break an upload to MySql database of a csv file or will the whole file be uploaded?

Thank All

I need to create a function that lists subfolders of a given folder, that contain at least one .txt file.
I found the following function, which displays a list of file that match a pattern in a directory tree:

function find($dir, $pattern){
$dir = escapeshellcmd($dir);  
$files = glob("$dir/$pattern");  
foreach (glob("$dir/{.[^.]*,*}", GLOB_BRACE|GLOB_ONLYDIR) as $sub_dir) //look in subdirectories
{
$arr   = find($sub_dir, $pattern); //recursive call
$files = array_merge($files, $arr); // merge array with files from subdirectory  
}  
return $files;  
}  
$txtFiles=find("project/sys","*.txt");
foreach ($txtFiles as $txtFile)
{
echo '<h2>'.$txtFile.'</h2>'; //display all text files
}


My question is, how do I change the function to return only folders that contain at least one text file. But, the functions should look inside child folders of "project/sys" and list a child folder only once if that folder or any of its child folders contain at least one text file.

I'll give an example of the output I'm looking for:
Folder list
project/sys/diagram
project/sys/bin
project/sys/scripts
project/sys/styles
project/sys/meta

The above folders may not contain a text file directly, but their children folders do. However, I'm not interested in their children folder and I want to list the above level folder only once for each folder.

Thanks in advance

Hi and thanks for taking the time to read through this first and foremost. I have a bit of code that I have managed to piece together with help from other sites and what it does is connect to our local ms sql server and retrieve a few tables from our database. The info is relating to property management and it basically displays the unit address, current date and its rental status. (Occupied or Vacant)

This makes it easy for us to at a glance check the status of our rentals instead of having to log into our software and navigate through all that.. anyways, I have two issues I need help with.

First problem, in my code, is it possible to write a conditional statement that would check for a certain status in a view and then if it is there, print a simple yes or no in a table with that appropriate property.

For example, we have property 1000 name street and it is currently vacant, however the viewPendingLease shows us information regarding future bookings. I would like to be able to look through that view with the code, check property 1000 name street for any future pending leases, and if there is one, print out a "Yes" in a Future Booked column that I would create.

If any of that makes sense, I can post the print out of the tables of the viewPendingLease if it makes it easier for anyone to see the data output to understand what I am meaning.

The second issue, is it possible to change the color of the text according to a variable, say a word in a generated table with html or css? I would like to color the words vacant or occupied green and red respectively just to make it much easier to zero in on the vacant properties. Or even maybe just color every other row a background color just to help distinguish between the different properties.

Here is my code that pulls up my current tables to show Property, Street and current rented status.

Code: [Select]
<?php 

//connect to a DSN "*******" 
$conn = odbc_connect('*******','*****','************'); 

if ($conn) 
{ 
//the SQL statement that will query the database 
$query = "Select unit.PropertyUnitID, unit.Street, unit.Status, from unit";
//perform the query 
$result=odbc_exec($conn, $query); 

echo "<table border=\"1\"><tr>"; 

//print field name 
$colName = odbc_num_fields($result); 
for ($j=1; $j<= $colName; $j++) 
{ 
echo "<th>"; 
echo odbc_field_name ($result, $j ); 
echo "</th>"; 
} 

//fetch tha data from the database 
while(odbc_fetch_row($result)) 
{ 
echo "<tr>"; 
for($i=1;$i<=odbc_num_fields($result);$i++) 
{ 
echo "<td>"; 
echo odbc_result($result,$i); 
echo "</td>"; 
} 
echo "</tr>"; 
} 

echo "</td> </tr>"; 
echo "</table >"; 

//close the connection 
odbc_close ($conn); 
} 
else echo "odbc not connected"; 
?>

I currently have the viewPendingLease.Active (which shows if there is a future pending lease) taken out due to a repeating data issue I am also trying to figure out...

Hello, all: I'm a newbie and I'm trying to understand the whole php security thing a bit better, and found this function that seems easy to implement, as well as easy to understand... my question is...

Does this means I could use regular $_POST, $_GET, $_COOKIE, $_REQUEST variables without having to individually worry about escaping them every time I use them in queries... is this correct? or safe enough? see example below, along with how I'm using variable in a query...  it seems to be working fine, as it does echo out the \ escape character when I test it, or when I try to inject it...

Appreciate your input!


Code: [Select]
<?php

$_POST=sanitize($_POST);
$_GET=sanitize($_GET);
$_COOKIE=sanitize($_COOKIE);
$_REQUEST=sanitize($_REQUEST);

function sanitize($input){
if(is_array($input)){
foreach($input as $k=>$i){
$output[$k]=sanitize($i);
}
}
else{
if(get_magic_quotes_gpc()){
$input=stripslashes($input);
}
$output=mysql_real_escape_string($input);
}
return $output;
}


// mysql query then I could use be:

$money = $_GET['money'];
$result = mysql_query("SELECT * FROM countries WHERE currencies = '$money'");

 
?>