php mysql and pdo

Question

whiteyoh 0 Posting Pro in Training

14 Years Ago

Hi all,

The following code displays the form, but when i click submit, it empties all of the fields. I get no error messages at all.

Im stumped

<?php

include("includes/connectpdomysql.php");

if (isset($user_username, $user_password, $user_email)) 
{

//Prevent SQL injections
$user_id = mysql_real_escape_string($_POST['user_id']);
$user_username = mysql_real_escape_string($_POST['user_username']);
$user_password = md5($_POST['user_password']);
$user_fname = mysql_real_escape_string($_POST['user_fname']);
$user_surname = mysql_real_escape_string($_POST['user_surname']);
$user_email = mysql_real_escape_string($_POST['user_email']);
$user_number = mysql_real_escape_string($_POST['user_number']);
$user_add1 = mysql_real_escape_string($_POST['user_add1']);
$user_add2 = mysql_real_escape_string($_POST['user_add2']);
$user_county = mysql_real_escape_string($_POST['user_county']);
$user_postcode = mysql_real_escape_string($_POST['user_postcode']);
$user_type = mysql_real_escape_string($_POST['user_type']);


  $sql = "INSERT INTO users (user_id, user_username, user_password, user_fname, user_surname, user_email, user_number, user_add1, user_add2, user_county, user_postcode, user_type) VALUES (user_id, :user_username ,:user_password, :user_fname, :user_surname, :user_email, :user_number, :user_add1, :user_add2, :user_county, :user_postcode, :user_type)"; 
	$q = $db->prepare($sql); 
	$q->execute(array(':user_id'=>$user_id, 
					  ':user_username'=>$user_username,
	                  ':user_title'=>$user_password,
					  'user_fname'=>$user_fname,
					  'user_surname'=>$user_surname,
					  ':user_email'=>$user_email,
					  ':user_number'=>$user_number,
					  ':user_add1'=>$user_add1,
					  ':user_add2'=>$user_add2,
					  ':user_county'=>$user_county,
					  ':user_postcode'=>$user_postcode,
					  ':user_type'=>$user_type));
						 
if(!$q) 
	{ 
	  die("Execute query error, because: ". $conn->errorInfo()); 
	} 
	 
	$q->setFetchMode(PDO::FETCH_BOTH); 
	 
	// fetch 
	while($r = $q->fetch()){ 
	  print_r($r); 
	}

}

?>

 
<html>

<form action="newuser.php" method="post">
Username: <input name="user_username" type="text" /><br/>
Password: <input type="user_password" name="password" /><br/>
First name: <input name="user_fname" type="text" /><br/>
Surname: <input name="user_surname" type="text" /><br/>
Email: <input name="user_email" type="text" /><br/>
Contact number: <input name="user_number" type="text" /><br/>
Address line 1: <input name="user_add1" type="text" /><br/>
Address line 2: <input name="user_add2" type="text" /><br/>
County: <input name="user_county" type="text" /><br/>
Post Code: <input name="user_postcode" type="text" /><br/>
User Type: <input name="user_type" type="text" /><br/>

<input type="submit" value="Submit" /><br/>

</form>

 </html>

php

2 Contributors
5 Replies
140 Views
17 Hours Discussion Span
Latest Post 14 Years Ago Latest Post by diafol

All 5 Replies

diafol

14 Years Ago

When you send the form (to the same page I take it), it will empty the form - this is expected behaviour. Why are you expecting an error - is the DB not updated?

diafol

14 Years Ago

Perhaps I'm a bit slow here - what is the actual problem?
As far as I see it -

1. fill the form
2. validate/clean the data
3. enter (insert or update) db
4. return to form (which will be empty)

Where in the above flow does an error occur (if at all)?

Edited 14 Years Ago by diafol because: n/a

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

whiteyoh 0 Posting Pro in Training · Answer 1 · 2009-10-23T04:43:04+00:00

Hi,

I noticed my error regarding calling the same form. So i put the html into a new file.

I am getting no errors at all, and i have tested in both localhost and a server, both same results.

here is my connection script also

<?php
	$dbtype     = "mysql"; 
	$dbhost     = "localhost"; 
	$dbuser     = "root"; 
	$dbpass     = "root"; 

try {
    $db = new PDO("mysql:host=$dbhost;dbname=case",$dbuser,$dbpass);
    /*** echo a message saying we have connected ***/
    echo 'Connected to database';
	echo '<br/>';
    }
catch(PDOException $e)
    {
    echo $e->getMessage();
    }
?>

whiteyoh 0 Posting Pro in Training · Answer 2 · 2009-10-23T05:58:48+00:00

the code wasnt adding the data to the database, it was simply clearing the form and doing nothing.

after an overload of echo statements i managed to get it working. Some minor syntax errors. But very strange that there were no errors.

here is the code for your interest

<?php

require("includes/connectpdomysql.php");
echo "hello";
if (isset($_POST['user_username']) && isset($_POST['user_password']) && isset($_POST['user_fname'])&& isset($_POST['user_surname'])&& isset($_POST['user_email'])&& isset($_POST['user_number'])&& isset($_POST['user_add1'])&& isset($_POST['user_add2'])&& isset($_POST['user_county'])&& isset($_POST['user_postcode'])&& isset($_POST['user_type']))

 echo "hello";
{

//Prevent SQL injections
$user_id = '';
$user_username = mysql_real_escape_string($_POST['user_username']);
$user_password = mysql_real_escape_string($_POST['password']);
$user_fname = mysql_real_escape_string($_POST['user_fname']);
$user_surname = mysql_real_escape_string($_POST['user_surname']);
$user_email = mysql_real_escape_string($_POST['user_email']);
$user_number = mysql_real_escape_string($_POST['user_number']);
$user_add1 = mysql_real_escape_string($_POST['user_add1']);
$user_add2 = mysql_real_escape_string($_POST['user_add2']);
$user_county = mysql_real_escape_string($_POST['user_county']);
$user_postcode = mysql_real_escape_string($_POST['user_postcode']);
$user_type = mysql_real_escape_string($_POST['user_type']);


//Get MD5 hash of password

//$user_password = md5($_POST['user_password']);

 
   $sql = ("INSERT INTO users (user_id, user_username, user_password, user_fname, user_surname, user_email, user_number, user_add1, user_add2, user_county, user_postcode, user_type) VALUES (:user_id, :user_username,:user_password,:user_fname, :user_surname,:user_email, :user_number, :user_add1, :user_add2, :user_county, :user_postcode, :user_type)"); 
	
	$q = $db->prepare($sql); 
	$q->execute(array(':user_id'=>$user_username,
					  ':user_username'=>$user_username, 
	                  ':user_password'=>$user_password,
					  ':user_fname'=>$user_fname,
					  ':user_surname'=>$user_surname,
					  ':user_email'=>$user_email,
					  ':user_number'=>$user_number,
					  ':user_add1'=>$user_add1,
					  ':user_add2'=>$user_add2,
					  ':user_county'=>$user_county,
					  ':user_postcode'=>$user_postcode,
					  ':user_type'=>$user_type)); 
}
?>

diafol · Answer 3 · 2009-10-23T14:03:44+00:00

diafol

14 Years Ago

Thanks. I'm not familiar with PDO.

php mysql and pdo

Recommended Answers Collapse Answers

All 5 Replies

Recommended Answers