PHP - Combine Two Mysql Updates Into One?

i dont know why it doesnt update the db..someone help??

$connection=mysql_connect("$server", "$username", "$password")
   or die("Could not establish connection");
   mysql_select_db($database_name, $connection)
   or die ("Could not select database");

   $strEditProfile = "UPDATE tblemployee SET EmployeeName='".$_POST["edit_thename"]."',
                        Address1 = '".$_POST[edit_address1]."',
                        Address2 = '".$_POST[edit_address2]."',
                        DesignationID = '".$_POST[edit_des]."',
                        Postcode = '".$_POST[edit_postcode]."',
                        State = '".$_POST[edit_state]."',
                        Country = '".$_POST[edit_country]."',
                        Tel1 = '".$_POST[edit_contact]."'            
                        WHERE EEmail='".$_POST["edit_email"]."'";
   
   $resEditProfile = mysql_query($strEditProfile);
   if($resEditProfile)
      echo "<img src=\"images/valid.jpg\" /> Profile updated!";
   else
      echo "><img src=\"images/warning.jpg\">Error!";
   

I have a script that has a foreach loop. The script ususally runs for VERY VERY long time ( i have set_time_limit(0)

Now what I need it to do is to echo some string at the end of each loop. However it doesn't. The script displays everything after its finished.

That's not acceptable for me.

I'm running xampp for windows.

I got to thinking late last night (which generally leads to trouble), so please be gentle if some educating is in order, as I suppose I will touch a few related issues.

As I develop my database, I will include two seperate columns.  One for the time/date that an order was placed.
A second for the time/date that an order is updated (unless there's a better way, please inform me).

I pressume that if a record is updated several times, it will continually overwrite the time/date to the point that I will only see the latest update.  Now I was wondering if I could create a third column to keep count of the number of times a record had been updated, so if it were altered 16 times, I would know when the last update occurred, and have the count number also.

Will something like this coding work?

SELECT updates FROM myTable WHERE id="$id"
$updates =n
if n<1, n=1
}else{ n++

  So basically I am still starting off when it comes to learning PHP/MySQLi... I am looking to make a script that can do the following: If I update say my homepage by just my normal cPanel editor plus another page named "News" but through an Admin section on my site (so basically inserting a new row into the database instead of manually doing it through my cPanel) - I would like it to display in a section on my homepage that days date along with the list of pages that were updated underneath it within that date, but with names I give the pages so instead of just saying index.php updated, I want it do say "Home Page Updated." I did have an attempt at this but just couldn't get it right. I would like to set a limit on how many different dates can be shown also.   Example:   July 12, 2014 Home Page Updated. News Headlines Updated. Staff Members Updated.   July 11, 2014 Home Page Updated.   July 10, 2014 Home Page Updated. Contact Us Updated.   and so on...   Thank you to anyone who replies with some input, I have been going crazy trying to get this right and I just can't get it but badly want it..

Ok, i've driven myself mad trying to figure this out. While I'm new at php I really think this should work. Could someone look at this and point me in the right direction?   

Ok background info: 

I have three tables  that I'm selecting from. I want to find the records in TABLE A that match these three criteria and "Join" per say.  the SELECT does exactly what I want and works.  My issue is when I try to LOOP through and pull certain information make adjustments in other tables Table C.. it only adjust as if it's gone through ONLY one loop. It will only do last record.  I want it to loop through the records it's found and Update the field in Table C to the balance of TABLE C + TABLE B price. Then update TABLE A with a value of 1 and LOOP and do it again until all records found in the original select are done.

CODE:

Code: [Select]
require_once ('./includes/config.inc.php');



$query = "SELECT
table_a.id,
table_a.table_b_id,
table_a.user_id,
table_a.unit_returned,
table_b.id,
table_b.title,
table_b.price,
table_b.closed,
table_c.id,
table_c.nick,
table_c.balance

FROM
table_a, table_b, table_c
     
WHERE
table_a.unit_returned= 0
AND table_b.closed = 1
AND table_b.id = table_a.table_b_id
AND table_c.id = table_a.user_id ";

 

$result = mysql_query($query);
$num = mysql_num_rows($result);
  echo "<table border='1'>";
   
 
   
   while ($row = mysql_fetch_array($result, MYSQL_NUM))
   
   {
      echo "<tr><td>$row[0]</td><td>$row[1]</td><td>$row[2]</td><td>$row[3]</td><td>$row[4]</td><td>$row[5]</td><td>$row[6]</td><td>$row[7]</td><td>$row[8]</td><td>$row[9]</td><td>$row[10]</td></tr>";

$newbalance = $row[6];
                                $newbalance2 =$row[10];
                                $finalbalance = $newbalance+$newbalance2;
$userid = $row[2];
$signid = $row[0];

echo "$newbalance". " $newbalance2" . " $finalbalance"."<br>". "$userid ". "<br>"."$signid"."<br>";

$query = "table_c SET balance=".$finalbalance." WHERE id=" .$userid ;
$result = mysql_query($query);
                               

}

$query = "UPDATE table_a SET unit_returned=1"; //   THIS I WANT TO DO TO ALL RECORDS AS I LOOP AS WELL or at the end seeing as above should find all the records anyways. wouldn't matter to me.
$result = mysql_query($query);

ANY HELP WOULD BE GREATLY APPRECIATED


THANKS!!!! so MUCH!

Is it possible - and reasonable - to have one Form which allows Users to create a new record (i.e. do an INSERT) and which also allows Users to modify an existing record (i.e. do an UPDATE)?   

When a User registers at my website, not only do they create a record in the "member" table, but one of the required fields is "First Name". 

What that means is that when I allow Users to edit details in their Profile - most of which were not included in registration to streamline the process - I don't have to worry about doing an INSERT, because I already created a "member" record and on the "Edit Details" page the first field is "First Name" so that is a hook so to speak where they can enter more info about themselves like...
Code: [Select]
- Location
- Date of Birth
- Interests
- Bio
and so on...


So here is my problem which I just discovered...

Also in my User Profile, I allow Users to answer several open-ended questions like...
Code: [Select]
1.) Why did you decide to start your own business?

2.) What advice would you share with others on what NOT to do?

The problem is that these questions exist in the "bio_question" table and the answers that I am trying to get from Users will be stored in the "bio_answer" table but no record currently exists?!

So do I need both an "INSERT Answers Form" *and* an "UPDATE Answers Form", or can I combine things into one form?!

Hope that all makes sense?!


Debbie

Hi guys,

I'm developing a website which allows people to connect and follow each other's activity (like Twitter, for example).

To simplify everything, let's say I only have 2 tables:

1. Followers

id | follower_id | id_to_follow
------------------------------------

2. Activity

id | member_id | message | time
-----------------------------------------

Let's say John is following Jane and Bob. I want to create a "news" page and display the last 20 messages from Bob and Jane, chronologically.  For small numbers, I'd do something like this:

Select everything from the Activity table, check for every entry if the member is a friend of John's (in the Followers table) and, if so, display the message, ORDER BY `id` DESC.

But, this is very inefficient, I guess, for larger numbers (I can't even think about how many queries would take to do this on a site like Twitter...).

Any ideas of how to do the same thing more efficiently?

Thank you.

Hi there I'm a little bit of a newbie when it comes to PHP, and I have tried to find my answer on google and on other websites related to php development.    My question is what do I need to be researching / learning to automatically update a page with content.    For example, if I have a database field called breaking news and this text string is flashed at the bottom of the screen on a scrolling bar.   When the field changes value in MYSQL, I would like the page to automatically update the page without a need for a page refresh.   All I need is some advice on what I need to search for in order for me to learn the coding myself.   I'm thinking AJAX, but not too sure.    Thank you for reading.  

I have a form which shows products ordered from a catalog, it used to work fine when I had individual change buttons for each item, now I have to have multiple check boxes for removing items and the ability to change the quantities of multiple items with a single button. I know you have to use foreach and arrays for this but I am confusing myself trying to make the changes for it to update the correct items.

Attached is a pic of what the form looks like and is how it is supposed to function

here is the form part
Code: [Select]
<?php 
for ($basket_counter=0;$basket_counter<$_SESSION['ses_basket_items'];$basket_counter++) {
   $price=sprintf("%01.2f",$ses_basket_price[$basket_counter]);
    $quantity=$ses_basket_amount[$basket_counter];
$code=$ses_basket_stockcode[$basket_counter];
$itemID=$ses_basket_id[$basket_counter];
    $name=$ses_basket_name[$basket_counter];
$image=$ses_basket_image[$basket_counter];
if ($country='AU') { $price=sprintf("%01.2f",($price*1.1));
$unit=sprintf("%01.2f",($price/$quantity));
 }
else
{ $unit=sprintf("%01.2f",($price/$quantity)); }
?><form method='post' action='' target="_self">
<tr>
  <td align='center' class='rescon' style="border-bottom:solid #330000 1px;"><input type="checkbox" name="remove[]" value="<?php echo $itemID; ?>" /></td>
  <td align='left' class='rescon' style="border-bottom:solid #330000 1px;"><img src="product_images/<?php echo $image; ?>" width="60" alt="<?php echo $name; ?>" title="<?php echo $name; ?>" /></td>
  <td align='left' class='rescon' style="border-bottom:solid #330000 1px;"><font size="+1"><?php echo $name; ?></font><br/><?php echo $code; ?></td>
            <td align='left' class='rescon' style="border-bottom:solid #330000 1px;">&nbsp;</td>
            <td align='center' class='rescon' style="border-bottom:solid #330000 1px;"><input name="price" type="hidden" value="<?php echo $unit; ?>"><input type="hidden" name="pageLink" value="<?php echo $pageLink; ?>" /><input name="basket[]" type="hidden" value="<?php echo $itemID; ?>"><input name="quantity[]" style="vertical-align:middle;" type="text" value="<?php echo $quantity; ?>" size="2" maxlength="5">&nbsp;</td>
            <td align='center' class='rescon' style="border-bottom:solid #330000 1px;">$<?php echo $unit; ?></td>
            <td class='rescon' align='right' bgcolor="#FFFF00" style="border-bottom:solid #330000 1px;">$<?php echo $price; ?>&nbsp;</td>
            </tr>
<?php }  
if ($country='AU') { $totalprice=sprintf("%01.2f",array_sum($ses_basket_price)); $totalprice=sprintf("%01.2f",($totalprice*1.1)); }
else
{ $totalprice=sprintf("%01.2f",array_sum($ses_basket_price)); }
    $totalitems=array_sum($ses_basket_amount); ?>
    <tr><td align='left' colspan='4' valign="top" class='cartbot'>&nbsp;</td>
            <td align='left' valign="top" class='cartbot'><?php echo $totalitems; ?>&nbsp;Items</td>
                <td align='right' colspan='2' class='cartbot'><?php echo "<b>Subtotal:&nbsp;&nbsp;$".$totalprice."&nbsp;</b>"; ?></b></td>
          </tr>
    <tr>
      <td align='left' colspan='5' valign="top"><input type="submit" id="change" name="change" style="vertical-align:middle;" value="Change"></td>
      <td align='right' colspan='2'>&nbsp;</td>
  </tr></form>
and here is the processing part at the top of the page which I have sorta shagged, could use some help getting it to update the correct items for remove and quantity changes
// cart application
if (isset($_POST['change'])) {
$basket = $_POST['basket'];
// check faor AU to include GST
if ($country='AU') { $itemprice = sprintf("%01.2f",(($_POST['price']/11)*10)); }
else
{ $itemprice = $_POST['price']; }
$itemqty = $_POST['quantity'];
$newprice = ($itemprice*$itemqty);
if (($basket!="") && (isset($_POST['change']))){
    if ($_SESSION['ses_basket_items']){
// basket position
$basket_position_counter=0;
// double entry flag set to NO
$double=0;
// Check for existing basket id
if ($_SESSION['ses_basket_items']>0){
   foreach ($ses_basket_id as $basket_item){
      if ($basket_item==$basket){
         // If exist flag for update
 $double=1;
         $basket_position=$basket_position_counter;
      }
  // Add new basket position
      $basket_position_counter++;
   }
}
// Update basket with new quantity and price
if ($double==1){
   $ses_basket_amount[$basket_position]=$itemqty;
   $ses_basket_price[$basket_position]=$newprice;
}
}
// Delete Item when set to 0
if ($itemqty == "0") {
array_splice ($ses_basket_name, $basket_position, 1);
array_splice ($ses_basket_amount, $basket_position, 1);
array_splice ($ses_basket_price, $basket_position, 1);
array_splice ($ses_basket_stockcode, $basket_position, 1);
array_splice ($ses_basket_image, $basket_position, 1);
array_splice ($ses_basket_id, $basket_position, 1);
$_SESSION['ses_basket_items']--;
}
if (isset($remove) && ($remove!='')) {
$remove = $_POST['remove'];
     if(count($remove) > 0){
        foreach($remove AS $removed){
  array_splice ($ses_basket_name, $basket_position, 1);
array_splice ($ses_basket_amount, $basket_position, 1);
array_splice ($ses_basket_price, $basket_position, 1);
array_splice ($ses_basket_stockcode, $basket_position, 1);
array_splice ($ses_basket_image, $basket_position, 1);
array_splice ($ses_basket_id, $basket_position, 1);
$_SESSION['ses_basket_items']--;
         }
     }
}
}
if ($_SESSION['ses_basket_items']==0){
unset($_SESSION['ses_basket_items']);
unset($_SESSION['ses_basket_name']);
unset($_SESSION['ses_basket_amount']);
unset($_SESSION['ses_basket_price']);
unset($_SESSION['ses_basket_stockcode']);
unset($_SESSION['ses_basket_image']);
unset($_SESSION['ses_basket_id']);
header("Location: $pageLink");
}
}

the array variables I have here are $basket, $remove and $quantity.

I'm attempting to thoroughly sanitize my PHP app to avoid common exploits, and am working on guarding from SQL injections and such.

I'm using mysql_real_escape_string for data that comes from the user.

I have a number of instances of the following:
$ip = $_SERVER['REMOTE_ADDR'];
$page = $_SERVER['PHP_SELF'];

And then using those values to query or update SQL.  Is it a best practice to also sanitize this sort of data? 

When a post is approved I only want

$details = $_POST['newstitle'];
update_user_actions(8, $details);

Being posted once with the corresponding news article title.
Any way to achieve this?

Right now it is looping through all of the titles and is posting them all.

Code: [Select]
foreach($posts as $post)
{
$displayName = ucwords("${post['firstname']} ${post['lastname']}");

if (isset($_POST['approve']))
{
if(is_array($_POST['approve'])) {
$keys = array_keys($_POST['approve']);
$id = $keys[0];

                                $details = $_POST['newstitle'];
        update_user_actions(8, $details);

$sql = "UPDATE `news` SET `newsdate` = NOW(), `approved` = 1 WHERE `id` = '$id'";
header("Location: " . $_SERVER['PHP_SELF'] . "?" . $_SERVER['QUERY_STRING'] );
}
}
else if (isset($_POST['deny']))
{
if(is_array($_POST['deny'])) {
$keys = array_keys($_POST['deny']);
$id = $keys[0];

$sql = "UPDATE `news` SET `newsdate` = NOW(), `approved` = -1 WHERE `id` = '$id'";
header("Location: " . $_SERVER['PHP_SELF'] . "?" . $_SERVER['QUERY_STRING'] );
}
}
else if (isset($_POST['delete']))
{
if(is_array($_POST['delete'])) {
$keys = array_keys($_POST['delete']);
$id = $keys[0];

$sql = "DELETE FROM `news` WHERE `id` = '$id'";
header("Location: " . $_SERVER['PHP_SELF'] . "?" . $_SERVER['QUERY_STRING'] );
}
}
if(isset($sql) && !empty($sql)) {
mysql_query($sql) or die(mysql_error());
}

?>

<?php
require_once('init.php');

$results = $db->prepare('SELECT file_location, file_type, file_size, id as media_id WHERE id = ? LIMIT 1;');
$results->execute(array($_GET['id']));

while ($row = $results->fetch()) {

	header('Content-Type: ' . $row['file_type']);
	header('Content-Length: ' . $row['file_size']);

	$media_ins = $db->prepare('UPDATE media SET total_clicks = total_clicks + 1 WHERE id = ?');
	$media_ins->execute(array($row['id']));
        readfile($row['file_location']);

}

For some reason, putting the header('Content-Type....') causes the UPDATE statement to trigger twice increasing the total_clicks by 2. Commenting out the content-type line causes a single update to occur.   init.php contains nothing more than session_start and the database connection. When i comment-out the content-type line the page is blank with no errors or messages.   I'm not sure why this is occurring.

Hello,   I designed (not coded) a finance application for windows phone 8.1 and one of the features that would be ideal is to copy your login steps in order to access your bank account automatically. Yes this does not sound safe or sane. How do I convince app users to use it?    Anyway, I want this access. My rationale is that, the login information would be stored locally and if my phone was hacked then what's the loss in my login steps being hacked... they would probably be encrypted anyway but...    The goal is to be able to open up a clone browser (eg. within the app) and then every step that you take, enter url, login credentials, security questions, pages accessed... the clone browser remembers and then later on as part of the app's function, it would automatically update your balances. I mean I suppose you could come up with the formulas, cash advance fees, interest rates, etc... but at the same time this doesn't seem to be a fixed thing... eg. hard to keep track and get the exact cent amount... or maybe I'm just bad at math   Some things in mind bitmapping, key strokes, string search, number search...    Anyway scripting came to mind, not sure if php or python but    Any thoughts? 

Hi guys, im currently querying my database and if ($row) im including a file. But i would like to make it so if ($row) or a session variable is active, to include the file.

I have tried using || but ive only ever used that for regular variables and I cant get it working in the way i want.

so at the moment i have

Code: [Select]
if ($row)

(

require 'myfile';
and i would like to add || $_SESSION['email'] is active. im guessing i would use isset, but i just cannot get it working.

I know this involves MySQL, but it's mostly PHP, so I figured it should go here, forgive me if I posted in the wrong section, though.

Anyway! Let's get down to it. I'd like to combine these two scripts (below). I want the questionnaire script to be a signup requirement in the signup script, and I want it to log the questionnaire into my MySQL database as usual, then prompt the user with a successful sign up.

I'm still really new to PHP and I'm just testing to see if this'll work. How would I go about doing this? Thanks a LOT guys.

Questionnai

<?php
  // Start the session
  require_once('startsession.php');

  // Insert the page header
  $page_title = 'Questionnaire';
  require_once('header.php');

  require_once('appvars.php');
  require_once('connectvars.php');

  // Make sure the user is logged in before going any further.
  if (!isset($_SESSION['user_id'])) 
  {
    echo '<p class="login">Please <a href="login.php">log in</a> to access this page.</p>';
    exit();
  }

  // Show the navigation menu
  require_once('navmenu.php');

  // Connect to the database
  $dbc = mysqli_connect(DB_HOST, DB_USER, DB_PASSWORD, DB_NAME);

  // If this user has never answered the questionnaire, insert empty responses into the database
  $query = "SELECT * FROM mismatch_response WHERE user_id = '" . $_SESSION['user_id'] . "'";
  $data = mysqli_query($dbc, $query);
  if (mysqli_num_rows($data) == 0) 
  {
    // First grab the list of topic IDs from the topic table
    $query = "SELECT topic_id FROM mismatch_topic ORDER BY category_id, topic_id";
    $data = mysqli_query($dbc, $query);
    $topicIDs = array();
    while ($row = mysqli_fetch_array($data)) 
{
      array_push($topicIDs, $row['topic_id']);
    }

    // Insert empty response rows into the response table, one per topic
    foreach ($topicIDs as $topic_id) 
{
      $query = "INSERT INTO mismatch_response (user_id, topic_id) VALUES ('" . $_SESSION['user_id']. "', '$topic_id')";
      mysqli_query($dbc, $query);
    }
  }

  // If the questionnaire form has been submitted, write the form responses to the database
  if (isset($_POST['submit'])) 
  {
    // Write the questionnaire response rows to the response table
    foreach ($_POST as $response_id => $response) 
{
      $query = "UPDATE mismatch_response SET response = '$response' WHERE response_id = '$response_id'";
      mysqli_query($dbc, $query);
    }
    echo '<p>Your responses have been saved.</p>';
  }

  // Grab the response data from the database to generate the form
  $query = "SELECT mr.response_id, mr.topic_id, mr.response, " .
    "mt.name AS topic_name, mc.name AS category_name " .
"FROM mismatch_response AS mr " .
"INNER JOIN mismatch_topic AS mt USING (topic_id) " .
"INNER JOIN mismatch_category AS mc USING (category_id) " .
"WHERE mr.user_id = '". $_SESSION['user_id'] . "'";
$data = mysqli_query ($dbc, $query);
$responses = array();
while ($row = mysqli_fetch_array($data)) 
{
  array_push($responses, $row);
}
  
  mysqli_close($dbc);

  // Generate the questionnaire form by looping through the response array
  echo '<form method="post" action="' . $_SERVER['PHP_SELF'] . '">';
  echo '<p>How do you feel about each topic?</p>';
  $category = $responses[0]['category_name'];
  echo '<fieldset><legend>' . $responses[0]['category_name'] . '</legend>';
  foreach ($responses as $response) 
  {
    // Only start a new fieldset if the category has changed
    if ($category != $response['category_name']) 
{
      $category = $response['category_name'];
      echo '</fieldset><fieldset><legend>' . $response['category_name'] . '</legend>';
    }

    // Display the topic form field
    echo '<label ' . ($response['response'] == NULL ? 'class="error"' : '') . ' for="' . $response['response_id'] . '">' . $response['topic_name'] . ':</label>';
    echo '<input type="radio" id="' . $response['response_id'] . '" name="' . $response['response_id'] . '" value="1" ' . ($response['response'] == 1 ? 'checked="checked"' : '') . ' />Love ';
    echo '<input type="radio" id="' . $response['response_id'] . '" name="' . $response['response_id'] . '" value="2" ' . ($response['response'] == 2 ? 'checked="checked"' : '') . ' />Hate<br />';
  }
  echo '</fieldset>';
  echo '<input type="submit" value="Save Questionnaire" name="submit" />';
  echo '</form>';

  // Insert the page footer
  require_once('footer.php');
?>



Signup:
<?php
  // Insert the page header
  $page_title = 'Sign Up';
  require_once('header.php');

  require_once('appvars.php');
  require_once('connectvars.php');

  // Connect to the database
  $dbc = mysqli_connect(DB_HOST, DB_USER, DB_PASSWORD, DB_NAME);

  if (isset($_POST['submit'])) {
    // Grab the profile data from the POST
    $username = mysqli_real_escape_string($dbc, trim($_POST['username']));
    $password1 = mysqli_real_escape_string($dbc, trim($_POST['password1']));
    $password2 = mysqli_real_escape_string($dbc, trim($_POST['password2']));

    if (!empty($username) && !empty($password1) && !empty($password2) && ($password1 == $password2)) {
      // Make sure someone isn't already registered using this username
      $query = "SELECT * FROM mismatch_user WHERE username = '$username'";
      $data = mysqli_query($dbc, $query);
      if (mysqli_num_rows($data) == 0) {
        // The username is unique, so insert the data into the database
        $query = "INSERT INTO mismatch_user (username, password, join_date) VALUES ('$username', SHA('$password1'), NOW())";
        mysqli_query($dbc, $query);

        // Confirm success with the user
        echo '<p>Your new account has been successfully created. You\'re now ready to <a href="login.php">log in</a>.</p>';

        mysqli_close($dbc);
        exit();
      }
      else {
        // An account already exists for this username, so display an error message
        echo '<p class="error">An account already exists for this username. Please use a different address.</p>';
        $username = "";
      }
    }
    else {
      echo '<p class="error">You must enter all of the sign-up data, including the desired password twice.</p>';
    }
  }

  mysqli_close($dbc);
?>

  <p>Please enter your username and desired password to sign up to Mismatch.</p>
  <form method="post" action="<?php echo $_SERVER['PHP_SELF']; ?>">
    <fieldset>
      <legend>Registration Info</legend>
      <label for="username">Username:</label>
      <input type="text" id="username" name="username" value="<?php if (!empty($username)) echo $username; ?>" /><br />
      <label for="password1">Password:</label>
      <input type="password" id="password1" name="password1" /><br />
      <label for="password2">Password (retype):</label>
      <input type="password" id="password2" name="password2" /><br />
    </fieldset>
    <input type="submit" value="Sign Up" name="submit" />
  </form>

<?php
  // Insert the page footer
  require_once('footer.php');
?>


And here are the pastebins in case you prefer those:

http://pastebin.com/pTXGSMT9 - Questionnaire

http://pastebin.com/28jZhYyY - Signup

Thanks!