if($REQUEST_METHOD == "post")
{
//do validation of data
if($validated == "yes")
{
//do queries
}
else
{
echo "not validated";
include("form.html");
}
}
else
{include("form.html");}
Maybe that'll work. I'm trying to follow your logic. That will check for
the request method first. If it's POST, go on to validation. If it's not
POST, show the form. If the validation succeeds (validation == yes),
then do your queries, otherwise give an error message and show the form
again.
Works?
---John Holmes...
> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> Sent: Saturday, June 01, 2002 5:11 PM
> To: [EMAIL PROTECTED]
> Subject: [PHP] New to PHP- Form Validation Logic/Design Question
>
>
> I am *very* new to PHP & am trying to write a tool where a user can
add
> books to a library MySQL database.
>
> The user fills out an HTML form. I do some form validation & if the
form
> entries are ok, I need to run some SQL queries using the form
variables.
>
> I have the HTML form posting back to itself to do the error checking.
The
> part I am unclear on is how to handle the SQL queries.
>
> I was thinking that if the user filled out the form correctly, I could
> redirect to a new php script/page to handle the SQL queries. The
problem
> is that if I do so, I do not have access to the form variables that I
> need. The only way I know to pass variables to a new script is through
a
> form posting & it doesn't make sense to have 2 form postings for one
form.
>
> I suppose I could run the SQL queries from the same script although
when I
> use my below logic, the SQL queries print out underneath the HTML form
> which looks pretty bad.
>
> I was thinking that if I approach it this way, I need some way to loop
> back through all my "if" statements so that I could catch the last one
> only ($REQUEST_METHOD == "post" && $validated == "yes")
> and therefore wouldn't get the HTML form again. I tried putting a
> while(true){ } loop around the entire thing which resulted in printing
my
> HTML table infinity times :)
>
> I included a pseudocode form of my logic here & my actual code below.
>
> If anyone has any thoughts, suggestions, ideas, or comments, I'd
really
> appreciate it! Also, is there a good IRC channel for php users?
>
> Laura
> [EMAIL PROTECTED]
> Instant Messenger: lefindley
>
> if ($REQUEST_METHOD != "POST"){
>
> include("./form.html");
>
> } else if ($REQUEST_METHOD == "POST" && $validated == "no"){
>
> perform error checking
> display errors at top of page
> include("./form.html");
>
> } else if ($REQUEST_METHOD == "POST" && $validated
> == "yes") {
>
> **here is where I need to run the SQL queries**
>
> }
>
> --------------------------------------------------
>
> <?
>
> $err = "";
> $validated = "no";
>
> // display form for user to fill out
>
> if ($REQUEST_METHOD != "POST") {
>
> include("./form.html");
>
>
> } else if ($REQUEST_METHOD == "POST" && $validated == "no") {
>
> // if user is submitting the form, do error
> // checking. if there are errors, display them at
> // the beginning of the form
>
> if ($book_title == ""){
> $err .= "<LI><font color="red">Book title cannot be
> blank!</font><br>";
> }
> if ($author == "") {
> $err .= "<LI><font color="red">Author cannot be left
> blank!</font><br>"; }
> if ($author != ""){
> if (!ereg('[a-zA-Z]', $author)){
> $err .= "<LI><font color="red">Author name must be " .
> "letters!</font><br>";
> }
> }
> if ($price == ""){
> $err .= "<LI><font color="red">Price cannot be left
> blank!</font><br>";
> }
> if ($price != ""){
> if (!is_numeric($price)){
> $err .= "<LI><font color="red">Price must be
> numbers!</font><br>";
> }
> }
> if ($isbn == ""){
> $err .= "<LI><font color="red">ISBN cannot be left
> blank!</font><br>";
> }
> if ($isbn != ""){
> if (!is_numeric($isbn)){
> $err .= "<LI><font color="red">ISBN must be
numbers!</font><br>";
>
> }
> }
> if ($num_copies != ""){
> if (!is_numeric($num_copies)){
> $err .= "<LI><font color="red"># of copies must be ".
> " numbers!</font><br>";
> }
> }
> if ($checked_out != ""){
> if (!is_numeric($checked_out)){
> $err .= "<LI><font color="red"># of checked out copies must
be "
> .
>
> if ($checked_out != ""){
> if (!is_numeric($checked_out)){
> $err .= "<LI><font color="red"># of checked out copies must
be "
> .
> " numbers!</font><br>";
> }
> }
> if (is_numeric($checked_out) && is_numeric($num_copies)){
> if ($checked_out > $num_copies){
> $err .= "<LI><font color="red"># of copies checked out cannot
" .
> "exceed number of copies in library!</font><br>";
> }
> }
> include("./form.html");
>
> if ($err == ""){
> $validated = "yes";
> break;
> }
>
> print "Validated: $validated";
> } // end of else if
>
>
> if ($REQUEST_METHOD == "POST" && $validated == "yes"){
>
> // if user has correctly filled out the form, I
> // need to run some MySQL queries using the form // variables - not
sure
> if it is best to do this // on the same page or redirect to another.
>
> // if i run the SQL queries from the same page,
> // i need to be able to not display the HTML form
>
> // if i redirect to another script, I need a way
> // to pass the form variables
>
> print "do some SQL stuff";
> }
>
>
>
>
> ?>
>
>
>
>
>
>
>
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
