phpsane
-
Posts
320 -
Joined
-
Last visited
Posts posted by phpsane
-
-
12 hours ago, kicken said:
You're apparently trying to call mysqli_query with a query that has placeholders. You can't do that, if you want to use placeholders then you have to use mysqli_prepare then bind your parameters, then mysqli_stmt_execute.
Oh!
But I wrote the mysqli_prepare in the 2nd line. You saying that is incorrect as mysqli_prepare should be in the 1st line with the $query ? If so, then how come you aswell as others here and in other forums like the Devshed forum never brought this to my attention ever before ? Because what you see here is how I have been doing prepared statements in all my threads and posts on many forums including this one and DevShed for over a yr now and no-one said (not even Requinix and Barand who been helping me out here and Devshed like you) what you are saying now to bring this issue to my attention. How come everyone failed to spot it until you came along now ?
Look at the final block of code on this post (you been helping me out there) and you will see I did the same there back then too:
Yes, surprise surprise, I am continuing my works here on this forum now as I find my password doesn't work in Devhed any more. I smell Requinix banned me without an explanation there.
Anyway, do show me a sample code how it should be done and how you do it because what you see here and on Devshed is the only way I know how to do prepared statement.
I have a feeling you mean I should do something like this:
$stmt = mysqli_prepare($conn,"SELECT id,date_and_time,query_type,followed_word,query_string,followed_page_original,followed_page_converted,referral_page_original,referral_page_converted,followee_username,follower_username,gender,age_range,date_of_birth,skin_complexion,height,weight,sexual_orientation,religion,education,profession,marital_status,working_status,home_town,home_neighbourhood,home_borough,home_council,home_city,home_county,home_district,home_region,home_state,home_country FROM following_histories WHERE followee_username = ?";);
Right ?
@Requinix & @Barand: What are your inputs here ?
Thanks to all 3 of you!
-
Long Version Associative Array:
/* associative array */ $row = mysqli_fetch_array($result, MYSQLI_ASSOC); echo $row["name"]." ".$row["author_name"]." ".$row['price'];
Short Version Associative Array:
($row = mysqli_fetch_assoc($result))
As in:
while ($row = mysqli_fetch_assoc($result)) { echo $row["name"]." ".$row["class"]." ".$row['roll_no']."<br />";Q1. Correct ?
Q2. Long Version Numeric Array:
/* numeric array */ $row = mysqli_fetch_array($result, MYSQLI_NUM); echo $row[0]." ".$row[1]." ".$row[2];
Can you not do short Version like this :
($row = mysqli_fetch_num($result))
As in:
while ($row = mysqli_fetch_num($result)) { echo $row["name"]." ".$row["class"]." ".$row['roll_no']."<br />";Q3. Long Version "Both":
/* associative and numeric array */ $row = mysqli_fetch_array($result, MYSQLI_BOTH); echo $row[0]." ".$row["author_name"]." ".$row[2];
Can you not do short Version like this:
($row = mysqli_fetch_both($result))
As in:
while ($row = mysqli_fetch_both($result)) { echo $row["name"]." ".$row["class"]." ".$row['roll_no']."<br />"; -
I think this line found in the tutorial is an error:
$total_pages = $conn->query('SELECT * FROM browsing_histories')->num_rows;It should not have been $total_pages but $total_records. Correct ?
Tutorial here:
https://codeshack.io/how-to-create-pagination-php-mysql/ -
14 hours ago, requinix said:
The only difference between the "OOP" and "procedural" versions is that one uses $object->function_name($arguments) and the other uses similar_function_name($object, $arguments).
I didn't look hard at what you did but I did see you did more than just change the function calls.
If you look closely then you will see I originally did what you suggested. However, saying all this, I am stuck on this line and so care to help me convert that ?
$total_pages = $conn->query('SELECT * FROM browsing_histories')->num_rows; //I NEED HELP TO SUBSTITUTE THIS TO PROCEDURAL STYLE -
I commented-out their lines and added mine beneath their lines that I substituted.
-
Folks,
Look what I found here:
https://codeshack.io/how-to-create-pagination-php-mysql/
It is oop pagination using mysqli.
I only know mysqli and procedural. So, teach me to convert it to procedural.My procedural style code is this alongside their OOP:
<?php if (!$conn) { $error = mysqli_connect_error(); $errno = mysqli_connect_errno(); print "$errno: $error\n"; exit(); } // Get the total number of records from our table "students". $total_pages = $conn->query('SELECT * FROM browsing_histories')->num_rows; //I NEED HELP TO SUBSTITUTE THIS TO PROCEDURAL STYLE // Check if the page number is specified and check if it's a number, if not return the default page number which is 1. $page = isset($_GET['page']) && is_numeric($_GET['page']) ? $_GET['page'] : 1; // Number of results to show on each page. $num_results_on_page = 5; // if ($stmt = $conn->prepare('SELECT * FROM following_histories ORDER BY id LIMIT ?,?')) { if($query = "SELECT id,date_and_time,query_type,followed_word,query_string,browsed_page_original,browsed_page_converted,referral_page_original,referral_page_converted,username,gender,age_range,date_of_birth,skin_complexion,height,weight,sexual_orientation,religion,education,profession,marital_status,working_status,country_of_birth,home_town,home_neighbourhood,home_borough,home_council,home_city,home_county,home_district,home_region,home_state,home_country FROM browsing_histories WHERE username = ? ORDER BY id LIMIT ? OFFSET ?"){ //my substitution of above line $stmt = mysqli_prepare($conn,$query); //MY SUBSTITUTION OF ABOVE LINE // Calculate the page to get the results we need from our table. $calc_page = ($page - 1) * $num_results_on_page; //$stmt->bind_param('ii', $calc_page, $num_results_on_page); mysqli_stmt_bind_param($stmt,'sii',$followee_username,$calc_page,$num_results_on_page); //MY SUBSTITUTION OF ABOVE LINE //$stmt->execute(); mysqli_stmt_execute($stmt); //MY SUBSTITUTION OF ABOVE LINE // Get the results... //$result = $stmt->get_result(); $result = mysqli_stmt_get_result($stmt) //MY SUBSTITUTION OF ABOVE LINE ?> <!DOCTYPE html> <html> <head> <title>PHP & MySQL Pagination by CodeShack</title> <meta charset="utf-8"> <style> html { font-family: Tahoma, Geneva, sans-serif; padding: 20px; background-color: #F8F9F9; } table { border-collapse: collapse; width: 500px; } td, th { padding: 10px; } th { background-color: #54585d; color: #ffffff; font-weight: bold; font-size: 13px; border: 1px solid #54585d; } td { color: #636363; border: 1px solid #dddfe1; } tr { background-color: #f9fafb; } tr:nth-child(odd) { background-color: #ffffff; } .pagination { list-style-type: none; padding: 10px 0; display: inline-flex; justify-content: space-between; box-sizing: border-box; } .pagination li { box-sizing: border-box; padding-right: 10px; } .pagination li a { box-sizing: border-box; background-color: #e2e6e6; padding: 8px; text-decoration: none; font-size: 12px; font-weight: bold; color: #616872; border-radius: 4px; } .pagination li a:hover { background-color: #d4dada; } .pagination .next a, .pagination .prev a { text-transform: uppercase; font-size: 12px; } .pagination .currentpage a { background-color: #518acb; color: #fff; } .pagination .currentpage a:hover { background-color: #518acb; } </style> </head> <body> <table> <tr> <th>Name</th> <th>Age</th> <th>Join Date</th> </tr> <?php while ($row = $result->fetch_assoc()): ?> <tr> <td><?php echo $row['id']; ?></td> <td><?php echo $row['followee_username']; ?></td> <td><?php echo $row['follower_username']; ?></td> </tr> <?php endwhile; ?> </table> <?php if (ceil($total_pages / $num_results_on_page) > 0): ?> <ul class="pagination"> <?php if ($page > 1): ?> <li class="prev"><a href="pagination.php?page=<?php echo $page-1 ?>">Prev</a></li> <?php endif; ?> <?php if ($page > 3): ?> <li class="start"><a href="pagination.php?page=1">1</a></li> <li class="dots">...</li> <?php endif; ?> <?php if ($page-2 > 0): ?><li class="page"><a href="pagination.php?page=<?php echo $page-2 ?>"><?php echo $page-2 ?></a></li><?php endif; ?> <?php if ($page-1 > 0): ?><li class="page"><a href="pagination.php?page=<?php echo $page-1 ?>"><?php echo $page-1 ?></a></li><?php endif; ?> <li class="currentpage"><a href="pagination.php?page=<?php echo $page ?>"><?php echo $page ?></a></li> <?php if ($page+1 < ceil($total_pages / $num_results_on_page)+1): ?><li class="page"><a href="pagination.php?page=<?php echo $page+1 ?>"><?php echo $page+1 ?></a></li><?php endif; ?> <?php if ($page+2 < ceil($total_pages / $num_results_on_page)+1): ?><li class="page"><a href="pagination.php?page=<?php echo $page+2 ?>"><?php echo $page+2 ?></a></li><?php endif; ?> <?php if ($page < ceil($total_pages / $num_results_on_page)-2): ?> <li class="dots">...</li> <li class="end"><a href="pagination.php?page=<?php echo ceil($total_pages / $num_results_on_page) ?>"><?php echo ceil($total_pages / $num_results_on_page) ?></a></li> <?php endif; ?> <?php if ($page < ceil($total_pages / $num_results_on_page)): ?> <li class="next"><a href="pagination.php?page=<?php echo $page+1 ?>">Next</a></li> <?php endif; ?> </ul> <?php endif; ?> </body> </html> <?php //$stmt->close(); mysqli_stmt_close($stmt); //MY SUBSTITUTION OF ABOVE LINE } ?> -
Folks,
I got this pagination without PREP STMT working ABSOLUTELY FINE:
<?php //Required PHP Files. include 'header_account.php'; //Required on all webpages of the Account. ?> <?php if (!$conn) { $error = mysqli_connect_error(); $errno = mysqli_connect_errno(); print "$errno: $error\n"; exit(); } //Grab Username of who's Browsing History needs to be searched. if (isset($_GET['followee_username']) && !empty($_GET['followee_username'])) { $followee_username = $_GET['followee_username']; if($followee_username != "followee_all" OR $followee_username != "Followee_All") { $query = "SELECT * FROM following_histories WHERE followee_username = \"$followee_username\""; $query_type = "followee_username"; $followed_word = "$followee_username"; $followee_username = "$followee_username"; echo "$followee_username"; } else { $query = "SELECT * FROM following_histories"; $query_type = "followee_all"; $followed_word = "followee_all"; echo "all"; } } if (isset($_GET['followee_id']) && !empty($_GET['followee_id'])) { $followee_id = $_GET['followee_id']; $query = "SELECT * FROM following_histories WHERE id = \"$followee_id\""; $query_type = "followee_id"; $followed_word = "$followee_id"; echo "$followee_id"; } if (isset($_GET['followee_date_and_time']) && !empty($_GET['followee_date_and_time'])) { $followee_date_and_time = $_GET['followee_date_and_time']; $query = "SELECT * FROM following_histories WHERE date_and_time = \"$followee_date_and_time\""; $query_type = "followee_date_and_time"; $followed_word = "$followee_date_and_time"; } if (isset($_GET['followee_followed_page_converted']) && !empty($_GET['followee_followed_page_converted'])) { $followee_followed_page_converted = $_GET['followee_followed_page_converted']; $query = "SELECT * FROM following_histories WHERE followed_page_converted = \"$followee_followed_page_converted\""; $query_type = "followee_followed_page_converted"; $followed_word = "$followee_followed_page_converted"; } if (isset($_GET['followee_referral_page_converted']) && !empty($_GET['followee_referral_page_converted'])) { $followee_referral_page_converted = $_GET['followee_referral_page_converted']; $query = "SELECT * FROM following_histories WHERE referral_page_converted = \"$followee_referral_page_converted\""; $query_type = "followee_referral_page_converted"; $followed_word = "$followee_referral_page_converted"; } if (isset($_GET['followee_gender']) && !empty($_GET['followee_gender'])) { $followee_gender = $_GET['followee_gender']; $query = "SELECT * FROM following_histories WHERE gender = \"$followee_gender\""; $query_type = "followee_gender"; $followed_word = "$followee_gender"; } if (isset($_GET['followee_age_range']) && !empty($_GET['followee_age_range'])) { $followee_age_range = $_GET['followee_age_range']; $query = "SELECT * FROM following_histories WHERE age_range = \"$followee_age_range\""; $query_type = "followee_age_range"; $followed_word = "$followee_age_range"; } if (isset($_GET['followee_date_of_birth']) && !empty($_GET['followee_date_of_birth'])) { $followee_date_of_birth = $_GET['followee_date_of_birth']; $query = "SELECT * FROM following_histories WHERE date_of_birth = \"$followee_date_of_birth\""; $query_type = "followee_date_of_birth"; $followed_word = "$followee_date_of_birth"; } if (isset($_GET['followee_skin_complexion']) && !empty($_GET['followee_skin_complexion'])) { $followee_skin_complexion = $_GET['followee_skin_complexion']; $query = "SELECT * FROM following_histories WHERE skin_complexion = \"$followee_skin_complexion\""; $query_type = "followee_skin_complexion"; $followed_word = "$followee_skin_complexion"; } if (isset($_GET['followee_height']) && !empty($_GET['followee_height'])) { $followee_height = $_GET['followee_height']; $query = "SELECT * FROM following_histories WHERE height = \"$followee_height\""; $query_type = "followee_height"; $followed_word = "$followee_height"; } if (isset($_GET['followee_weight']) && !empty($_GET['followee_weight'])) { $followee_weight = $_GET['followee_weight']; $query = "SELECT * FROM following_histories WHERE weight = \"$followee_weight\""; $query_type = "followee_weight"; $followed_word = "$followee_weight"; } if (isset($_GET['followee_sexual_orientation']) && !empty($_GET['followee_sexual_orientation'])) { $followee_sexual_orientation = $_GET['followee_sexual_orientation']; $query = "SELECT * FROM following_histories WHERE sexual_orientation = \"$followee_sexual_orientation\""; $query_type = "followee_sexual_orientation"; $followed_word = "$followee_sexual_orientation"; } if (isset($_GET['followee_religion']) && !empty($_GET['followee_religion'])) { $followee_religion = $_GET['followee_religion']; $query = "SELECT * FROM following_histories WHERE religion = \"$followee_religion\""; $query_type = "followee_religion"; $followed_word = "$followee_religion"; } if (isset($_GET['followee_education']) && !empty($_GET['followee_education'])) { $followee_education = $_GET['followee_education']; $query = "SELECT * FROM following_histories WHERE education = \"$followee_education\""; $query_type = "followee_education"; $followed_word = "$followee_education"; } if (isset($_GET['followee_profession']) && !empty($_GET['followee_profession'])) { $followee_profession = $_GET['followee_profession']; $query = "SELECT * FROM following_histories WHERE profession = \"$followee_profession\""; $query_type = "followee_profession"; $followed_word = "$followee_profession"; } if (isset($_GET['followee_marital_status']) && !empty($_GET['followee_marital_status'])) { $followee_marital_status = $_GET['followee_marital_status']; $query = "SELECT * FROM following_histories WHERE marital_status = \"$followee_marital_status\""; $query_type = "followee_marital_status"; $followed_word = "$followee_marital_status"; } if (isset($_GET['followee_working_status']) && !empty($_GET['followee_working_status'])) { $followee_working_status = $_GET['followee_working_status']; $query = "SELECT * FROM following_histories WHERE working_status = \"$followee_working_status\""; $query_type = "followee_working_status"; $followed_word = "$followee_working_status"; } if (isset($_GET['followee_country_of_birth']) && !empty($_GET['followee_country_of_birth'])) { $followee_country_of_birth = $_GET['followee_country_of_birth']; $query = "SELECT * FROM following_histories WHERE country_of_birth = \"$followee_country_of_birth\""; $query_type = "followee_country_of_birth"; $followed_word = "$followee_country_of_birth"; } if (isset($_GET['followee_home_town']) && !empty($_GET['followee_home_town'])) { $followee_home_town = $_GET['followee_home_town']; $query = "SELECT * FROM following_histories WHERE home_town = \"$followee_home_town\""; $query_type = "followee_home_town"; $followed_word = "$followee_home_town"; } if (isset($_GET['followee_home_neighbourhood']) && !empty($_GET['followee_home_neighbourhood'])) { $followee_home_neighbourhood = $_GET['followee_home_neighbourhood']; $query = "SELECT * FROM following_histories WHERE home_neighbourhood = \"$followee_home_neighbourhood\""; $query_type = "followee_home_neighbourhood"; $followed_word = "$followee_home_neighbourhood"; } if (isset($_GET['followee_home_borough']) && !empty($_GET['followee_home_borough'])) { $followee_home_borough = $_GET['followee_home_borough']; $query = "SELECT * FROM following_histories WHERE home_borough = \"$followee_home_borough\""; $query_type = "followee_home_borough"; $followed_word = "$followee_home_borough"; } if (isset($_GET['followee_home_city']) && !empty($_GET['followee_home_city'])) { $followee_home_city = $_GET['followee_home_city']; $query = "SELECT * FROM following_histories WHERE home_city = \"$followee_home_city\""; $query_type = "followee_home_city"; $followed_word = "$followee_home_city"; } if (isset($_GET['followee_home_county']) && !empty($_GET['followee_home_county'])) { $followee_home_county = $_GET['followee_home_county']; $query = "SELECT * FROM following_histories WHERE home_county = \"$followee_home_county\""; $query_type = "followee_home_county"; $followed_word = "$followee_home_county"; } if (isset($_GET['followee_home_district']) && !empty($_GET['followee_home_district'])) { $followee_home_district = $_GET['followee_home_district']; $query = "SELECT * FROM following_histories WHERE home_district = \"$followee_home_district\""; $query_type = "followee_home_district"; $followed_word = "$followee_home_district"; } if (isset($_GET['followee_home_region']) && !empty($_GET['followee_home_region'])) { $followee_home_region = $_GET['followee_home_region']; $query = "SELECT * FROM following_histories WHERE home_region = \"$followee_home_region\""; $query_type = "followee_home_region"; $followed_word = "$followee_home_region"; } if (isset($_GET['followee_home_state']) && !empty($_GET['followee_home_state'])) { $followee_home_state = $_GET['followee_home_state']; $query = "SELECT * FROM following_histories WHERE home_state = \"$followee_home_state\""; $query_type = "followee_home_state"; $followed_word = "$followee_home_state"; } if (isset($_GET['followee_home_country']) && !empty($_GET['followee_home_country'])) { $followee_home_country = $_GET['followee_home_country']; $query = "SELECT * FROM following_histories WHERE home_country = \"$followee_home_country\""; $query_type = "followee_home_country"; $followed_word = "$followee_home_country"; } $referral_page_http = $_SERVER['HTTP_REFERRER']; $referral_page = "$referral_page_http"; $referral_page_original = "$referral_page"; $query_string = $_SERVER['QUERY_STRING']; $current_page_http = $_SERVER['PHP_SELF']; $current_page = "$current_page_http"; $followed_page_original = "$current_page"; $visiting_pages_count = "1"; if($visiting_pages_count == "") { $visiting_pages_count = "1"; } else { $visiting_pages_count++; } if($visiting_pages_count == "1") { $current_page_converted = "$settings_user_first_quick_link.$current_page"; $referral_page_converted = "$settings_user_first_quick_link.$referral_page"; } elseif($visiting_pages_count == "2") { $current_page_converted = "$settings_admin_second_quick_link.$current_page"; $referral_page_converted = "$settings_admin_second_quick_link.$referral_page"; } elseif($visiting_pages_count == "3") { $current_page_converted = "$settings_user_third_quick_link.$current_page"; $referral_page_converted = "$settings_user_third_quick_link.$referral_page"; } elseif($visiting_pages_count == "4") { $current_page_converted = "$settings_admin_fourth_quick_link.$current_page"; $referral_page_converted = "$settings_admin_fourth_quick_link.$referral_page"; } elseif($visiting_pages_count == "5") { $current_page_converted = "$settings_user_fifth_quick_link.$current_page"; $referral_page_converted = "$settings_user_fifth_quick_link.$referral_page"; } if($visiting_pages_count == "6") { $current_page_converted = "$settings_admin_first_quick_link.$current_page"; $referral_page_converted = "$settings_admin_first_quick_link.$referral_page"; } elseif($visiting_pages_count == "7") { $current_page_converted = "$settings_user_second_quick_link.$current_page"; $referral_page_converted = "$settings_user_second_quick_link.$referral_page"; } elseif($visiting_pages_count == "8") { $current_page_converted = "$settings_admin_third_quick_link.$current_page"; $referral_page_converted = "$settings_admin_third_quick_link.$referral_page"; } elseif($visiting_pages_count == "9") { $current_page_converted = "$settings_user_fourth_quick_link.$current_page"; $referral_page_converted = "$settings_user_fourth_quick_link.$referral_page"; } elseif($visiting_pages_count == "10") { $current_page_converted = "$settings_admin_fifth_quick_link.$current_page"; $referral_page_converted = "$settings_admin_fifth_quick_link.$referral_page"; } else { $visiting_pages_count = "1"; $current_page_converted = "$settings_user_first_quick_link.$current_page"; $referral_page_converted = "$settings_user_first_quick_link.$referral_page"; } $followed_page_converted = "$current_page_converted"; $follower_username = $user; $follower_browser = $_SERVER['HTTP_USER_AGENT']; //Insert the User's Click Logs into Mysql Database using Php's Sql Injection Prevention Method "Prepared Statements". $stmt = mysqli_prepare($conn,"INSERT INTO following_histories(query_type,followed_word,query_string,followed_page_original,followed_page_converted,referral_page_original,referral_page_converted,followee_username,follower_username,gender,age_range,date_of_birth,skin_complexion,height,weight,sexual_orientation,religion,education,profession,marital_status,working_status,home_town,home_neighbourhood,home_borough,home_council,home_city,home_county,home_district,home_region,home_state,home_country) VALUES (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)"); mysqli_stmt_bind_param($stmt,'ssssssssssiisssssssssssssssssss',$query_type,$followed_word,$query_string,$followed_page_original,$followed_page_converted,$referral_page_original,$referral_page_converted,$followee_username,$follower_username,$gender,$age_range,$date_of_birth,$skin_complexion,$height,$weight,$sexual_orientation,$religion,$education,$profession,$marital_status,$working_status,$home_town,$home_neighbourhood,$home_borough,$home_council,$home_city,$home_county,$home_district,$home_region,$home_state,$home_country); mysqli_stmt_execute($stmt); //Check if User's Click Logs have been successfully submitted or not. if (!$stmt) { echo "Sorry! Our system is currently experiencing a problem logging your following! We will continuously try logging your clicks!"; exit(); } else { mysqli_stmt_fetch($stmt); mysqli_stmt_close($stmt); } $query_type_label = str_replace("_"," ","$query_type"); //Removing underscores so they don't show-up on the html. $query_type_label = ucwords("$query_type_label"); //Upper Casing the first characters. ?> <!DOCTYPE html> <html> <head> <meta content="text/html; charset=ISO-8859-1" http-equiv=" content-type"> <title><?php echo "Browsing History in $server_time Time.";?></title> <meta name="viewport" content="width=device-width, initial-scale=1"> </head> <body> <br> <p align="center"><span style="font-weight:bold;"><?php echo "Search Result for:<br> $query_type_label = \"${$query_type}\""; ?></span></p> <br> <br> <?php $result = mysqli_query($conn,$query); $rows_num = mysqli_num_rows($result); //Total Number of Pages records are spread-over. $page_count = 100; $page_size = ceil($rows_num / $page_count); //Get the Page Number. Default is 1 (First Page). $page_number = $_GET["page_number"]; if ($page_number == "") $page_number = 1; $offset = ($page_number -1) * $page_size; $query .= " limit {$offset},{$page_size}"; $result = mysqli_query($conn,$query); ?> <table width="1500" border="0" cellpadding="5" cellspacing="2" bgcolor="#666666"> <?php if($rows_num) { printf("<b> %d Result Found ...</b>\n",$rows_num); ?><br> <br> <tr name="headings"> <td bgcolor="#FFFFFF" name="column-heading_submission-number">Submission Number</td> <td bgcolor="#FFFFFF" name="column-heading_logging-server-date-and-time">Date & Time in <?php echo "$server_time";?></td> <td bgcolor="#FFFFFF" name="column-heading_browsed-page-converted">Browsed Page Converted (Visit Page) </td> <td bgcolor="#FFFFFF" name="column-heading_browsed-page-converted">Browsed Page Converted (Check Stats) </td> <td bgcolor="#FFFFFF" name="column-heading_referral-page-converted">Referral Page Converted (Visit Page) </td> <td bgcolor="#FFFFFF" name="column-heading_referral-page-converted">Referral Page Converted (Check Stats) </td> <td bgcolor="#FFFFFF" name="column-heading_username">Followee Username (Visit Page)</td> <td bgcolor="#FFFFFF" name="column-heading_username">Followee Username (Check Stats)</td> <td bgcolor="#FFFFFF" name="column-heading_username">Follower Username (Visit Page)</td> <td bgcolor="#FFFFFF" name="column-heading_username">Follower Username (Check Stats)</td> <td bgcolor="#FFFFFF" name="column-heading_gender">Gender</td> <td bgcolor="#FFFFFF" name="column-heading_age-range">Age Range</td> <td bgcolor="#FFFFFF" name="column-heading_date-of-birth">Date Of Birth</td> <td bgcolor="#FFFFFF" name="column-heading_skin-complexion">Skin Complexion</td> <td bgcolor="#FFFFFF" name="column-heading_height">Height</td> <td bgcolor="#FFFFFF" name="column-heading_weight">Weight</td> <td bgcolor="#FFFFFF" name="column-heading_sexual-orientation">Sexual Orientation</td> <td bgcolor="#FFFFFF" name="column-heading_religion">Religion</td> <td bgcolor="#FFFFFF" name="column-heading_education">Education</td> <td bgcolor="#FFFFFF" name="column-heading_profession">Profession</td> <td bgcolor="#FFFFFF" name="column-heading_marital-status">Marital Status</td> <td bgcolor="#FFFFFF" name="column-heading_working-status">Working Status</td> <td bgcolor="#FFFFFF" name="column-heading_country-of-birth">Country Of Birth</td> <td bgcolor="#FFFFFF" name="column-heading_home-town">Home Town</td> <td bgcolor="#FFFFFF" name="column-heading_home-neighbourhood">Home Neighbourhood</td> <td bgcolor="#FFFFFF" name="column-heading_home-borough">Home Borough</td> <td bgcolor="#FFFFFF" name="column-heading_home-city">Home City</td> <td bgcolor="#FFFFFF" name="column-heading_home-county">Home County</td> <td bgcolor="#FFFFFF" name="column-heading_home-district">Home District</td> <td bgcolor="#FFFFFF" name="column-heading_home-region">Home Region</td> <td bgcolor="#FFFFFF" name="column-heading_home-state">Home State</td> <td bgcolor="#FFFFFF" name="column-heading_home-country">Home Country</td> </tr> <?php while($row = mysqli_fetch_array($result)) { ?> <tr name="user-details"> <td bgcolor="#FFFFFF" name="submission-number"><a href="following_histories_v1.php?followee_id=<?php echo $row['id']; ?>&page_number=1"><?php echo $row['id']; ?></a></td> <td bgcolor="#FFFFFF" name="logging-server-date-&-time"><a href="following_histories_v1.php?followee_date_and_time=<?php echo $row['date_and_time']; ?>&page_number=1"><?php echo $row['date_and_time']; ?></a></td> <td bgcolor="#FFFFFF" name="browsed-page-converted_visit-page"><a href="<?php echo $row['followed_page_converted']; ?>&page_number=1"><?php echo $row['followed_page_converted']; ?></a></td> <td bgcolor="#FFFFFF" name="browsed-page-converted_stats-page"><a href="following_histories_v1.php?followee_followed_page_converted=<?php echo $row['followed_page_converted']; ?>&page_number=1"><?php echo $row['followed_page_converted']; ?></a></td> <td bgcolor="#FFFFFF" name="referral-page-converted_visit-page"><a href="<?php echo $row['referral_page_converted']; ?>&page_number=1"><?php echo $row['referral_page_converted']; ?></a></td> <td bgcolor="#FFFFFF" name="referral-page-converted_stats-page"><a href="following_histories_v1.php?followee_referral_page_converted=<?php echo $row['referral_page_converted']; ?>&page_number=1"><?php echo $row['referral_page_converted']; ?></a></td> <td bgcolor="#FFFFFF" name="profile-page-followee_visit-page"><a href="profile.php?followee_username=<?php echo $row['followee_username']; ?>&page_number=1"><?php echo $row['followee_username']; ?></a></td> <td bgcolor="#FFFFFF" name="profile-page-followee_stats-page"><a href="following_histories_v1.php?followee_username=<?php echo $row['followee_username']; ?>&page_number=1"><?php echo $row['followee_username']; ?></a></td> <td bgcolor="#FFFFFF" name="profile-page-follower_visit-page"><a href="profile.php?followee_username=<?php echo $row['follower_username']; ?>&page_number=1"><?php echo $row['follower_username']; ?></a></td> <td bgcolor="#FFFFFF" name="profile-page-follower_stats-page"><a href="following_histories_v1.php?followee_username=<?php echo $row['follower_username']; ?>&page_number=1"><?php echo $row['follower_username']; ?></a></td> <td bgcolor="#FFFFFF" name="gender"><a href="following_histories_v1.php?followee_gender=<?php echo $row['gender']; ?>&page_number=1"><?php echo $row['gender']; ?></a></td> <td bgcolor="#FFFFFF" name="age-range"><a href="following_histories_v1.php?followee_age_range=<?php echo $row['age_range']; ?>&page_number=1"><?php echo $row['age_range']; ?></a></td> <td bgcolor="#FFFFFF" name="date-of-birth"><a href="following_histories_v1.php?followee_date_of_birth=<?php echo $row['date_of_birth']; ?>&page_number=1"><?php echo $row['date_of_birth']; ?></a></td> <td bgcolor="#FFFFFF" name="skin-complexion"><a href="following_histories_v1.php?followee_skin_complexion=<?php echo $row['skin_complexion']; ?>&page_number=1"><?php echo $row['skin_complexion']; ?></a></td> <td bgcolor="#FFFFFF" name="height"><a href="following_histories_v1.php?followee_height=<?php echo $row['height']; ?>&page_number=1"><?php echo $row['height']; ?></a></td> <td bgcolor="#FFFFFF" name="weight"><a href="following_histories_v1.php?followee_height=<?php echo $row['weight']; ?>&page_number=1"><?php echo $row['weight']; ?></a></td> <td bgcolor="#FFFFFF" name="sexual-orientation"><a href="following_histories_v1.php?followee_sexual_orientation=<?php echo $row['sexual_orientation']; ?>&page_number=1"><?php echo $row['sexual_orientation']; ?></a></td> <td bgcolor="#FFFFFF" name="religion"><a href="following_histories_v1.php?followee_religion=<?php echo $row['religion']; ?>&page_number=1"><?php echo $row['religion']; ?></a></td> <td bgcolor="#FFFFFF" name="education"><a href="following_histories_v1.php?followee_education=<?php echo $row['education']; ?>&page_number=1"><?php echo $row['education']; ?></a></td> <td bgcolor="#FFFFFF" name="profession"><a href="following_histories_v1.php?followee_profession=<?php echo $row['profession']; ?>&page_number=1"><?php echo $row['profession']; ?></a></td> <td bgcolor="#FFFFFF" name="marital-status"><a href="following_histories_v1.php?followee_marital_status=<?php echo $row['marital_status']; ?>&page_number=1"><?php echo $row['marital_status']; ?></a></td> <td bgcolor="#FFFFFF" name="working-status"><a href="following_histories_v1.php?followee_working_status=<?php echo $row['working_status']; ?>&page_number=1"><?php echo $row['working_status']; ?></a></td> <td bgcolor="#FFFFFF" name="country-of-birth"><a href="following_histories_v1.php?followee_country_of_birth=<?php echo $row['country_of_birth']; ?>&page_number=1"><?php echo $row['country_of_birth']; ?></a></td> <td bgcolor="#FFFFFF" name="home-town"><a href="following_histories_v1.php?followee_home_town=<?php echo $row['home_town']; ?>&page_number=1"><?php echo $row['home_town']; ?></a></td> <td bgcolor="#FFFFFF" name="home-neighbourhood"><a href="following_histories_v1.php?followee_home_neighbourhood=<?php echo $row['home_neighbourhood']; ?>&page_number=1"><?php echo $row['home_neighbourhood']; ?></a></td> <td bgcolor="#FFFFFF" name="home-borough"><a href="following_histories_v1.php?followee_home_borough=<?php echo $row['home_borough']; ?>&page_number=1"><?php echo $row['home_borough']; ?></a></td> <td bgcolor="#FFFFFF" name="home-city"><a href="following_histories_v1.php?followee_home_city=<?php echo $row['home_city']; ?>&page_number=1"><?php echo $row['home_city']; ?></a></td> <td bgcolor="#FFFFFF" name="home-county"><a href="following_histories_v1.php?followee_home_county=<?php echo $row['home_county']; ?>&page_number=1"><?php echo $row['home_county']; ?></a></td> <td bgcolor="#FFFFFF" name="home-district"><a href="following_histories_v1.php?followee_home_district=<?php echo $row['home_district']; ?>&page_number=1"><?php echo $row['home_district']; ?></a></td> <td bgcolor="#FFFFFF" name="home-region"><a href="following_histories_v1.php?followee_home_region=<?php echo $row['home_region']; ?>&page_number=1"><?php echo $row['home_region']; ?></a></td> <td bgcolor="#FFFFFF" name="home-state"><a href="following_histories_v1.php?followee_home_state=<?php echo $row['home_state']; ?>&page_number=1"><?php echo $row['home_state']; ?></a></td> <td bgcolor="#FFFFFF" name="home-country"><a href="following_histories_v1.php?followee_home_country=<?php echo $row['home_country']; ?>&page_number=1"><?php echo $row['home_country']; ?></a></td> </tr> <?php } ?> <tr name="pagination"> <td colspan="30" bgcolor="#FFFFFF"> Result Pages: <?php if($rows_num <= $page_size) { echo "Page 1"; } else { for($i=1;$i<=$page_count;$i++) echo "<a href=\"{$_SERVER['PHP_SELF']}?$query_type=${$query_type}&page_number={$i}\">{$i}</a> "; } ?> </td> </tr> <?php } else { ?> <tr> <td bgcolor="#FFFFFF">No record found! Try another time.</td> </tr> <?php } ?> </table> <br> <br> <p align="center"><span style="font-weight:bold;"><?php echo "Search Result for:<br> $query_type_label = \"${$query_type}\""; ?></span></p> <br> <br> <br> </body> </html>The ISSUE STARTS as soon as I try adding PREP STMT.
Here is my attempt so far:
<?php //Required PHP Files. include 'header_account.php'; //Required on all webpages of the Account. ?> <?php if (!$conn) { $error = mysqli_connect_error(); $errno = mysqli_connect_errno(); print "$errno: $error\n"; exit(); } //Grab Username of who's Browsing History needs to be searched. if (isset($_GET['followee_username']) && !empty($_GET['followee_username'])) { $followee_username = $_GET['followee_username']; if($followee_username != 'followee_all' OR $followee_username != 'Followee_All') { //$query = "SELECT * FROM browsing_histories WHERE username = \"$followee_username\""; $query_type = "followee_username"; $followed_word = "$followee_username"; //$followee_username = "$followee_username"; $query = "SELECT id,date_and_time,query_type,followed_word,query_string,followed_page_original,followed_page_converted,referral_page_original,referral_page_converted,followee_username,follower_username,gender,age_range,date_of_birth,skin_complexion,height,weight,sexual_orientation,religion,education,profession,marital_status,working_status,home_town,home_neighbourhood,home_borough,home_council,home_city,home_county,home_district,home_region,home_state,home_country FROM following_histories WHERE followee_username = ?"; $stmt = mysqli_prepare($conn,$query); mysqli_stmt_bind_param($stmt,'s',$followee_username); mysqli_stmt_execute($stmt); //Check if User's details was successfully extracted or not from 'details_contact_home' tbl. if (!$stmt) { echo "ERROR 3: Sorry! Our system is currently experiencing a problem logging you in!"; exit(); } else { $result = mysqli_stmt_bind_result($stmt,$followee_browsing_history_submission_id,$followee_browsing_history_submission_date_and_time,$followee_query_type,$followee_followed_word,$followee_query_string,$followee_browsed_page_original,$followee_browsed_page_converted,$followee_referral_page_original,$followee_referral_page_converted,$followee_username,$followee_gender,$followee_age_range,$followee_date_of_birth,$followee_skin_complexion,$followee_height,$followee_weight,$followee_sexual_orientation,$followee_religion,$followee_education,$followee_profession,$followee_marital_status,$followee_working_status,$followee_country_of_birth,$followee_home_town,$followee_home_neighbourhood,$followee_home_borough,$followee_home_council,$followee_home_city,$followee_home_county,$followee_home_district,$followee_home_region,$followee_home_state,$followee_home_country); mysqli_stmt_fetch($stmt); mysqli_stmt_close($stmt); } } else { $query = "SELECT * FROM following_histories"; $query_type = "followee_all"; $followed_word = "followee_all"; echo "all"; echo "all search"; } } if (isset($_GET['follower_username']) && !empty($_GET['follower_username'])) { $follower_username = $_GET['follower_username']; if($follower_username != 'follower_all' OR $follower_username != 'Follower_All') { //$query = "SELECT * FROM browsing_histories WHERE username = \"$follower_username\""; $query_type = "follower_username"; $followed_word = "$follower_username"; $query = "SELECT id,date_and_time,query_type,followed_word,query_string,followed_page_original,followed_page_converted,referral_page_original,referral_page_converted,followee_username,follower_username,gender,age_range,date_of_birth,skin_complexion,height,weight,sexual_orientation,religion,education,profession,marital_status,working_status,followee_country_of_birth,home_town,home_neighbourhood,home_borough,home_council,home_city,home_county,home_district,home_region,home_state,home_country FROM browsing_histories WHERE followee_username = ?"; $stmt = mysqli_prepare($conn,$query); mysqli_stmt_bind_param($stmt,'s',$follower_username); mysqli_stmt_execute($stmt); //Check if User's details was successfully extracted or not from 'details_contact_home' tbl. if (!$stmt) { echo "ERROR 3: Sorry! Our system is currently experiencing a problem logging you in!"; exit(); } else { $result = mysqli_stmt_bind_result($stmt,$followee_browsing_history_submission_id,$followee_browsing_history_submission_date_and_time,$followee_query_type,$followee_followed_word,$followee_query_string,$followee_browsed_page_original,$followee_browsed_page_converted,$followee_referral_page_original,$followee_referral_page_converted,$followee_username,$followee_gender,$followee_age_range,$followee_date_of_birth,$followee_skin_complexion,$followee_height,$followee_weight,$followee_sexual_orientation,$followee_religion,$followee_education,$followee_profession,$followee_marital_status,$followee_working_status,$followee_country_of_birth,$followee_home_town,$followee_home_neighbourhood,$followee_home_borough,$followee_home_council,$followee_home_city,$followee_home_county,$followee_home_district,$followee_home_region,$followee_home_state,$followee_home_country); mysqli_stmt_fetch($stmt); mysqli_stmt_close($stmt); } } else { $query = "SELECT * FROM following_histories"; $query_type = "follower_all"; $followed_word = "follower_all"; echo "all"; echo "all search"; } } if (isset($_GET['followee_id']) && !empty($_GET['followee_id'])) { $followee_id = $_GET['followee_id']; $query = "SELECT * FROM following_histories WHERE id = \"$followee_id\""; $query_type = "followee_id"; $followed_word = "$followee_id"; echo "$followee_id"; } if (isset($_GET['followee_date_and_time']) && !empty($_GET['followee_date_and_time'])) { $followee_date_and_time = $_GET['followee_date_and_time']; $query = "SELECT * FROM following_histories WHERE date_and_time = \"$followee_date_and_time\""; $query_type = "followee_date_and_time"; $followed_word = "$followee_date_and_time"; } if (isset($_GET['followee_followed_page_converted']) && !empty($_GET['followee_followed_page_converted'])) { $followee_followed_page_converted = $_GET['followee_followed_page_converted']; $query = "SELECT * FROM following_histories WHERE followed_page_converted = \"$followee_followed_page_converted\""; $query_type = "followee_followed_page_converted"; $followed_word = "$followee_followed_page_converted"; } if (isset($_GET['followee_referral_page_converted']) && !empty($_GET['followee_referral_page_converted'])) { $followee_referral_page_converted = $_GET['followee_referral_page_converted']; $query = "SELECT * FROM following_histories WHERE referral_page_converted = \"$followee_referral_page_converted\""; $query_type = "followee_referral_page_converted"; $followed_word = "$followee_referral_page_converted"; } if (isset($_GET['followee_gender']) && !empty($_GET['followee_gender'])) { $followee_gender = $_GET['followee_gender']; $query = "SELECT * FROM following_histories WHERE gender = \"$followee_gender\""; $query_type = "followee_gender"; $followed_word = "$followee_gender"; } if (isset($_GET['followee_age_range']) && !empty($_GET['followee_age_range'])) { $followee_age_range = $_GET['followee_age_range']; $query = "SELECT * FROM following_histories WHERE age_range = \"$followee_age_range\""; $query_type = "followee_age_range"; $followed_word = "$followee_age_range"; } if (isset($_GET['followee_date_of_birth']) && !empty($_GET['followee_date_of_birth'])) { $followee_date_of_birth = $_GET['followee_date_of_birth']; $query = "SELECT * FROM following_histories WHERE date_of_birth = \"$followee_date_of_birth\""; $query_type = "followee_date_of_birth"; $followed_word = "$followee_date_of_birth"; } if (isset($_GET['followee_skin_complexion']) && !empty($_GET['followee_skin_complexion'])) { $followee_skin_complexion = $_GET['followee_skin_complexion']; $query = "SELECT * FROM following_histories WHERE skin_complexion = \"$followee_skin_complexion\""; $query_type = "followee_skin_complexion"; $followed_word = "$followee_skin_complexion"; } if (isset($_GET['followee_height']) && !empty($_GET['followee_height'])) { $followee_height = $_GET['followee_height']; $query = "SELECT * FROM following_histories WHERE height = \"$followee_height\""; $query_type = "followee_height"; $followed_word = "$followee_height"; } if (isset($_GET['followee_weight']) && !empty($_GET['followee_weight'])) { $followee_weight = $_GET['followee_weight']; $query = "SELECT * FROM following_histories WHERE weight = \"$followee_weight\""; $query_type = "followee_weight"; $followed_word = "$followee_weight"; } if (isset($_GET['followee_sexual_orientation']) && !empty($_GET['followee_sexual_orientation'])) { $followee_sexual_orientation = $_GET['followee_sexual_orientation']; $query = "SELECT * FROM following_histories WHERE sexual_orientation = \"$followee_sexual_orientation\""; $query_type = "followee_sexual_orientation"; $followed_word = "$followee_sexual_orientation"; } if (isset($_GET['followee_religion']) && !empty($_GET['followee_religion'])) { $followee_religion = $_GET['followee_religion']; $query = "SELECT * FROM following_histories WHERE religion = \"$followee_religion\""; $query_type = "followee_religion"; $followed_word = "$followee_religion"; } if (isset($_GET['followee_education']) && !empty($_GET['followee_education'])) { $followee_education = $_GET['followee_education']; $query = "SELECT * FROM following_histories WHERE education = \"$followee_education\""; $query_type = "followee_education"; $followed_word = "$followee_education"; } if (isset($_GET['followee_profession']) && !empty($_GET['followee_profession'])) { $followee_profession = $_GET['followee_profession']; $query = "SELECT * FROM following_histories WHERE profession = \"$followee_profession\""; $query_type = "followee_profession"; $followed_word = "$followee_profession"; } if (isset($_GET['followee_marital_status']) && !empty($_GET['followee_marital_status'])) { $followee_marital_status = $_GET['followee_marital_status']; $query = "SELECT * FROM following_histories WHERE marital_status = \"$followee_marital_status\""; $query_type = "followee_marital_status"; $followed_word = "$followee_marital_status"; } if (isset($_GET['followee_working_status']) && !empty($_GET['followee_working_status'])) { $followee_working_status = $_GET['followee_working_status']; $query = "SELECT * FROM following_histories WHERE working_status = \"$followee_working_status\""; $query_type = "followee_working_status"; $followed_word = "$followee_working_status"; } if (isset($_GET['followee_country_of_birth']) && !empty($_GET['followee_country_of_birth'])) { $followee_country_of_birth = $_GET['followee_country_of_birth']; $query = "SELECT * FROM following_histories WHERE country_of_birth = \"$followee_country_of_birth\""; $query_type = "followee_country_of_birth"; $followed_word = "$followee_country_of_birth"; } if (isset($_GET['followee_home_town']) && !empty($_GET['followee_home_town'])) { $followee_home_town = $_GET['followee_home_town']; $query = "SELECT * FROM following_histories WHERE home_town = \"$followee_home_town\""; $query_type = "followee_home_town"; $followed_word = "$followee_home_town"; } if (isset($_GET['followee_home_neighbourhood']) && !empty($_GET['followee_home_neighbourhood'])) { $followee_home_neighbourhood = $_GET['followee_home_neighbourhood']; $query = "SELECT * FROM following_histories WHERE home_neighbourhood = \"$followee_home_neighbourhood\""; $query_type = "followee_home_neighbourhood"; $followed_word = "$followee_home_neighbourhood"; } if (isset($_GET['followee_home_borough']) && !empty($_GET['followee_home_borough'])) { $followee_home_borough = $_GET['followee_home_borough']; $query = "SELECT * FROM following_histories WHERE home_borough = \"$followee_home_borough\""; $query_type = "followee_home_borough"; $followed_word = "$followee_home_borough"; } if (isset($_GET['followee_home_city']) && !empty($_GET['followee_home_city'])) { $followee_home_city = $_GET['followee_home_city']; $query = "SELECT * FROM following_histories WHERE home_city = \"$followee_home_city\""; $query_type = "followee_home_city"; $followed_word = "$followee_home_city"; } if (isset($_GET['followee_home_county']) && !empty($_GET['followee_home_county'])) { $followee_home_county = $_GET['followee_home_county']; $query = "SELECT * FROM following_histories WHERE home_county = \"$followee_home_county\""; $query_type = "followee_home_county"; $followed_word = "$followee_home_county"; } if (isset($_GET['followee_home_district']) && !empty($_GET['followee_home_district'])) { $followee_home_district = $_GET['followee_home_district']; $query = "SELECT * FROM following_histories WHERE home_district = \"$followee_home_district\""; $query_type = "followee_home_district"; $followed_word = "$followee_home_district"; } if (isset($_GET['followee_home_region']) && !empty($_GET['followee_home_region'])) { $followee_home_region = $_GET['followee_home_region']; $query = "SELECT * FROM following_histories WHERE home_region = \"$followee_home_region\""; $query_type = "followee_home_region"; $followed_word = "$followee_home_region"; } if (isset($_GET['followee_home_state']) && !empty($_GET['followee_home_state'])) { $followee_home_state = $_GET['followee_home_state']; $query = "SELECT * FROM following_histories WHERE home_state = \"$followee_home_state\""; $query_type = "followee_home_state"; $followed_word = "$followee_home_state"; } if (isset($_GET['followee_home_country']) && !empty($_GET['followee_home_country'])) { $followee_home_country = $_GET['followee_home_country']; $query = "SELECT * FROM following_histories WHERE home_country = \"$followee_home_country\""; $query_type = "followee_home_country"; $followed_word = "$followee_home_country"; } $referral_page_http = $_SERVER['HTTP_REFERRER']; $referral_page = "$referral_page_http"; $referral_page_original = "$referral_page"; $query_string = $_SERVER['QUERY_STRING']; $current_page_http = $_SERVER['PHP_SELF']; $current_page = "$current_page_http"; $followed_page_original = "$current_page"; $visiting_pages_count = "1"; if($visiting_pages_count == "") { $visiting_pages_count = "1"; } else { $visiting_pages_count++; } if($visiting_pages_count == "1") { $current_page_converted = "$settings_user_first_quick_link.$current_page"; $referral_page_converted = "$settings_user_first_quick_link.$referral_page"; } elseif($visiting_pages_count == "2") { $current_page_converted = "$settings_admin_second_quick_link.$current_page"; $referral_page_converted = "$settings_admin_second_quick_link.$referral_page"; } elseif($visiting_pages_count == "3") { $current_page_converted = "$settings_user_third_quick_link.$current_page"; $referral_page_converted = "$settings_user_third_quick_link.$referral_page"; } elseif($visiting_pages_count == "4") { $current_page_converted = "$settings_admin_fourth_quick_link.$current_page"; $referral_page_converted = "$settings_admin_fourth_quick_link.$referral_page"; } elseif($visiting_pages_count == "5") { $current_page_converted = "$settings_user_fifth_quick_link.$current_page"; $referral_page_converted = "$settings_user_fifth_quick_link.$referral_page"; } if($visiting_pages_count == "6") { $current_page_converted = "$settings_admin_first_quick_link.$current_page"; $referral_page_converted = "$settings_admin_first_quick_link.$referral_page"; } elseif($visiting_pages_count == "7") { $current_page_converted = "$settings_user_second_quick_link.$current_page"; $referral_page_converted = "$settings_user_second_quick_link.$referral_page"; } elseif($visiting_pages_count == "8") { $current_page_converted = "$settings_admin_third_quick_link.$current_page"; $referral_page_converted = "$settings_admin_third_quick_link.$referral_page"; } elseif($visiting_pages_count == "9") { $current_page_converted = "$settings_user_fourth_quick_link.$current_page"; $referral_page_converted = "$settings_user_fourth_quick_link.$referral_page"; } elseif($visiting_pages_count == "10") { $current_page_converted = "$settings_admin_fifth_quick_link.$current_page"; $referral_page_converted = "$settings_admin_fifth_quick_link.$referral_page"; } else { $visiting_pages_count = "1"; $current_page_converted = "$settings_user_first_quick_link.$current_page"; $referral_page_converted = "$settings_user_first_quick_link.$referral_page"; } $followed_page_converted = "$current_page_converted"; $follower_username = $user; $follower_browser = $_SERVER['HTTP_USER_AGENT']; //Insert the User's Click Logs into Mysql Database using Php's Sql Injection Prevention Method "Prepared Statements". $stmt_2 = mysqli_prepare($conn,"INSERT INTO following_histories(query_type,followed_word,query_string,followed_page_original,followed_page_converted,referral_page_original,referral_page_converted,followee_username,follower_username,gender,age_range,date_of_birth,skin_complexion,height,weight,sexual_orientation,religion,education,profession,marital_status,working_status,country_of_birth,home_town,home_neighbourhood,home_borough,home_council,home_city,home_county,home_district,home_region,home_state,home_country) VALUES (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)"); mysqli_stmt_bind_param($stmt_2,'ssssssssssiissssssssssssssssssss',$query_type,$followed_word,$query_string,$followed_page_original,$followed_page_converted,$referral_page_original,$referral_page_converted,$followee_username,$follower_username,$gender,$age_range,$date_of_birth,$skin_complexion,$height,$weight,$sexual_orientation,$religion,$education,$profession,$marital_status,$working_status,$country_of_birth,$home_town,$home_neighbourhood,$home_borough,$home_council,$home_city,$home_county,$home_district,$home_region,$home_state,$home_country); mysqli_stmt_execute($stmt_2); //Check if User's Click Logs have been successfully submitted or not. if (!$stmt_2) { echo "Sorry! Our system is currently experiencing a problem logging your following! We will continuously try logging your clicks!"; exit(); } else { mysqli_stmt_fetch($stmt_2); mysqli_stmt_close($stmt_2); } $query_type_label = str_replace("_"," ","$query_type"); //Removing underscores so they don't show-up on the html. $query_type_label = ucwords("$query_type_label"); //Upper Casing the first characters. ?> <!DOCTYPE html> <html> <head> <meta content="text/html; charset=ISO-8859-1" http-equiv=" content-type"> <title><?php echo "Browsing History in $server_time Time.";?></title> <meta name="viewport" content="width=device-width, initial-scale=1"> </head> <body> <br> <p align="center"><span style="font-weight:bold;"><?php echo "Search Result for:<br> $query_type_label = \"${$query_type}\""; ?></span></p> <br> <br> <?php $result = mysqli_query($conn,$query); $rows_num = mysqli_num_rows($result); //Total Number of Pages records are spread-over. $page_count = 100; $page_size = ceil($rows_num / $page_count); //Get the Page Number. Default is 1 (First Page). $page_number = $_GET["page_number"]; if ($page_number == "") $page_number = 1; $offset = ($page_number -1) * $page_size; $query .= " limit {$offset},{$page_size}"; $result = mysqli_query($conn,$query); ?> <table width="1500" border="0" cellpadding="5" cellspacing="2" bgcolor="#666666"> <?php if(!$rows_num) { ?> <tr> <td bgcolor="#FFFFFF">No record found! Try another time.</td> </tr> <?php } else { printf("<b> %d Result Found ...</b>\n",$rows_num); ?><br> <br> <tr name="headings"> <td bgcolor="#FFFFFF" name="column-heading_submission-number">Submission Number</td> <td bgcolor="#FFFFFF" name="column-heading_logging-server-date-and-time">Date & Time in <?php echo "$server_time";?></td> <td bgcolor="#FFFFFF" name="column-heading_browsed-page-converted">Browsed Page Converted (Visit Page) </td> <td bgcolor="#FFFFFF" name="column-heading_browsed-page-converted">Browsed Page Converted (Check Stats) </td> <td bgcolor="#FFFFFF" name="column-heading_referral-page-converted">Referral Page Converted (Visit Page) </td> <td bgcolor="#FFFFFF" name="column-heading_referral-page-converted">Referral Page Converted (Check Stats) </td> <td bgcolor="#FFFFFF" name="column-heading_username">Followee Username (Visit Page)</td> <td bgcolor="#FFFFFF" name="column-heading_username">Followee Username (Check Stats)</td> <td bgcolor="#FFFFFF" name="column-heading_username">Follower Username (Visit Page)</td> <td bgcolor="#FFFFFF" name="column-heading_username">Follower Username (Check Stats)</td> <td bgcolor="#FFFFFF" name="column-heading_gender">Follower Gender</td> <td bgcolor="#FFFFFF" name="column-heading_age-range">Follower Age Range</td> <td bgcolor="#FFFFFF" name="column-heading_date-of-birth">Follower Date Of Birth</td> <td bgcolor="#FFFFFF" name="column-heading_skin-complexion">Follower Skin Complexion</td> <td bgcolor="#FFFFFF" name="column-heading_height">Follower Height</td> <td bgcolor="#FFFFFF" name="column-heading_weight">Follower Weight</td> <td bgcolor="#FFFFFF" name="column-heading_sexual-orientation">Follower Sexual Orientation</td> <td bgcolor="#FFFFFF" name="column-heading_religion">Follower Religion</td> <td bgcolor="#FFFFFF" name="column-heading_education">Follower Education</td> <td bgcolor="#FFFFFF" name="column-heading_profession">Follower Profession</td> <td bgcolor="#FFFFFF" name="column-heading_marital-status">Follower Marital Status</td> <td bgcolor="#FFFFFF" name="column-heading_working-status">Follower Working Status</td> <td bgcolor="#FFFFFF" name="column-heading_country-of-birth">Follower Country Of Birth</td> <td bgcolor="#FFFFFF" name="column-heading_home-town">Follower Home Town</td> <td bgcolor="#FFFFFF" name="column-heading_home-neighbourhood">Follower Home Neighbourhood</td> <td bgcolor="#FFFFFF" name="column-heading_home-borough">Follower Home Borough</td> <td bgcolor="#FFFFFF" name="column-heading_home-city">Follower Home City</td> <td bgcolor="#FFFFFF" name="column-heading_home-county">Follower Home County</td> <td bgcolor="#FFFFFF" name="column-heading_home-district">Follower Home District</td> <td bgcolor="#FFFFFF" name="column-heading_home-region">Follower Home Region</td> <td bgcolor="#FFFFFF" name="column-heading_home-state">Follower Home State</td> <td bgcolor="#FFFFFF" name="column-heading_home-country">Follower Home Country</td> </tr> <?php while($row = mysqli_fetch_array($result)) { ?> <tr name="user-details"> <td bgcolor="#FFFFFF" name="submission-number"><a href="following_histories_v1.php?followee_id=<?php echo $followee_browsing_history_submission_id; ?>&page_number=1"><?php echo $followee_browsing_history_submission_id; ?></a></td> <td bgcolor="#FFFFFF" name="logging-server-date-&-time"><a href="following_histories_v1.php?followee_date_and_time=<?php echo $followee_browsing_history_submission_date_and_time; ?>&page_number=1"><?php echo $followee_browsing_history_submission_date_and_time; ?></a></td> <td bgcolor="#FFFFFF" name="followed-page-converted_visit-page"><a href="<?php echo "followee_browser.php?followee_username=$followee_username&followee_followed_page_converted=$followee_followed_page_converted"; ?>"><?php echo "$followee_followed_page_converted"; ?></a></td> <td bgcolor="#FFFFFF" name="followed-page-converted_stats-page"><a href="following_histories_v1.php?followee_followed_page_converted=<?php echo "$followee_followed_page_converted"; ?>&page_number=1"><?php echo "$followee_followed_page_converted"; ?></a></td> <td bgcolor="#FFFFFF" name="referral-page-converted_visit-page"><a href="<?php echo "followee_browser.php?followee_username=$followee_username&followee_referral_page_converted=$followee_referral_page_converted"; ?>"><?php echo "$followee_referral_page_converted"; ?></a></td> <td bgcolor="#FFFFFF" name="referral-page-converted_stats-page"><a href="following_histories_v1.php?followee_referral_page_converted=<?php echo "$followee_referral_page_converted"; ?>&page_number=1"><?php echo "$followee_referral_page_converted"; ?></a></td> <td bgcolor="#FFFFFF" name="profile-page-followee_visit-page"><a href="profile.php?followee_username=<?php echo "$followee_username"; ?>"><?php echo "$followee_username"; ?></a></td> <td bgcolor="#FFFFFF" name="profile-page-followee_stats-page"><a href="following_histories_v1.php?followee_username=<?php echo "$followee_username"; ?>"><?php echo "$followee_username"; ?></a></td> <td bgcolor="#FFFFFF" name="profile-page-follower_visit-page"><a href="profile.php?followee_username=<?php echo "$follower_username"; ?>"><?php echo "$follower_username"; ?></a></td> <td bgcolor="#FFFFFF" name="profile-page-follower_stats-page"><a href="following_histories_v1.php?followee_username=<?php echo "$follower_username"; ?>"><?php echo "$follower_username"; ?></a></td> <td bgcolor="#FFFFFF" name="gender"><a href="following_histories_v1.php?followee_gender=<?php echo "$follower_gender"; ?>&page_number=1"><?php echo "$follower_gender"; ?></a></td> <td bgcolor="#FFFFFF" name="age-range"><a href="following_histories_v1.php?followee_age_range=<?php echo "$follower_age_range"; ?>&page_number=1"><?php echo "$followerage_range"; ?></a></td> <td bgcolor="#FFFFFF" name="date-of-birth"><a href="following_histories_v1.php?followee_date_of_birth=<?php echo "$follower_date_of_birth"; ?>&page_number=1"><?php echo "$follower_date_of_birth"; ?></a></td> <td bgcolor="#FFFFFF" name="skin-complexion"><a href="following_histories_v1.php?followee_skin_complexion=<?php echo "$follower_skin_complexion"; ?>&page_number=1"><?php echo "$follower_skin_complexion"; ?></a></td> <td bgcolor="#FFFFFF" name="height"><a href="following_histories_v1.php?followee_height=<?php echo "$follower_height"; ?>&page_number=1"><?php echo "$follower_height"; ?></a></td> <td bgcolor="#FFFFFF" name="weight"><a href="following_histories_v1.php?followee_height=<?php echo "$follower_weight"; ?>&page_number=1"><?php echo "$follower_weight"; ?></a></td> <td bgcolor="#FFFFFF" name="sexual-orientation"><a href="following_histories_v1.php?followee_sexual_orientation=<?php echo "$follower_sexual_orientation"; ?>&page_number=1"><?php echo "$follower_sexual_orientation"; ?></a></td> <td bgcolor="#FFFFFF" name="religion"><a href="following_histories_v1.php?followee_religion=<?php echo "$follower_religion"; ?>&page_number=1"><?php echo "$follower_religion"; ?></a></td> <td bgcolor="#FFFFFF" name="education"><a href="following_histories_v1.php?followee_education=<?php echo "$follower_education"; ?>&page_number=1"><?php echo "$follower_education"; ?></a></td> <td bgcolor="#FFFFFF" name="profession"><a href="following_histories_v1.php?followee_profession=<?php echo "$follower_profession"; ?>&page_number=1"><?php echo "$follower_profession"; ?></a></td> <td bgcolor="#FFFFFF" name="marital-status"><a href="following_histories_v1.php?followee_marital_status=<?php echo "$follower_marital_status"; ?>&page_number=1"><?php echo "$follower_marital_status"; ?></a></td> <td bgcolor="#FFFFFF" name="working-status"><a href="following_histories_v1.php?followee_working_status=<?php echo "$follower_working_status"; ?>&page_number=1"><?php echo "$follower_working_status"; ?></a></td> <td bgcolor="#FFFFFF" name="country-of-birth"><a href="following_histories_v1.php?followee_country_of_birth=<?php echo "$follower_country_of_birth"; ?>&page_number=1"><?php echo "$follower_country_of_birth"; ?></a></td> <td bgcolor="#FFFFFF" name="home-town"><a href="following_histories_v1.php?followee_home_town=<?php echo "$follower_home_town"; ?>&page_number=1"><?php echo "$follower_home_town"; ?></a></td> <td bgcolor="#FFFFFF" name="home-neighbourhood"><a href="following_histories_v1.php?followee_home_neighbourhood=<?php echo "$follower_home_neighbourhood"; ?>&page_number=1"><?php echo "$home_neighbourhood"; ?></a></td> <td bgcolor="#FFFFFF" name="home-borough"><a href="following_histories_v1.php?followee_home_borough=<?php echo "$follower_home_borough"; ?>&page_number=1"><?php echo "$follower_home_borough"; ?></a></td> <td bgcolor="#FFFFFF" name="home-city"><a href="following_histories_v1.php?followee_home_city=<?php echo "$follower_home_city"; ?>&page_number=1"><?php echo "$follower_home_city"; ?></a></td> <td bgcolor="#FFFFFF" name="home-county"><a href="following_histories_v1.php?followee_home_county=<?php echo "$follower_home_county"; ?>&page_number=1"><?php echo "$follower_home_county"; ?></a></td> <td bgcolor="#FFFFFF" name="home-district"><a href="following_histories_v1.php?followee_home_district=<?php echo "$follower_home_district"; ?>&page_number=1"><?php echo "$follower_home_district"; ?></a></td> <td bgcolor="#FFFFFF" name="home-region"><a href="following_histories_v1.php?followee_home_region=<?php echo "$follower_home_region"; ?>&page_number=1"><?php echo "$follower_home_region"; ?></a></td> <td bgcolor="#FFFFFF" name="home-state"><a href="following_histories_v1.php?followee_home_state=<?php echo "$follower_home_state"; ?>&page_number=1"><?php echo "$follower_home_state"; ?></a></td> <td bgcolor="#FFFFFF" name="home-country"><a href="following_histories_v1.php?followee_home_country=<?php echo "$follower_home_country"; ?>&page_number=1"><?php echo "$follower_home_country"; ?></a></td> </tr> <?php } ?> <tr name="pagination"> <td colspan="30" bgcolor="#FFFFFF"> Result Pages: <?php if($rows_num <= $page_size) { echo "Page 1"; } else { for($i=1;$i<=$page_count;$i++) echo "<a href=\"{$_SERVER['PHP_SELF']}?$query_type=${$query_type}&page_number={$i}\">{$i}</a> "; } ?> </td> </tr> <?php } ?> </table> <br> <br> <p align="center"><span style="font-weight:bold;"><?php echo "Search Result for:<br> $query_type_label = \"${$query_type}\""; ?></span></p> <br> <br> <br> </body> </html>I get:
Fatal error: Uncaught mysqli_sql_exception: You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near '?' at line 1 in C:\xampp\htdocs\test\following_histories_v1.php:418 Stack trace: #0 C:\xampp\htdocs\test\following_histories_v1.php(418): mysqli_query(Object(mysqli), 'SELECT id,date_...') #1 {main} thrown in C:\xampp\htdocs\test\following_histories_v1.php on line 418
What is wrong ? I don't see any syntax error in the QUERIES.
Anyway, can anyone be kind enough to edit my first script and turn it into PREP STMT script using mysqli procedural style like my attempt in my 2nd script so I can learn from you ? I don't know pdo or oop yet.
-
On 1/25/2019 at 11:48 PM, requinix said:
if($followee_username != "followee_all" OR "Followee_All")
Do you know how the "or" operator works? The only correct response to that question is no.
Learn what "or" means.
I spotted my error the other day. Should've been:
if($followee_username != "followee_all" OR $followee_username != "followee_All"")
-
Correction:
This url should work:
browsing_histories_v1.php?followee_username=followee_all&page_number=1
It should trigger:
$query = "SELECT * FROM browsing_histories";
It should show all rows from the tbl. Correct ?
What's wrong ? Puzzled!
-
Neither the IF from here shows all rows:
if($followee_username == "followee_all" OR "Followee_All") { $query = "SELECT * FROM following_histories"; echo "all"; $query_type = "followee_all"; $followed_word = "followee_all"; $follower_username = "$user"; } else { $query = "SELECT * FROM following_histories WHERE username = \"$followee_username\""; echo "$followee_username"; $query_type = "$followee_username"; $followed_word = "$followee_username"; $follower_username = "$user"; }Why it fails ? Puzzled!
-
Hi,
I want to pull data from db, where sometimes all rows and sometimes rows matching given "username".
Here is my code:
//Grab Username of who's Browsing History needs to be searched. if (isset($_GET['followee_username']) && !empty($_GET['followee_username'])) { $followee_username = $_GET['followee_username']; if($followee_username != "followee_all" OR "Followee_All") { $query = "SELECT * FROM browsing_histories WHERE username = \"$followee_username\""; $query_type = "followee_username"; $followed_word = "$followee_username"; $follower_username = "$user"; echo "$followee_username"; } else { $query = "SELECT * FROM browsing_histories"; $query_type = "followee_all"; $followed_word = "followee_all"; $follower_username = "$user"; echo "all"; } }When I specify a "username" in the query via the url:
browsing_histories_v1.php?followee_username=requinix&page_number=1
I see result as I should. So far so good.
Now, when I specify "all" as username then I see no results. Why ? All records from the tbl should be pulled!
browsing_histories_v1.php?followee_username=all&page_number=1
This query shouldv'e worked:
$query = "SELECT * FROM browsing_histories";
-
3 minutes ago, requinix said:
Why did you ask if you knew the answer?
Cos, I thought maybe what I thought the answer was probably was not correct somewhere as I was still getting the error. I think I forgot to refresh my browser.
You got a grip like a vice, haven't ya ? Yaa, won't let it go! Lol!
May my backside be excused from your rottweiler bite ? Lol!
But don't go away as I want to complete this script I have been working on since feb 2017 and release it tomorrow. I might have more questions on upcoming new threads.
Stay tuned with me tonight.
-
4 minutes ago, requinix said:
And it does that by you telling it what variables to use. It doesn't matter if they exist yet.
Yeah. I know. If you notice my scripts, the variables get created for first time in the bind_result. Anyway, good thing you still mentioned it to make sure I am aware of it. Am sure other newbies, who aren't aware of this, will learn from your comment.
-
14 minutes ago, requinix said:
I meant bind_result. The variables given to that use column order.
You already solved the error. Why are you asking about it?
Error gone on my original script now.
Thanks!
$stmt_1 = mysqli_prepare($conn,"SELECT COUNT(sponsor_username) from users WHERE sponsor_username = ?"); mysqli_stmt_bind_param($stmt_1,'s',$sponsor_username); mysqli_stmt_execute($stmt_1); //Show error if 'users' tbl was not successfully queried". if (!$stmt_1) { echo "ERROR 1: Sorry! Our system is currently experiencing a problem loading this page!"; exit(); } else { mysqli_stmt_bind_result($stmt_1,$sponsor_username_count); mysqli_stmt_fetch($stmt_1); mysqli_stmt_close($stmt_1); //Check if Sponsor Username in Url ($_GET) is already registered or not. If not then show "Invalid Url" or Link message. if ($sponsor_username_count < 1) { echo "<b>Invalid Url or Link!<br> Invalid Sponsor: \"$sponsor_username\"!</b><?php "; exit(); } } -
10 minutes ago, requinix said:
Do you have any idea what mysqli_stmt_bind_result does? What references are?
Oh!
I had a typo. You were hinting to that!
mysqli_stmt_bind_param($stmt, 's', $sponsor_username);
Should be
mysqli_stmt_bind_param($stmt, 's', $sponsor_username_count);
-
2 minutes ago, requinix said:
Do you have any idea what mysqli_stmt_bind_result does? What references are?
Yeah. You reference the collected data from the cols & rows with variables. The collected data becomes the variable values.
My error is not gone. That code you see above is from a different file.My original file in this thread is still showing the error.
$stmt_1 = mysqli_prepare($conn,"SELECT COUNT(sponsor_username) from users = ?");
You know what. That other script has the WHERE and so I might aswell try it with that by changing this original script's query to the following now and see what happens. If I get an error, I'll hassle you here again.
-
What I dont understand is the $row has not been defined. So, how come I not getting an error ?
<?php //Check for username match in "Usernames" column in "users" table. If there is a match then do the following ... $stmt = mysqli_prepare($conn, "SELECT COUNT(sponsor_username) FROM users WHERE sponsor_username = ?"); mysqli_stmt_bind_param($stmt, 's', $sponsor_username); mysqli_stmt_execute($stmt); mysqli_stmt_bind_result($stmt, $rows); if (mysqli_stmt_fetch($stmt) && $rows) { die('That Username '.htmlspecialchars($sponsor_username).' is already registered!'); } ?> -
37 minutes ago, requinix said:
Aliases don't matter when you use bind_param. It depends on column order, not column name.
So, you reckon my code is ok then ?
Then why I get the error:
Fatal error: Uncaught mysqli_sql_exception: You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near '?' at line 1 in
-
This seems to be working but I need you folks to check it out:
<?php //Check for username match in "Usernames" column in "users" table. If there is a match then do the following ... $stmt = mysqli_prepare($conn, "SELECT COUNT(sponsor_username) FROM users WHERE sponsor_username = ?"); mysqli_stmt_bind_param($stmt, 's', $sponsor_username); mysqli_stmt_execute($stmt); mysqli_stmt_bind_result($stmt, $rows); if (mysqli_stmt_fetch($stmt) && $rows) { die('That Username '.htmlspecialchars($sponsor_username).' is already registered!'); } ?>Ok, so I did it like this, the query:
SELECT COUNT(sponsor_username) FROM users WHERE sponsor_username = ?Now, if I do it like this by adding the "AS sponsor count" then how do I make use of the alias "sponsor count" ? Forgotten how to make use of the alias. So, you may now keep busy showing me a sample code.
SELECT COUNT(sponsor_username) AS sponsor count FROM users WHERE sponsor_username = ?
Thanks!
-
Folks,
Having trouble here. Forgot how you use the COUNT. Not interested in the num_rows due to it being slow compared to COUNT.
I have users table like this:
id|username|sponsor_username
0|barand|requinix
1|phpsane|alison
2|mickey_mouse|requinix
Now, I want to check if a sponsor username exists or not. Such as does the entry "requinix" exists or not in one of the rows in the "sponsor_username" column.
In our example it does twice and so the variable $sponsor_username_count should hold the value "2". Else hold "0".
I get error:
Fatal error: Uncaught mysqli_sql_exception: You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near '?' at line 1
My code:
$stmt_1 = mysqli_prepare($conn,"SELECT COUNT(sponsor_username) from users = ?"); mysqli_stmt_bind_param($stmt_1,'s',$sponsor_username_count); mysqli_stmt_execute($stmt_1); //Show error if 'users' tbl was not successfully queried". if (!$stmt_1) { echo "ERROR 1: Sorry! Our system is currently experiencing a problem loading this page!"; exit(); } else { mysqli_stmt_bind_result($stmt_1,$sponsor_username_count); mysqli_stmt_fetch($stmt_1); mysqli_stmt_close($stmt_1); //Check if Sponsor Username in Url ($_GET) is already registered or not. If not then show "Invalid Url" or Link message. if ($sponsor_username_count < 1) { echo "<b>Invalid Url or Link!<br> Invalid Sponsor: \"$sponsor_username\"!</b><?php "; exit(); } } -
31 minutes ago, requinix said:
Are you guessing? One of those is right and one is wrong. If you read the documentation you should be able to tell which is which.
I know it comes in this order:
mysqli_stmt_execute($stmt)
mysqli_stmt_bind_result
mysqli_stmt_fetch($stmt)But if I got my stmt execute & fetch together like the following then does the bind result come prior to them or after ?
if(mysqli_stmt_execute($stmt)) && mysqli_stmt_fetch($stmt))Whoever gave me the sample code, coded it like this:
$stmt = mysqli_prepare($conn,"SELECT username,account_activation_status FROM users WHERE primary_website_email = ? AND account_activation_code = ?"); mysqli_stmt_bind_param($stmt,'si',$primary_website_email,$account_activation_code); mysqli_stmt_bind_result($stmt,$username,$account_activation_status); //Perform the following if Account Activation Link was valid (the "Primary Website Email" and "Account Activation Code" match that were found via the GET Method). if(mysqli_stmt_execute($stmt)) && mysqli_stmt_fetch($stmt)) { //Perform the following if the "Account Activation Status is not found to be "0" (Account Activation Pending) on Mysql Database. if($account_activation_status = 1) { //Give the User Alert that their Account is already active. echo "Since you have already activated your account then why are you trying to activate it again ? Simply <a href="\"login.php\">log-in here</a>! "; exit(); } -
On 12/14/2018 at 11:01 PM, requinix said:
No sarcastic comments about reading the documentation yet, so consider me to be saying that.
Yeah. I did come across this:
http://php.net/manual/en/mysqli-stmt.fetch.php
So, I had it like this following and I now guess from your reply that I had it wrong:
$stmt = mysqli_prepare($conn,"SELECT username,account_activation_status FROM users WHERE primary_website_email = ? AND account_activation_code = ?"); mysqli_stmt_bind_param($stmt,'si',$primary_website_email,$account_activation_code); mysqli_stmt_bind_result($stmt,$username,$account_activation_status); //Perform the following if Account Activation Link was valid (the "Primary Website Email" and "Account Activation Code" match that were found via the GET Method). if(mysqli_stmt_execute($stmt)) && mysqli_stmt_fetch($stmt)) { //Perform the following if the "Account Activation Status is not found to be "0" (Account Activation Pending) on Mysql Database. if($account_activation_status = 1) { //Give the User Alert that their Account is already active. echo "Since you have already activated your account then why are you trying to activate it again ? Simply <a href="\"login.php\">log-in here</a>! "; exit(); }And, I should have it like the following. Right ?
$stmt = mysqli_prepare($conn,"SELECT username,account_activation_status FROM users WHERE primary_website_email = ? AND account_activation_code = ?"); mysqli_stmt_bind_param($stmt,'si',$primary_website_email,$account_activation_code); //Perform the following if Account Activation Link was valid (the "Primary Website Email" and "Account Activation Code" match that were found via the GET Method). if(mysqli_stmt_execute($stmt)) && mysqli_stmt_fetch($stmt)) { mysqli_stmt_bind_result($stmt,$username,$account_activation_status); //Perform the following if the "Account Activation Status is not found to be "0" (Account Activation Pending) on Mysql Database. if($account_activation_status = 1) { //Give the User Alert that their Account is already active. echo "Since you have already activated your account then why are you trying to activate it again ? Simply <a href="\"login.php\">log-in here</a>! "; exit(); } -
On 12/14/2018 at 2:55 AM, requinix said:
GeoIP is the best you can get in general. For mobile users you can ask them to allow your site to read their GPS location. With Javascript.
So you reckon the code on my original post is good to go ?
-
Php Folkies,
Look at this account activation script. It gets triggered when a new member clicks an account activation link he gets emailed.
<?php //Required PHP Files. include 'configurations_site.php'; //Required on all webpages of the site. Must include here too. Else, conn.php data would not be found. conn.php residing in site_configurations.php. include 'header_site.php'; //Required on all webpages of the site. include 'header_account.php'; //Required on all webpages of the account. include 'sessions.php'; //Required on all webpages of the site. ?> <?php //Step 1: Check whether URL is in the GET method or not. //Perform following actions if URL is not in the GET Method and does not contain user Email and Account Activation Code. if(!isset($_GET["primary_website_email"],$_GET["account_activation_code"]) === TRUE) { //Give the User Alert that the Account Activation Link is Invalid. echo "Invalid Account Activation Link! Try registering for an account if you do not already have one! <a href="\"register.php\">Register here!</a>"; </p> exit(); } else { //Step 2: Check User submitted details. $primary_website_email = htmlspecialchars($_GET['primary_website_email']); $account_activation_code = htmlspecialchars($_GET['account_activation_code']); //2A. Check User Inputs against Mysql Database. //Select Username, Primary Domain and Primary Domain Email to check against Mysql Database if they are pending registration or not. $stmt = mysqli_prepare($conn, "SELECT username, account_activation_status FROM users WHERE primary_website_email = ? AND account_activation_code = ?"); mysqli_stmt_bind_param($stmt,'si',$primary_website_email,$account_activation_code); mysqli_stmt_bind_result($stmt,$username,$account_activation_status); //Perform the following if Account Activation Link was valid (the "Primary Website Email" and "Account Activation Code" match that were found via the GET Method). if(mysqli_stmt_execute($stmt)) && mysqli_stmt_fetch($stmt)) { //Perform the following if the "Account Activation Status is not found to be "0" (Account Activation Pending) on Mysql Database. if($account_activation_status = 1) { //Give the User Alert that their Account is already active. echo "Since you have already activated your account then why are you trying to activate it again ? Simply <a href="\"login.php\">log-in here</a>! "; exit(); } else { //Set Account Activation Status to 1 (1 = "Account Activated"; And 0 = "Activation Pending") on Tbl. $account_activation_status = 1; $stmt = mysqli_prepare($conn,"UPDATE users SET account_activation_status = ? WHERE username = ?"); mysqli_stmt_bind_param($stmt,'is',$account_activation_status,$username); if(mysqli_stmt_execute($stmt)) { //Give user Alert that their Account has now been Activated. echo <h3 style='text-align:center'>Thank you for your confirming your email and activating your account. <br> Redirecting you to your Home Page ...</h3> $_SESSION["user"] = $username; //Redirecting the newly Account Activated User to their Account Home Page by identifying the User by their Session Name (Username). header("location:home.php"); } } } else { //Perform following if Primary Website Email and/or Account Activation Code is not Pending Registration. $primary_website_email = htmlspecialchars($_GET['primary_website_email']); $account_activation_code = htmlspecialchars($_GET['account_activation_code']); //Give the User Alert their Email and/or Account Activation Code in the Account Activation Link is Invalid or the Account Activation Link is out of date (Email no longer registered in the Tbl). echo "Either this Email Address $primary_website_email was not pending registration with this Account Activation Code $account_activation_code or one or both of them are invalid! Or, the Account Activation Link is out of date (Email no longer registered in the Tbl). Try registering an account if you have not already done so! <a href=\"register.php\">Register here!</a>"; </p> exit(); } } ?>Shall I change this:
//2A. Check User Inputs against Mysql Database. //Select Username, Primary Domain and Primary Domain Email to check against Mysql Database if they are pending registration or not. $stmt = mysqli_prepare($conn, "SELECT username, account_activation_status FROM users WHERE primary_website_email = ? AND account_activation_code = ?"); mysqli_stmt_bind_param($stmt,'si',$primary_website_email,$account_activation_code); mysqli_stmt_bind_result($stmt,$username,$account_activation_status); //Perform the following if Account Activation Link was valid (the "Primary Website Email" and "Account Activation Code" match that were found via the GET Method). if(mysqli_stmt_execute($stmt)) && mysqli_stmt_fetch($stmt)) { //Perform the following if the "Account Activation Status is not found to be "0" (Account Activation Pending) on Mysql Database. if($account_activation_status = 1) { //Give the User Alert that their Account is already active. echo "Since you have already activated your account then why are you trying to activate it again ? Simply <a href="\"login.php\">log-in here</a>! "; exit(); }to this where the mysqli_stmt_bind_result($stmt,$username,$account_activation_status) has been switched to a new spot:
//2A. Check User Inputs against Mysql Database. //Select Username, Primary Domain and Primary Domain Email to check against Mysql Database if they are pending registration or not. $stmt = mysqli_prepare($conn, "SELECT username, account_activation_status FROM users WHERE primary_website_email = ? AND account_activation_code = ?"); mysqli_stmt_bind_param($stmt,'si',$primary_website_email,$account_activation_code); //Perform the following if Account Activation Link was valid (the "Primary Website Email" and "Account Activation Code" match that were found via the GET Method). if(mysqli_stmt_execute($stmt)) && mysqli_stmt_fetch($stmt)) { //Perform the following if the "Account Activation Status is not found to be "0" (Account Activation Pending) on Mysql Database. mysqli_stmt_bind_result($stmt,$username,$account_activation_status); if($account_activation_status = 1) { //Give the User Alert that their Account is already active. echo "Since you have already activated your account then why are you trying to activate it again ? Simply <a href="\"login.php\">log-in here</a>! "; exit(); }
Mysqli - Can You Not Do These Short-Cuts ?
in PHP Coding Help
Posted · Edited by phpsane
I did not find these shortcuts I mention in the FM.
Did you ?