php - PDO insert validation -

-

i've got code insert correctly, failing give me success message. returns failed add device database, go check database , in fact successfull. ideas?

<?php     // start or resume session session_start();  //check ensure user authorized view page if (isset($_session['loggedin']) && $_session['loggedin'] == true) {  // include header include("includes/header.php");        echo "     <div class='form_description'>         <h2>french lick resort</h2>         <p>status - add ingenico device inventory</p>     </div>                            <form id='update' class='fieldset'  method='post' action=''>";   $serial=$_post['serial']; $model=$_post['model']; $devicecondition=$_post['devicecondition']; $sealcondition=$_post['sealcondition']; $location=$_post['location']; $deploydate=$_post['deploydate']; $weight=$_post['weight']; $notes=$_post['notes'];   //new pdo connection   try{      $conn = new pdo("mysql:host=$sql_server;dbname=$sql_db", $sql_user,     $sql_pass);  $sql = "insert web01dev4s2.ingenicoinfo (serial, model, devicecondition, sealcondition, location, deploydate, weight, notes) values ('".$serial."', '".$model."', '".$devicecondition."', '".$sealcondition."', '".$location."', '".$deploydate."', '".$weight."', '".$notes."')";   $q = $conn->prepare($sql); $result_1=mysql_query($sql);   $q->execute();    } catch (pdoeexception $pe) {     die("could not connect database" . $pe->getmessage()); }  //end pdo connection   // display "go" or "no go" if($result_1){     echo "device added database.";     header( "refresh:2;url=devicelist.php" ); } else {     echo "failed add device database. please ensure device not in database , fields filled out.  notes should na if there no notes add.  also, ensure name not containt special characters such quotes.<br />";     echo "<a href=create.php>back</a>" ; }   } else { header('location:login.php');     }  echo " </form> </div> </body> </html>"; ?>

you mixing use of pdo , mysql extension. don't that.

if going use pdo, use prepare statements correctly, well. should not put variables raw sql string, instead use '?' expect value inserted. pass array of variables statement's execute. pdo way, , prevent sql injections against code.

$sql = "insert web01dev4s2.ingenicoinfo (serial, model, devicecondition, sealcondition, location, deploydate, weight, notes) values (?, ?, ?, ?, ?, ?, ?, ?)";  $q = $conn->prepare($sql);  // line should fix problem $result_1 = $q->execute(array($serial, $model, $devicecondition, $sealcondition, $location, $deploydate, $weight, $notes));

Comments

Post a Comment

Popular posts from this blog

python - No exponential form of the z-axis in matplotlib-3D-plots -

-
Image
i have similar problem described in how prevent numbers being changed exponential form in python matplotlib figure : i don't want (in special case) weird scientific formatting of axis. problem different have problem @ z -axis. 2-d plots can use ax.get_yaxis().get_major_formatter().set_useoffset(false) . , there no function ax.get_zaxis() what use format z -axis same way? edit: example: from mpl_toolkits.mplot3d import axes3d import numpy np import sys import matplotlib import matplotlib.pyplot pyplot def func(xi, ti): res = 10e3 + np.cos(ti) * np.sin(xi) return res if __name__ == '__main__': timespacing = 20 timestart = 0 timeend = 1 time = np.linspace(timestart, timeend, timespacing) widthspacing = 50 widthstart = 0 widthend = 3 width = np.linspace(widthstart, widthend, widthspacing) reslist = [] matplotlib.rcparams['legend.fontsize'] = 10 fig = pyplot.figure() ax = fig.gca(projection = '3d...
Read more

php - Best Light server (Linux + Web server + Database) for Raspberry Pi -

-
i install web server database on raspberry pi (little computer). computer has 1gb ram. i want know best combination: linux distribution , web server , dbms run local server multiple users minimal latency, use php on server. , best settings performance , not have bugs (memory usage, disable plugin, disable service, etc)? i thought light debian , lighttpd server , sqlite database. solution? i think lighttpd + sqlite great choice. linux distro, debian @ centos or tiny core linux , although i'm not sure of compatibility pi. obviously, can't go wrong raspbian if want use in production , more stable performance, few more pi's , set them in cluster .
Read more

c# - "Newtonsoft.Json.JsonSerializationException unable to find constructor to use for types" error when deserializing class -

-
i developing app in xamarin android. have splash screen serialize class , pass mainactivity using intent . when try deserialize in mainactivity error message : "serializationexception unable find constructor use types" serialization : void loaddata() { currency currency = new currency(this); intent = new intent(this, typeof(mainactivity)); intent.putextra("currency", newtonsoft.json.jsonconvert.serializeobject(currency)); startactivity(intent); } deserialization : cur = newtonsoft.json.jsonconvert.deserializeobject<currency> (intent.getstringextra("currency")); // error here class constructor : public currency(context context) { thiscontext = context; } i began experiencing problem after added parameter context context constructor. has caused this? how can solve it? possible serialize/deserialize class has parameters? you need have empty constructor in currency class in order deserialize it. ...
Read more