255 Chars???!

foofoobar

I'm trying STILL to send HTML code via a form into a TEXT field in a MySQL DB but am having problems. Now it seems that sending the data via the post method limits it to under 255 characters. Is there a way to over ride this??

stolzyboy

you obviously have the text field in the database set to 256

change the field in the db, cuz it isn't the form that is limiting it

but maybe post the code you are using and a schema of your mysql table

foofoobar

Ok I have no idea what is going on. First I think it's 255 char limit then I think it's escape chars. I honestly have no idea at this point and am grasping at straws.

Here;s the code for creating the form...
####################################
$output .= "<form enctype=multipart/form-data method=post action=pop3.php>";

if(empty($row['type'])){
$output .= "<b>NEW ENTRY</B>";
$output .= "<b>loc#:</b> 1<br>";
$output .= "<b>city:</b> bellevue<br>";
$output .= "<input type=hidden name=loc value=1>";
$output .= "<input type=hidden name=sec value=".$sec.">";
$output .= "<input type=hidden name=type value=".$type.">";
$output .= "<b>section:</b>".$sec."</br>";
$output .= "<b>type:</b>".$type."</br>";
}else{
$output .= "<b>loc#:</b> 1<br>";
$output .= "<b>city:</b> bellevue<br>";
$output .= "<input type=hidden name=sec_id value=".$row['sec_id'].">";
$output .= "<b>section:</b>".$sec."</br>";
$output .= "<b>type:</b>".$type."</br>";
}

$text=stripslashes($text);

$output .= "<b>text:</b><textarea name=text rows=30 cols=60>".$text."</textarea></br>";
$output .= "<input type=submit value=submit>";
$output .= "</form>";
#######################################

and here's the code for handling it...

#######################################
$sec_id = $HTTP_POST_VARS['sec_id'];
$loc = $HTTP_POST_VARS['loc'];
$sec = $HTTP_POST_VARS['sec'];
$type = $HTTP_POST_VARS['type'];
$text = $HTTP_POST_VARS['text'];

$text = mysql_escape_string(htmlspecialchars(stripslashes($text)));

include ("../mySQL.php");

$DB = new sql_driver;
$DB->connect();

if(empty($sec_id)){
$DB->query("insert into section values('','".$loc."','".$sec."','".$type."','".$text."');");
}else{
$DB->query("update section set text='".$text."' where sec_id=".$sec_id.";");
}
#######################################

Quite honestly, I'm stumped.

stolzyboy

have you changed the limit on the field?

foofoobar

It's a TEXT field. VARCHAR has 256 limit, TEXT does not... even checked to make sure it was TEXT.

But that isn't the problem... at least not that I think. It's kind of bizarre. I'm trying to send plain HTML code and sometimes it sends, sometimes it doesn't. Most often it doesn't.

stolzyboy

if this is the query you are using

$DB->query("insert into section values('','".$loc."','".$sec."','".$type."','".$text."');");

you are missing half of it

you aren't telling it what fields to go, here is an example of an insert

insert into tablename (field1, field2, field3) values ('$var1', '$var2', '$var3')

and if that is REALLY the query, I am surprised it has worked at all

foofoobar

Yeah thats the query. You do not have to specify the fields you are populating; just use values and assume you are populating them all.

For instance in my query SECTION is the name of the table and I am populating all values for a row.

insert into section values('','".$loc."','".$sec."','".$type."','".$text."');");

If you do not specify the fields, it assumes by default you are populating them all. This is standard.

Any other suggestions?

stolzyboy

may be standard, but not a good practice.....

stolzyboy

and no, i'm not sure what else to tell you but try limiting what you input into each field and narrow it down somehow

do an insert into field

then insert into field1

then insert into field3

until you find out what truly is flaking out

foofoobar

When doing an insert, this should always be your default. When doing an update you specify. There is no real reason to specify the values in an insert unless a large amount of them are using default values or can be null.

If they do NOT have default values or CANNOT be null, this is the best method as you will be populating the vast majority and thus all fields will require a value.

If all fields require a value then there is no need to specify. Specifying fields when the vast majority wil be being populated is redundant and unnecessary.

Any other suggestions?

stolzyboy

you were obviously writing when i posted

look up :rolleyes:

foofoobar

Well I tried limiting the inserts prior to this and all of them work except the TEXT field. I can only assume it is because of all the wird characters that I am sending which I thought this would take care of...

$text = mysql_escape_string(htmlspecialchars(stripslashes(
$text)));

That SHOULD take care of all funny characters that would interfere with the QUERY but now it seems that I am having problems with the POST METHOD. The form doesn't send sometimes... and other times it does.

I try just plain text and it works every time. But when I stick in HTML tags and URLS and stuff, it screws up.

stolzyboy

do you have any % or _ inputting

Note: mysql_escape_string() does not escape % and _.

foofoobar

Yes I do! What can I use to escape them??

stolzyboy

you may want to check out

www.php.net/urlencode
www.php.net/urldecode
www.php.net/addslashes
and others in the manual

they may help, but there isn't too much help that i can find quickly about the % and/or _ problem

foofoobar

Or do these just require replacing via ereg_replace?

stolzyboy

once again look up

:rolleyes:

last post on first page

foofoobar

DOH! Ok thanks. I'll just try replacing them and then putting them back in later.

Thanks for the help.

stolzyboy

k, i'm leaving the board

Mordecai

If it is a length thing, just change it to a LONGTEXT rather than a TEXT.