Sessions are better. If you want to use the header to pass the
variable:
header(Location:5-14_select_area.php?department=$department); (use an
ampersand for adding additional variables as mentioned by Mark.
You should call a clean function from an include file (add the document
root directory in the php.ini file so you can place the file in a
different directory and PHP always knows where to find it when you
include it without having to reference the entire document root - very
handy) to prevent someone from altering your intended input (this is why
sessions are better).
?php
//include.inc
function clean($input, $maxlength)
{
$input = substr($input, 0, $maxlength);
$input = EscapeShellCmd($input);
return ($input);
}
?
Then for the 5-14_select_area.php file:
?php
//5-14_select_area.php
include_once 'include.inc';
if(!empty($department))
{
$department = clean($department, 15);
}
if(!empty($level))
{
$level = clean($level, 15);
}
your queries follow
..
?
Hope that is what you were looking for.
Michael Conway
[EMAIL PROTECTED]
(703) 968-8875
-Original Message-
From: Mark [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 07, 2003 10:29 AM
To: [EMAIL PROTECTED]
Subject: Re: [PHP-DB] Re: Passing variables through a page
If you use sessions, you can pass the variables without having to
wory about interim pages. Another option (I don't know if it will
actually work) is to put the variables in the the URL of the location
redirect. Something like:
$loc=http://www.yourdomain.com/nextpage?var1=$var1var2=$var2;;
header(location: $loc);
--- Michael Mauch [EMAIL PROTECTED] wrote:
Alex Francis [EMAIL PROTECTED] wrote:
I have a page (dept_select) with two drop down lists populated
from a table
in a MySQL Database. If one item is selected in either of the
lists I need
to go to one page (5-14_select_area.php). If any other item is
selected I
need to go to another page (add_new_resources.php) but I need to
pass the
selected items to add_new_resources.php.
I don't think there are many other possiblities, at least if you
don't
want to use JavaScript (and I hope you don't).
Instead of the redirect, you could perhaps use require() to include
one
of the two possible pages, and thus avoid one server-client
roundtrip.
At the moment I have created a page between dept_select.php and
the other
pages and added the following code to it:
?php
if ($department==5-14 Curriculum)
{
header(Location:5-14_select_area.php);
}
elseif ($level==5-14 Curriculum)
{
header(Location:5-14_select_area.php);
}
else
{
header(Location:add_new_resources.php);
}
?
The Location header requires an absolute URI, e.g.
http://your_host/path/your_file.php.
I'm not sure whether this is a database question ;-)
Regards...
Michael
--
PHP Database Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
=
Mark Weinstock
[EMAIL PROTECTED]
***
You can't demand something as a right unless you are willing to fight
to death to defend everyone else's right to the same thing.
-Stolen from the now-defunct Randy's Random mailing list.
***
__
Do you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
http://mailplus.yahoo.com
--
PHP Database Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
