0

input_berita_static.php

$id = isset($_POST['id']) ? $_POST['id'] : '';  
	$confirmation = isset($_POST['confirmation']) ? $_POST['confirmation'] : '';  
	$kategori = isset($_POST['kategori']) ? $_POST['kategori'] : ''; 
	$isiBerita = isset($_POST['isiBerita']) ? $_POST['isiBerita'] : '';
	$judul = isset($_POST['judul']) ? $_POST['judul'] : ''; 
	
	
	//Load berita
	if (!empty($_REQUEST['id'])){
		$result = mysql_query("SELECT * FROM static_page WHERE id =".$_REQUEST['id']) or die(mysql_error());
		$data = mysql_fetch_array($result);
		$id = $data['id'];
		$judul = $data['judul'];
		$isiBerita = $data['isi_berita'];
	}
	
	//Simpan berita dan konfirmasi kepada subscriber
	if (isset($_REQUEST['ok'])){
		$judul = $_REQUEST['judul'];
		$news = $_REQUEST['news'];
		if (empty($_REQUEST['id']))
			$sqlstr = "INSERT INTO static_page(judul, isi_berita)VALUES("'".$judul."','".$news.'")";
		else
			$sqlstr = "UPDATE berita SET judul='".$judul."', isi_berita='".$news."' WHERE id=".$_REQUEST['id'];
		$result = mysql_query($sqlstr) or die(mysql_error());
		
		//Jika mode edit, maka tidak akan dikirimkan konfirmasi kepada subscriber
		//if (empty($_REQUEST['id']))	kirimEmail($idKategori, $judul, $news);
		$confirmation = ($result) ? "Data telah tersimpan." : "Gagal menyimpan data.";	
	}
	?>
	<div align="center">
		<div style="width:800px;text-align:left;">
		<script type="text/javascript" src="ckeditor/ckeditor.js"></script>
		<link href="ckeditor/content.css" rel="stylesheet" type="text/css"/>
		<?php echo $confirmation;?>
		<form method="post" action="<?php $_SERVER['PHP_SELF']?>">
			<input type="hidden" name="id" value="<?php echo $id; ?>"/>
			<input type="hidden" name="kategori" value="<?php echo $_REQUEST['kategori']; ?>"/>
			<table>
				<tr>
                    <td>Page</td>				
					<td><input size="50px" type="text" name="judul" value="<?php echo $page; ?>"/></td>
				</tr>
                <tr>
                    <td>Judul</td>				
					<td><input size="50px" type="text" name="judul" value="<?php echo $judul; ?>"/></td>
				</tr>
				<tr>
					<td valign="top">Isi berita</td>				
					<td>
						<textarea cols="60" rows="10" id="news" name="news"><?php echo $isiBerita;?></textarea>
						<script type="text/javascript">
							var editor = CKEDITOR.replace('news');
						</script>					</td>
				</tr>
				<tr>				
					<td><input type="submit" name="ok" value="Simpan"/></td>
			  </tr>
			</table>
		</form>
		</div>
	</div>

Parse error: syntax error, unexpected T_CONSTANT_ENCAPSED_STRING in C:\xampp\htdocs\php_template2\input_berita_static.php on line 117

Line 117 is $sqlstr = "INSERT INTO static_page(judul, isi_berita)VALUES("'".$judul."','".$news.'")";

2
Contributors
3
Replies
5
Views
6 Years
Discussion Span
Last Post by cwarn23
0

Replace line 117 with the following:

$sqlstr = "INSERT INTO static_page(judul, isi_berita)VALUES('".$judul."','".$news."')";
0

Hey the code works!

But logically, why do I need to use '(apostrophe)?

Why not:

$sqlstr = "INSERT INTO static_page(judul, isi_berita)VALUES(".$judul.",".$news.")";
0

because to separate the code/syntax from the string you are inputing you need to surround your text with a quote on each side. However with numbers, this is not the case since mysql knows how to detect numbers from the syntax. So whenever inputting strings, you must surround with quotes to ensure that mysql or even in any language like in php for assigning variables because when it comes to computers, computers aren't smart at recognizing code.

This question has already been answered. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.