Problem passing form data

sylunt1

Hello.

I have a form that is supposed to pass data to be processed - the page works except that data does not get entered into the db. I get this:
Data inserted successfully.INSERT INTO license (quantity, lic_num, sw_id, purch_date, exp_date, po_num, auth_num, notes) VALUES ('','','','','','','','')

but there was data in the form when I submitted it. The pages are as follows:

this is the form page:

<?php 
	include 'c:\Program Files\Apache Group\Apache2\htdocs\ktd\inc\my.php';


?>
<!-- BEGIN MAIN CONTENT TABLE -->
<blockquote>
<FORM action="insertlic.php" method="post"> 
<table>
	<tr><td><b>License number: </B></td><td><input type="text" name="lic_num" size=25></td></tr>
	<tr><td><b>Quantity:   </B></td><td><input type="text" name="quantity" size=25></td></tr>
	<tr><td><b>Software Name: </B></td><td>
	<?php  

include 'c:\Program Files\Apache Group\Apache2\htdocs\ktd\inc\my.php';
    	$db = mysql_connect("$server", "$user", "$password");
	mysql_select_db('ktdlicense', $db) or die ('Cannot connect to $db_Database : ' . mysql_error());

$result = mysql_query ("SELECT sw_id, sw_name
			FROM sw
	       		ORDER BY sw_name") or die(mysql_error()); 

while($row = mysql_fetch_array($result))
{

$sw_name = $row['sw_name'];
$sw_id = $row['sw_id']; 

$optionList .= "<option value=". $sw_id .">". $sw_name ."</option>";

}

echo '<form method = "GET"
      action = "insertlic.php">';

echo "<select name=swid>";  

echo $optionList;  

echo "</select>";  


?>
	<tr><td><b>Purchase date:   </B></td><td><input type="text" name="purch_date" size=25>yyyy-mm-dd</td></tr>
	<tr><td><b>Expiration date:   </B></td><td><input type="text" name="exp_date" size=25>yyyy-mm-dd</td></tr>
	<tr><td><b>PO#:   </B></td><td><input type="text" name="po_num" size=25></td></tr>
	<tr><td><b>Auth #:   </B></td><td><input type="text" name="auth_num" size=25></td></tr>

</table>
<BR> 
<BR> 
<input type="submit" value="Submit"> 
</FORM>

This is the process page:

<?php  

$sw_id = $_GET['swid']; 

include 'c:\Program Files\Apache Group\Apache2\htdocs\ktd\inc\my.php';
    	$db = mysql_connect("$server", "$user", "$password");
	mysql_select_db('ktdlicense', $db) or die ('Cannot connect to $db_Database : ' . mysql_error());

$result = mysql_query ("SELECT sw_id, sw_name
			FROM sw
			WHERE sw_id = '$swid'") or die(mysql_error()); 

while($row = mysql_fetch_array($result))
	{

$sw_id = $row['sw_id'];
$sw_name = $row['sw_name'];    

           	}
?>

<?PHP 


include 'c:\Program Files\Apache Group\Apache2\htdocs\ktd\inc\my.php';

	mysql_select_db('ktdlicense', $db) or die ('Cannot connect to $db_Database : ' . mysql_error());

	$sql = "INSERT INTO license (quantity, lic_num, sw_id, purch_date, exp_date, po_num, auth_num, notes)
		VALUES ('$quantity','$lic_num','$sw_id','$purch_date','$exp_date','$po_num','$auth_num','$notes')"; 
	$sql_result = mysql_query($sql,$db) or die ('Could not insert data'); 
echo('Data inserted successfully.');

echo $sql; 

mysql_close($db); 
?>

Thanks in advance...

toplay

In the process page, I don't see where you assign the variables like $quantity, $lic_num etc. values before putting them in the table. I assume you have register_globals off. Keep it off and program accordingly. This means using $_POST to assign the variable their values from the form. I'll just show an example of one:

$lic_num = isSet($POST['lic_num']) ? $POST['lic_num'] : ''; // Set a default if not input

hth.