Limiting what is shown to the webuser

rob

I was hoping someone could help me out on here. I've made a form in php that inserts name, email, and bio info into a mysql db. I've also created a "viewer" page that displays all the info in the database.

Here's what I want to do...I want to only show on the viewer page the database submission that has an ID that is equal to 1.

How can I limit the results? I'm a little stumped.

siwis

$sql = "SELECT * FROM table WHERE ID = 1"

igor_aushra

Hello Rob,

I am very sorry, but I don't unerstand your question well...
So... If you need to show a record in your database that has an ID that is equal to 1, you have to write a query...

<?php
$link = @mysql_pconnect ("host_id", "user_id", "user_password")
        or exit ();
mysql_select_db ("your_base")
        or exit ();
$query = "SELECT * FROM your_table WHERE ID = 1";
$result = mysql_query ($query)
        or die ("It is not possible to return answer");

print ("<TABLE>\n");
while ($row = mysql_fetch_row ($result))
{

print("<TR>\n");
for ($i =0; $i < mysql_num_fields ($result); $i++)
        {

    printf ("<TD>%s</TD>\n" , htmlspecialchars ($row[$i] ));
    }
    print ("</TR>\n");
}
mysql_free_result ($result);
print ("</TABLE>\n");





?>

Good whishes 🙂

rob

I'm sure one of these will work, I will try it and let you know how it comes.

rob

thanks for your help - that did the trick.

But I got a new problem now.

i have the form that lets the user add his name and email.
Then I have a page that displays the name and email address.

What I what now is a way for the user to edit his info. So I want a page similar to the form where they add their info, but naturally the form would already completely filled in and again I only want to load in ID=1.

Any clues as to how to accomplish this?

Phantazm

Several "clues" here.. 😉

Ok.. I'm sure your add query looks something like this...

$query="INSERT INTO table (FIELD1,FIELD2,ETC) VALUES ('FIELD1','FIELD2','ETC')";

Assuming that's true, you'll first need to retrieve the info from the db and populate some sort of HTML page with the information to be edited... You can use your original HTML form even (where the info was submitted in the first place). Just add "value=\"$phpvalue\" to your input boxes to give them the "original" value. In example, if you extract a first and last name from the database and store them in $first and $last, respectively, as well as a unique ID number (probably your primary key you use in the db would be a good choice) your "new" HTML output would look something like this...

<?php
// Misc code - HTML headers - Form header, etc here
echo "<INPUT TYPE=\"TEXT\" NAME=\"f_name\" VALUE=\"$first\">
<INPUT TYPE=\"TEXT\" NAME=\"l_name\" VALUE=\"$last\">
<INPUT TYPE=\"HIDDEN\" NAME=\"uniqueid\"VALUE=\"$uniqueid\">";
// Submit button, </FORM> tag, etc...
?>

Now, when this form is submitted you want to call an update user script as opposed to an add user script. Your query would look something like this...

$query="UPDATE usertable SET FirstName='$first', LastName='$last' WHERE UserID=$uniqueid";

I think that's right =)

Anyway, that's a start. Also a note / disclaimer. The above script is NOT secure, as a user could, depending on your setup / security precautions, randomly start changing info by passing it in the URL to your update program... so be careful. And for those wondering how...

http://host.com/updateuser.php?uniqueid=34&first=Billy&last=Bob

would update userid 34's first and last name to "Billy" and "Bob"... so again, be careful

siwis

Originally posted by rob
What I what now is a way for the user to edit his info. So I want a page similar to the form where they add their info, but naturally the form would already completely filled in and again I only want to load in ID=1.

Any clues as to how to accomplish this?

Well this is the bit that stumps me of what you are asking.....
If you only ever load the contents where id=1 then unless you've only got one row in your database (ie only 1 user), the user will not be able to update their own details, they will always be updating the row where ID=1, and yet their own ID might be 199.
Perhaps I'm misunderstanding what you are trying to do, but I really can't see any reason why if the user is to be able to update their own details that the details pulled into the form for editing should be those from row 1 (ie ID=1). Perhaps a little better explanation of what you are trying to do might yield better responses.

rob

I'm building a website for my uncle. He wanted to be able to edit his resume on the fly. So I built a form in PHP w/ mySQL that would allow him to enter his resume. That was the first part of the task that I have completed. That was day 1.

The second part was the viewer. I needed a page that would display his resume in the same format as the rest of the website. So it would look fancy. Day 2, I wrote this page. But I'm not sure if I wrote this the best way possible. I used alot of echo statements to insert the HTML code around the variables. Is that the best way? OR is there a way to write HTML code, make a connection to the db, select the table, and then drop short php codes to pull in the variables? Anyone know? Can you show me some easy ways to mix html and php together.

Day 3, probably was hardest. I now needed to make a form so he could edit his previously entered info. So, I made this page with your help last night. I did some dumb stuff but ended up figuring it out.

I also made a short managing page that shows the name on the resume and a edit and view links to modify and preview the changes.

I decided to use query strings to pass the ?id=# through a few pages that will call different information. This determines which resume is displayed.

Originally when I said "id=1" in my post I was thinking that I would limit the db to only have 1 resume, but now I don't have too and my uncle can edit his site on the fly himself. Big feature for him.