[PHP-DB] Re: Newbie Question $2
We're all so eager to help out poor Ethan (who many of you know is NOT a newbie) but nowhere does Ethan say what difficulty he is having. The suggestions made so far are great but what are we solving? -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP-DB] Re: Newbie Question $2
Finally figured out what the question was!
Here's a better version of your code Ethan:
$phn = $_POST['phone']; // note the quotes on the index
if (strlen($phn) 10)
{
echo Error in phone number entry - must be 10 digits;
exit();
}
$phn = mysqli_real_escape_string($cxn,$phn);
$masked_phone = substr($phn,0,3) . -.substr($phn,3,3). -.
substr($phn,6,4);
$sql1 = select Lname, Fname from Customers where Phone =
'$masked_phone'; // note use of diff quotes
$result1 = mysqli_query($cxn, $sql1);
if (mysqli_num_rows($result1) == 0)
{
echo Phone number $masked_phone not on file;
exit();
}
else
{
echo Found {$result1['Fname']} {$result1['Lname']} is on file with
number $masked_phone;
exit();
}
--
PHP Database Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP-DB] Re: Newbie Question $2
On 17/06/14 15:04, Jim Giner wrote: We're all so eager to help out poor Ethan (who many of you know is NOT a newbie) but nowhere does Ethan say what difficulty he is having. The suggestions made so far are great but what are we solving? I see you have spotted the original question :) The original post was fairly complete in what it was asking, and the answers reasonably worded ... -- Lester Caine - G8HFL - Contact - http://lsces.co.uk/wiki/?page=contact L.S.Caine Electronic Services - http://lsces.co.uk EnquirySolve - http://enquirysolve.com/ Model Engineers Digital Workshop - http://medw.co.uk Rainbow Digital Media - http://rainbowdigitalmedia.co.uk -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP-DB] Re: Newbie Question $2
On 6/17/2014 10:51 AM, Lester Caine wrote: On 17/06/14 15:04, Jim Giner wrote: We're all so eager to help out poor Ethan (who many of you know is NOT a newbie) but nowhere does Ethan say what difficulty he is having. The suggestions made so far are great but what are we solving? I see you have spotted the original question :) The original post was fairly complete in what it was asking, and the answers reasonably worded ... Yeah - I just didn't take Ethan's comment as 'his question' since a) it didn't even have a ? mark on it and b) his spelling of his phn vars was crisscrossed re: the usage in the query statement. I knew people were seeing something I wasn't - just didn't realize that the question itself was a puzzle of sorts. -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP-DB] Re: Newbie Question $2
IMO a newbie is someone who read the docs and understood them (at least in theory) before they attempt to write code, which doesn't seem to be the case. On Tue, Jun 17, 2014 at 10:04 AM, Jim Giner jim.gi...@albanyhandball.com wrote: We're all so eager to help out poor Ethan (who many of you know is NOT a newbie) but nowhere does Ethan say what difficulty he is having. The suggestions made so far are great but what are we solving? -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP-DB] Newbie Question $2
Hi Ethan, Here are some things to clean up your code: Your line: $phn = $_POST[phone]; should use quotations as follows: $phn = $_POST['phone']; Your line: $sql1 ='select Lname, Fname from Customers where Phone = $Phn '; Should use double quotes if you need the variable to be interpreted: $sql1 =select Lname, Fname from Customers where Phone = $Phn ; Lastly, as people have mentioned PDO is probably the best way to go. Try connecting to your database with PDO. Look on Google for PDO prepared statements and use those instead of the mysql escape string method. Hope this helps, -Kevin Sent from Yahoo Mail on Android
Re: [PHP-DB] Newbie Question $2
On 06/17/2014 12:02 PM, onatawah...@yahoo.ca wrote:
Hi Ethan,
Here are some things to clean up your code:
Your line:
$phn = $_POST[phone];
should use quotations as follows:
$phn = $_POST['phone'];
Your line:
$sql1 ='select Lname, Fname from Customers where Phone = $Phn ';
Should use double quotes if you need the variable to be interpreted:
$sql1 =select Lname, Fname from Customers where Phone = $Phn ;
Lastly, as people have mentioned PDO is probably the best way to go. Try connecting to
your database with PDO. Look on Google for PDO prepared statements and use
those instead of the mysql escape string method.
Hope this helps,
-Kevin
Sent from Yahoo Mail on Android
IT WORKS!!!
Here is the code -
!DOCTYPE html PUBLIC -//W3C//DTD XHTML 1.0 Transitional//EN
http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd;
html xmlns=http://www.w3.org/1999/xhtml;
html
?php
$bla = 1;
?
head
/head
body
div align=center
form method=post
input type='text' name=phone/input
input type='submit'
br /br /br /
/form
/div
?php
error_reporting(-1);
require '/home/ethan/PHP/ethan.inc';
$db = Store;
$cxn = mysqli_connect($host,$user,$password,$db);
$phn = $_POST[phone];
$phn = (string)$phn;
$dsh = '-';
$Phn =
$phn[0].$phn[1].$phn[2].$dsh.$phn[3].$phn[4].$phn[5].$dsh.$phn[6].$phn[7].$phn[8].$phn[9];
$sql1 =select Lname, Fname from Customers where Phone =
'$Phn' ;
$result1 = mysqli_query($cxn, $sql1);
if(!$result)
{
?
div align=center
strongNo Match Found/strong
br /br /
/div
?php
}
?
div align=center
table border=4 cellpadding=5 cellspacing=55 rules=all
frame=box
tr class='heading'
thLast Name/th
thFirst Name/th
?php
while($row1 = mysqli_fetch_row($result1))
{
$Lname = $row1[0];
$Fname = $row1[1];
? tr
td ?php echo $Lname; ? /td
td ?php echo $Fname; ? /td
/tr
?php
}
?
/table
/div
/body
/html
As you [those that replied] accurately noted, the problem was with the
quoting.
I appreciate all your comments, take them seriously and will use the
information contained in them for future programming.
No matter how much skill in programming I have, I will remain a NEWBIE;
ie, someone who wishes to grrow in knowledge and acknowledges that there
are many programmers much more skilled than I.
Thanks again.
Ethan
--
PHP Database Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
