Updating a database

bootcom

I have created a WYSIWYG editor for my website and setup a new field in the database (profile) and set it up as a text field and I have used the following code to update the database, however, where as it is showing the content, using the global $content; It will not save to the database. Could someone please tell me where I am going wrong 😕

<?
include "include.php";
include "config.php";

$connection = mysql_connect(localhost,$user_username,$user_password)
or die("Database Connection Failed. Please inform our administritive team.");
$result=mysql_select_db($user_database) or die( "Unable to select database");

global $content;
$profile = $_POST["content"];

$query = "UPDATE user_information SET profile=\"". $profile ."\" where ID=\"".$ID."\"";
$result = mysql_query($query);
if (!$query)
{
die(" Query could not be executed");
}

mysql_close();

PRINT "$profile";
?>

daphreeek

Where is $ID set? does this need to be a $_POST variable also?

Matt

bootcom

I have changed the coding slightly so that the ID comes from this script and not the previous form. The username and password are obtained through the include script, which is also used to start the sessions.

<?
include "include.php";
include "config.php";

//get the contents from the hidden field
global $content;
$profile = $_POST["content"];

$query = "SELECT ID FROM user_information WHERE username = \"$username\" AND password = \"$password\"";
$result = mysql_query($query) or die("No.");

$query = "UPDATE user_information SET profile=\"". $profile ."\" where ID=\"".$ID."\"";
$result = mysql_query($query);
if (!$query)
{
die(" Query could not be executed");
}

mysql_close();

PRINT "$profile";
?>

daphreeek

What error do you get?

sdjensen

Why are you making a query for for the ID when you have the username and the password?

UPDATE user_information SET profile=\"". $profile ."\" where username = \"$username\" AND password = \"$password\"

Is $username and $password set globally?

Otherwise use

$username = $_POST['username'];
$password = $_POST['password'];

bootcom

Parse error: parse error, unexpected T_STRING in /home/bootcom/public_html/profile_data.php on line 15

This is the error that is showing ..... It is really confusing me now.

sdjensen

Try this code

<? 
include "include.php"; 
include "config.php"; 

$con = mysql_connect(localhost, $user_username, $user_password) or die("Database Connection Failed. Please inform our administritive team."); 
$result=mysql_select_db($user_database) or die( "Unable to select database"); 

$profile = $_POST["content"]; 

$query = "UPDATE user_information SET profile=\"". $profile ."\" where username = \"$username\" AND password = \"$password\""; 
$result = mysql_query($query); 
if (!$result) 
{ 
die(" Query could not be executed"); 
} 

mysql_close(); 

PRINT "$profile"; 
?>

bootcom

Thank you. It works perfectly now. 🙂