Home > Archive > PHP SQL > August 2006 > Problem with SELECT
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Problem with SELECT
|
|
| Anne Bos 2006-08-27, 6:58 pm |
| I have a database where authors are listed together with articles they
wrote in a little journal. I want to present people what author has
produced what articles. In order to do that I made a form, adressing a
file called authors.php. If someone gives in a name of an author,
his/her name as well as his/her articles are listed as expected. So
far no problems.
However, if no name is given or if just return is hit, the querry
gives all authors. In that case I want no author being given back,
instead I prefer to give a sentence: "Please give the name of a
possible author".
The relevant items are (within php of course):
$search = $_POST[author];
and
$sql="SELECT (the relevant field names) FROM journal WHERE author LIKE
'%$search%' ORDER BY idart";
(idart gives a chronological numbering of all articles)
What should I do? Any hint is appreciated.
Anne Bos
| |
| Johnny 2006-08-27, 6:58 pm |
|
"Anne Bos" <anne.bos@hccnet.nl> wrote in message
news:d1u3f2hh1ep2och4df1513rgfnl0uu1bfb@
4ax.com...
> I have a database where authors are listed together with articles they
> wrote in a little journal. I want to present people what author has
> produced what articles. In order to do that I made a form, adressing a
> file called authors.php. If someone gives in a name of an author,
> his/her name as well as his/her articles are listed as expected. So
> far no problems.
> However, if no name is given or if just return is hit, the querry
> gives all authors. In that case I want no author being given back,
> instead I prefer to give a sentence: "Please give the name of a
> possible author".
>
> The relevant items are (within php of course):
> $search = $_POST[author];
> and
> $sql="SELECT (the relevant field names) FROM journal WHERE author LIKE
> '%$search%' ORDER BY idart";
> (idart gives a chronological numbering of all articles)
>
> What should I do? Any hint is appreciated.
>
> Anne Bos
an approach:
$search = $_POST['author'];
if (!empty($_POST['author'])) {
$sql="SELECT (the relevant field names) FROM journal WHERE author LIKE
'%$search%' ORDER BY idart";
// and your mysql and output stuff here
}
else {
echo "<p>Please give the name of a possible author</p>";
}
BTW you might want to save yourself some grief down the road by reading up
about sql injection and filtering the post accordingly.
also you should use single quotes around col tags $_POST['author'] so php
doesn't try to interpret them as constants initially.
| |
| Anne Bos 2006-08-28, 3:58 am |
| On Sun, 27 Aug 2006 13:30:00 -0700 wrote "Johnny"
<removethis.huuanito@hotmail.com>:
>
>"Anne Bos" <anne.bos@hccnet.nl> wrote in message
> news:d1u3f2hh1ep2och4df1513rgfnl0uu1bfb@
4ax.com...
>
>an approach:
>
>$search = $_POST['author'];
>if (!empty($_POST['author'])) {
> $sql="SELECT (the relevant field names) FROM journal WHERE author LIKE
>'%$search%' ORDER BY idart";
> // and your mysql and output stuff here
>}
>else {
> echo "<p>Please give the name of a possible author</p>";
>}
>
>BTW you might want to save yourself some grief down the road by reading up
>about sql injection and filtering the post accordingly.
>also you should use single quotes around col tags $_POST['author'] so php
>doesn't try to interpret them as constants initially.
>
>
>
>
>
Thank you,
I have been fiddling with empty(), but now I see what I did wrong.
I should have known.
Also thanks for your tips.
| |
| totalstranger 2006-08-28, 10:02 pm |
| On or about 8/27/2006 4:11 PM, it came to pass that Anne Bos wrote:
> I have a database where authors are listed together with articles they
> wrote in a little journal. I want to present people what author has
> produced what articles. In order to do that I made a form, adressing a
> file called authors.php. If someone gives in a name of an author,
> his/her name as well as his/her articles are listed as expected. So
> far no problems.
> However, if no name is given or if just return is hit, the querry
> gives all authors. In that case I want no author being given back,
> instead I prefer to give a sentence: "Please give the name of a
> possible author".
>
> The relevant items are (within php of course):
> $search = $_POST[author];
> and
> $sql="SELECT (the relevant field names) FROM journal WHERE author LIKE
> '%$search%' ORDER BY idart";
> (idart gives a chronological numbering of all articles)
>
> What should I do? Any hint is appreciated.
>
> Anne Bos
On the return problem. Assuming you are using a SUBMIT button to post
the entered data: set up a dummy hidden submit button before the first
entry field. It will force the browser to send this button and handle
the enter key problem. (you can also do the style in-line)
<style type="text/css" media="screen">
#HideBtn {Display: None;}
</style>
<input type="submit" name="Submit" value="EnterKey" Id="HideBtn" />
|
|
|
|
|