Menu
Community /Pin to ProfileBookmark
@daveyerwinJul 17.2020 — #so maybe explain why you are using
$_SESSION['search_column'] = $_POST['search_column'];
what is the purpose of this ?
.
.
.
.
so you get
FROM links WHERE {$_SESSION['search_column']} = $_SESSION['search_column']
https://www.tutorialspoint.com/sql/sql-where-clause.htm @daveyerwinJul 20.2020 — #@developer_web#1620955 said ...
I was told to switch form method = GET. Originally, it was POST. I think it should be POST since I am passing no variables through the url. no params in the url. Am not making use of $_GET to extract params from url. What you say ?
when using POST special precautions must be addressed
in your code you do not address the special circumstance
I would say you should use GET or else change your code
to allow for proper use of POST
there is a lot to learn about submitting data to server
@NogDogJul 21.2020 — #Basically, use GET if the request is read-only, i.e. it won't change anything in the database, create an order, etc. Use POST if it will, in fact, potentially change something. In other words, if it's read-only, it doesn't matter if a user bookmarks the link with all those parameters in the URL; but if it changes something, then you do not want it to be bookmarked or otherwise re-used. @daveyerwinJul 30.2020 — #@developer_web#1621503
instead of worrying about the subtleties
of a POST request just stick with GET
till you are comfortable with submitting
data to a server
Why IF Function Error Fails While IF $stmt Works ?
Hi,
Line 70 is:
[code]
if(mysqli_stmt_execute($stmt) === FALSE)
Context:
[code]
if(mysqli_stmt_prepare($stmt,$query))
{
mysqli_stmt_bind_param($stmt,’s’,$_SESSION[‘search_column’]);
if(mysqli_stmt_execute($stmt) === FALSE)
{
printf(“Error: %s.n”, mysqli_stmt_error($stmt));
printf(“Error: %d.n”, mysqli_stmt_errno($stmt));
}
I am getting this error:
Fatal error: Uncaught mysqli_sql_exception: No index used in query/prepared statement (null) in C:xampphtdocstestselect_adv.php:70 Stack trace: #0 C:xampphtdocstestselect_adv.php(70): mysqli_stmt_execute(Object(mysqli_stmt)) #1 {main} thrown in C:xampphtdocstestselect_adv.php on line 70
This removes the error:
[code]
if($stmt) === FALSE)
{
printf(“Error: %s.n”, mysqli_stmt_error($stmt));
printf(“Error: %d.n”, mysqli_stmt_errno($stmt));
}
I still want to know why this works:
[code]
if($stmt) === FALSE)
{
but this doesn’t work:
[code]
if(mysqli_stmt_execute($stmt) === FALSE)
{
Let me know.
Full Code in case you’re wondering just what on earth is going on ….
[code]
<?php
//include(‘error_reporting.php’);
error_reporting(E_ALL);
ini_set(‘error_reporting’,E_ALL);//Same as: error_reporting(E_ALL);
ini_set(‘display_errors’,’1′);
ini_set(‘display_startup_errors’,’1′);
require(‘conn.php’);
echo __LINE__;
?>
<form name = “search” method = “POST” action=””>
<label for=”keywords”>Keywords:*</label>
<input type=”text” name=”keywords” id=”keywords” placeholder=”Input Keywords” required>
<br>
<label for=”search_column”>Search in … ?</label>
<select name=”search_column” id=”search_column”>
<option value=”page_url”>Page Url</option>
<option value=”link_anchor_text”>Link Anchor Text</option>
<option value=”page_description”>Page Description</option>
<option value=”keyphrases”>Keyphrase</option>
<option value=”keywords”>Keywords</option>
</select>
<br>
<label for=”tos_agreement”>Agree to TOS or not ? *</label>
<select name=”tos_agreement” id=”tos_agreement” required>
<option value=”Yes”>Yes</option>
<option value=”No”>No</option>
</select>
<br>
<button type=”submit”>Submit</button><br>
<button type=”submit” value=”submit”>Submit</button><br>
<input type=”submit” value=”submit”><br>
<button name=submit value=” “>Submit</button><br>
<br>
<input type=”reset”>
<br>
</form>
<?php
session_start();
echo __LINE__;
if($_SERVER[‘REQUEST_METHOD’] === ‘POST’)
{
echo __LINE__;
if(ISSET($_POST[‘submit’]))
{
echo __LINE__;
if(ISSET($_POST[‘search_column’]))
{
$_SESSION[‘search_column’] = $_POST[‘search_column’];
echo $_SESSION[‘search_column’];
echo __LINE__;
}
//Re-write the following 4 lines …
mysqli_report(MYSQLI_REPORT_ALL|MYSQLI_REPORT_STRICT);
$conn = mysqli_connect(“localhost”,”root”,””,”test”);
$conn->set_charset(“utf8mb4”);
//$query = “SELECT page_url,link_anchor_text,page_description,keyphrases,keywords FROM links WHERE $_SESSION[‘search_column’] = ?”;
$query = “SELECT page_url,link_anchor_text,page_description,keyphrases,keywords FROM links WHERE {$_SESSION[‘search_column’]} = ?”;
//$query = “SELECT page_url,link_anchor_text,page_description,keyphrases,keywords FROM links WHERE ” . $_SESSION[‘search_column’] . ” = ?”;
$stmt = mysqli_stmt_init($conn);
if(mysqli_stmt_prepare($stmt,$query))
{
mysqli_stmt_bind_param($stmt,’s’,$_SESSION[‘search_column’]);
if(mysqli_stmt_execute($stmt) === FALSE)
{
printf(“Error: %s.n”, mysqli_stmt_error($stmt));
printf(“Error: %d.n”, mysqli_stmt_errno($stmt));
}
$result = mysqli_stmt_bind_result($stmt,$page_url,$link_anchor_text,$page_description,$keyphrase,$keywords);
mysqli_stmt_fetch($stmt);
while(mysqli_stmt_fetch($stmt))
{
echo “url”; echo “<br>”;
echo “anchor_text”; echo “<br>”;
echo “description”; echo “<br>”;
echo “keyphrases”; echo “<br>”;
echo “keywords”; echo “<br>”;
echo “|”;
echo “<br>”;
}
mysqli_stmt_close($stmt);
mysqli_close($conn);
}
else
{
echo “1. QUERY failed!”;
}
if(mysqli_stmt_prepare($stmt,$query))
{
mysqli_stmt_bind_param($stmt,’sssss’,$_POST[‘page_url’],$_POST[‘link_anchor_text’],$_POST[‘page_description’],$_POST[‘keyphrases’],$_POST[‘keywords’]);
if(mysqli_stmt_execute($stmt) === FALSE)
{
printf(“Error: %s.n”, mysqli_stmt_error($stmt));
printf(“Error: %d.n”, mysqli_stmt_errno($stmt));
}
$result = mysqli_stmt_get_result($stmt);
while($row = mysqli_fetch_array($result,MYSQLI_ASSOC))
{
$page_url = $row[‘page_url’]; echo $page_url; echo “<br>”;
$link_anchor_text = $row[‘link_anchor_text’]; echo $link_anchor_text; echo “<br>”;
$page_description = $row[‘page_description’]; echo $page_description; echo “<br>”;
$keyphrases = $row[‘keyphrases’]; echo $keyphrases; echo “<br>”;
$keywords = $row[‘keywords’]; echo $keywords; echo “<br>”;
echo “|”;
echo “<br>”;
}
mysqli_stmt_close($stmt);
mysqli_close($conn);
}
else
{
die(“2. QUERY failed!”);
}
echo ‘<pre>’ . print_r($_POST, 1) . ‘</pre>’;
echo $_SESSION[‘search_column’];
}
}
echo __LINE__;
?>
Sign in
to post a comment9 Comments(s) ↴
0
@daveyerwinJul 17.2020 — #so maybe explain why you are using $_SESSION['search_column'] = $_POST['search_column'];
what is the purpose of this ?
.
.
.
.
``<i>
</i>$query = "SELECT page_url,link_anchor_text,page_description,keyphrases,keywords FROM links WHERE
{$_SESSION['search_column']} = ?";
mysqli_stmt_bind_param($stmt,'s',$_SESSION['search_column']);<i>
</i>``so you get
FROM links WHERE {$_SESSION['search_column']} = $_SESSION['search_column']
0
@daveyerwinJul 20.2020 — #I was told to switch form method = GET. Originally, it was POST. I think it should be POST since I am passing no variables through the url. no params in the url. Am not making use of $_GET to extract params from url. What you say ?
when using POST special precautions must be addressed
in your code you do not address the special circumstance
I would say you should use GET or else change your code
to allow for proper use of POST
there is a lot to learn about submitting data to server
0
@NogDogJul 21.2020 — #0
@daveyerwinJul 30.2020 — #instead of worrying about the subtleties
of a POST request just stick with GET
till you are comfortable with submitting
data to a server