SQL Search

NZ_Kiwis

I have a form with a text box and i want its to seach a selected table and columns in this table for possible matches then list them...

can this be done??

if so how?

rincewind456

Yes

NZ_Kiwis

the second part is "if so how?"

rincewind456

A bit more info would be helpful, are you using a database? if so what type.
What code do you have already?

NZ_Kiwis

yes it's mysql 4

rincewind456

Like this?

<?php

if (isset($_POST['submit'])) { 

$user = 'xxxx';
$password = 'xxxx';
$database = 'xxxx';
$email_address = 'xxx@xxx.xx';

$search = mysql_real_escape_string(trim($_POST['search']));


function make_connection($username="", $psswd="", $dbname="", $email="", $host="localhost"){

//@PARAM - $username = mysql username.
//@PARAM - $psswd = mysql password.
//@PARAM - $dbname = mysql database name.
//@PARAM - $email = email address to send alerts to.
//@PARAM - $host = mysql host name default is localhost.

$conn = @mysql_connect($host, $username, $psswd) or error_log("User for THIS_SCRIPT, couldn't connect to MySQL Server: $host", 1, $email);

$db = @mysql_select_db($dbname, $conn) or error_log("User for THIS_SCRIPT, couldn't connect to MySQL Database: $dbname", 1, $email);

if (!$conn || !$db){
	print "Internal server error encountered. Administrator has been notified.";
	exit();
}
return $conn;
}

//example
make_connection($user, $password,$database,$email_address);

$sql = "SELECT * FROM table_name WHERE field_name ='$search'";

$result = mysql_query($sql) or die(mysql_error());

while ($row = mysql_fetch_array($result)){
	echo $row['field_name']."<br>\n"; //output here
}

} else {
	?>
	<form action="" method="post">
	<input type="text" size="40" name="search">
	<input type="submit" name="submit" value="submit">
	</form>
<?php
}
?>

NZ_Kiwis

I've made this smaller code... and it finds stuff when you type it the same but what if i type something like jonny and not johny

<?php 

if ($action == 'search') { 

echo "<b>You have entered:</b>";
echo $search;
echo "<P>";
echo "<hr>";
echo "<br>";


mysql_connect (localhost, **, **);
mysql_select_db (**);


$sql = "SELECT * FROM members WHERE username = '$search'"; 

$result = mysql_query($sql) or die(mysql_error()); 
while ($row = mysql_fetch_array($result)){ 
echo $row['username']."<br>\n"; 
} 


} else { 
    ?> 
    <form action="search.php?action=search" method="post"> 
    <input type="text" size="40" name="search"> 
    <input type="submit" name="submit" value="submit"> 
    </form> 
<?php 
} 
?>