Forums

Nixon

Hey I currently have my own homemade forum at http://outlink.coolfreepage.com and to insert hold data I use a database. Is this a good idea? How do other forums work. Also when a user is posting a thread or a reply when they write what they want into a textfield (like the one im writing in now) when they press return it doesn't keep that in the database. Any ideas?

tuf-web_co_uk

i dont know anything about hold data

but for the line breaks you want to use the addslashes function when adding the data to the database, stripslashes when returning the infomation to the page and nl2br() to make the break lines

planetsim

vBulletin uses a database to store all information
PHPBB2 uses a database to store all information except Templates

My Forum im making uses a database for everything possible, that requires information to be stored

Nixon

Thanks for your help, but with the addslashes thing how do I get them to be put in automatically without the user needing to see them or insert them manually?

tuf-web_co_uk

before you submit the information to the database using sql, run the function

$var = addslashes($_POST[var]);
$sql = "INSERT .......

Nixon

How will this work here is my code that enters the text into the database where woudl I put the extra code?

<?php 

session_start(); 

include("connectdb.inc.php");
include("loginscript.php");

$year= date ("Y"); 
$month= date ("m"); 
$day= date ("d"); 

mysql_query("insert into forum (position, topic, views, replies, poster, date, cat, text) values(\"1\",\"$topic\",\"0\",\"0\",\"$sessionusername\",\"$day/$month/$year\",\"$cat\",\"$text\") ");

mysql_query("update forum set position=\"1\" where id=\"$id\" ");

$getall=mysql_query("select * from forum");
$count=mysql_num_rows($getall);

$counter=0;

while ($counter<=$count) {

$counter=$counter+1;

while ($row=mysql_fetch_array($getall) ) 

{ 

$idother=$row[id]; 
$pos=$row[position]; 
$pos=$pos+1; 

mysql_query("update forum set position=\"$pos\" where id=\"$idother\" ");

} }

?>

tuf-web_co_uk

like i said before the insert function

i would recommend using single quotes ' ' instead of double quotes and backslashes in your sql commands, much easier to read and easier to program 😉

<?php  

session_start();  

include("connectdb.inc.php"); 
include("loginscript.php"); 

$year= date ("Y");  

$month= date ("m");  

$day= date ("d");  

// ADDSLASHES START
$topic = addslashes($topic);
$text = addslashes($text);
// ADDSLASHES END

mysql_query("insert into forum (position, topic, views, replies, poster, date, cat, text) values(\"1\",\"$topic\",\"0\",\"0\",\"$sessionusername\",\"$day/$month/$year\",\"$cat\",\"$text\") "); 

mysql_query("update forum set position=\"1\" where id=\"$id\" "); 

$getall=mysql_query("select * from forum"); 
$count=mysql_num_rows($getall); 

$counter=0; 

while ($counter<=$count) { 

$counter=$counter+1; 

while ($row=mysql_fetch_array($getall) )  

{  

$idother=$row[id];  

$pos=$row[position];  

$pos=$pos+1;  

mysql_query("update forum set position=\"$pos\" where id=\"$idother\" "); 

} } 

?>

then when return it from the database, eg in a while loop


while ($row = mysql_fetch_array($query)) {

$text = stripslashes($row[text]); // strip slashes
$text = nl2br($text); // add break lines

$topic = stripslashes($row[topic]);

echo $topic;
echo "<br><br>";
echo $text;

}