emcgfx

I'm using this menu now: switch(safe($_GET['p'])) { // Navigation Menu // English case 'page1': $get = 'page1'; break; case 'admin': $get = 'admin'; break; default: $get = 'page1'; break; } //menu switch Then get pages with: if (file_exists("$get.php")) { require_once(safe("$get.php")); } else { echo 'sorry, not done yet ;-)'; } This works perfectly: index.php?p=page1 I use clean urls, so I do this actually: http://domain.com/page1 What I want to do is something like this for example; http://domain.com/admin/add Where "add" is the function of admin page. I can add this kind of switch to admin.php file and call it something like this: http://domain.com/admin&a=add But I was wondering if there is better way to do this, any help would be awesome. Thank you guys.

I figured it out, if you know better way on doing this please reply. Here is how I've done it. $result = mysql_query("SELECT * FROM example WHERE name='".escape($_POST['name'])."' ") or die(mysql_error()); if (mysql_num_rows($result) > 0) { mysql_query("DELETE FROM example WHERE name='".escape($_POST['name'])."' ") or die(mysql_error()); $status = $_POST['name'] . " removed from database! <br/>"; } else { $status = $_POST['name'] . " does not exist in database! <br/>"; }

Maybe like to use if or something....

ok now, I need to have some kind of errors in place, for example if I try to delete "name" BOB and its not in database, I would show message like "sorry, no such name". Any help would be nice. Will keep trying for now.

or like this $status = $_POST['name'] . " added to database!"; $status = $_POST['name'] . " removed from database!"; If you know of any other way, please reply

I got it :-) $var = $_POST['name']; $status = "$var removed from database!"; or $var = $_POST['name']; $status = "$var added to database!";

ok here is the new working code, now how would I show what has beend removed or added to/from database? Preferably in $status variable. <?php // MySQL Auth $hostname = ""; $database = ""; $username = ""; $password = ""; // Protection from SQL Injections. function escape($string) { if(get_magic_quotes_gpc()) $string = stripslashes($string); return mysql_real_escape_string($string); } mysql_connect($hostname, $username, $password) or die(mysql_error()); mysql_select_db($database) or die(mysql_error()); switch($_POST['action']) { case "add": mysql_query("INSERT INTO example (name, age) VALUES('".escape($_POST['name'])."', '".escape($_POST['age'])."' )") or die(mysql_error()); $status = $name . "added to database!"; break; case "del": mysql_query("DELETE FROM example WHERE name='".escape($_POST['name'])."' ") or die(mysql_error()); echo "$name removed from database!"; break; case "search": $query = mysql_query("SELECT * FROM example WHERE name LIKE '%".escape($_POST['search'])."%' OR age LIKE '%".escape($_POST['search'])."%' ORDER BY name "); while ($row = mysql_fetch_array($query)) { echo "ID: " . $row['id']; echo ", " . $row['name']; echo ", " . $row['age'] . "<br/>"; } break; } ?> <html> <head> <title>MySQL/PHP</title> </head> <body> <?php echo "$status"; ?> <br/> Add Entry in Database: <form method="post" action="<?php echo $PHP_SELF ?>"> Name: <input type="text" size="25" maxlength="50" name="name"><br/> Age: <input type="text" size="5" maxlength="3" name="age"><br/> <input type="hidden" value="add" name="action"> <input type="submit" value="Submit"> </form> Delete Entry from Database: <form method="post" action="<?php echo $PHP_SELF ?>"> Name: <input type="text" size="25" maxlength="50" name="name"><br/> <input type="hidden" value="del" name="action"> <input type="submit" value="Submit"> </form> Search Entry from Database: <form method="post" action="<?php echo $PHP_SELF ?>"> Name: <input type="text" size="25" maxlength="50" name="search"><br/> <input type="hidden" value="search" name="action"> <input type="submit" value="Submit"> </form> </body> </html>

I figured it out $query = mysql_query("SELECT * FROM example WHERE name LIKE '%".escape($_POST['search'])."%' OR age LIKE '%".escape($_POST['search'])."%' ");

I don't use the following code at all now, since I have been told it does nothing when I use $_POST in mysql_query's them self's. if(!isset($PHP_SELF)) $PHP_SELF = $_SERVER['PHP_SELF']; if(!isset($_POST['action'])) $_POST['action'] = NULL; if(!isset($status)) $status = NULL; if(!isset($_POST['find'])) $find['find']; if(!isset($_POST['named'])) $named['named']; if(!isset($_POST['name'])) $name['name']; if(!isset($_POST['age'])) $name['age']; As for using the form to search for both name and age, how would I do that ? Here is the following code I use now in the form to search for name: Search Entry from Database: <form method="post" action="<?php echo $PHP_SELF ?>"> Name: <input type="text" size="25" maxlength="50" name="search"><br/> <input type="hidden" value="search" name="action"> <input type="submit" value="Submit"> </form> and this is the mysql code I use: case "search": $query = mysql_query("SELECT * FROM example WHERE name LIKE '%".escape($_POST['search'])."%' ORDER BY name"); while ($row = mysql_fetch_array($query)) { echo "ID: " . $row['id']; echo ", " . $row['name']; echo ", " . $row['age'] . "<br/>"; } break;

Yes, but its not working and where do you get $age? I need to search for age from database not to have another variable for it. Now this following code works for searching "age", but now "name" is not working. $query = mysql_query("SELECT * FROM example WHERE name OR age LIKE '%".escape($_POST['search'])."%' ORDER BY name");

ok one more question, how doe I also search for "age". This is the working code for searching by "name". $query = mysql_query("SELECT * FROM example WHERE name LIKE '%".escape($_POST['search'])."%' ORDER BY name"); Thanks.

Thank You, ignace I got it working.

Hi ignace Thank you for your reply. OK so if I use $_POST in my switch and the mysql_query's I don't need the following? if(!isset($_POST['find'])) $find['find']; if(!isset($_POST['named'])) $named['named']; if(!isset($_POST['name'])) $name['name']; if(!isset($_POST['age'])) $name['age']; Also, I have tried using it like you said, as you can see with my commented out line of code. Which looks very simular to the one you showed me. But when I submit the search form, I don't see any result $status back just blank. Also, I don't see any $status when I add or delete item from mysql database, all I see is "added to database!" and "removed from database!". What am I doing wrong here?

Hi guys, I'm stuck with this code I've been trying to get to work. What I'm trying to do here is to use switch, form and mysql search. My add and del features work except the echo result part which is $status. But my search feature is not working at all. If you know what I'm doing wrong please help me out, thank you so much. I know its something very simple, its just I'm just learning this :-) NOTE: DB info has been removed for security <?php $hostname = ""; $database = ""; $username = ""; $password = ""; if(!isset($PHP_SELF)) $PHP_SELF = $_SERVER['PHP_SELF']; if(!isset($_POST['action'])) $_POST['action'] = NULL; if(!isset($status)) $status = NULL; if(!isset($_POST['find'])) $find['find']; if(!isset($_POST['named'])) $named['named']; if(!isset($_POST['name'])) $name['name']; if(!isset($_POST['age'])) $name['age']; function escape($string) { if(get_magic_quotes_gpc()) $string = stripslashes($string); return mysql_real_escape_string($string); } mysql_connect($hostname, $username, $password) or die(mysql_error()); mysql_select_db($database) or die(mysql_error()); switch($_POST['action']) { case "add": mysql_query("INSERT INTO example (name, age) VALUES('".escape($_POST['name'])."', '".escape($_POST['age'])."' )") or die(mysql_error()); $status = "$name added to database!"; break; case "del": mysql_query("DELETE FROM example WHERE name='".escape($_POST['named'])."' ") or die(mysql_error()); $status = "$named removed from database!"; break; case "search": /*mysql_query("SELECT * FROM example WHERE name='%".escape($_POST['search'])."%' ") or die(mysql_error());*/ $query = mysql_query("SELECT * FROM example WHERE name LIKE '".escape($_POST['find'])."' ORDER BY name"); while ($row = mysql_fetch_array($query)) { echo $row['name']; echo "<br/>"; } break; } ?> <html> <head> <title>MySQL/PHP</title> </head> <body> <?php echo "$status"; ?> <br/> Add Entry in Database: <form method="post" action="<?php echo $PHP_SELF ?>"> Name: <input type="text" size="25" maxlength="50" name="name"><br/> Age: <input type="text" size="5" maxlength="3" name="age"><br/> <input type="hidden" value="add" name="action"> <input type="submit" value="Submit"> </form> Delete Entry from Database: <form method="post" action="<?php echo $PHP_SELF ?>"> Name: <input type="text" size="25" maxlength="50" name="named"><br/> <input type="hidden" value="del" name="action"> <input type="submit" value="Submit"> </form> Search Entry from Database: <form method="post" action="<?php echo $PHP_SELF ?>"> Name: <input type="text" size="25" maxlength="50" name="search"><br/> <input type="hidden" value="find" name="action"> <input type="submit" value="Submit"> </form> </body> </html>

ok looks like it works properly when I use it directly. http://localhost/www/site/test.php but when I use it to include from my include menu, http://localhost/www/site/index.php?p=test (with proper include directory of course) its not working...