desperately need some help . Passing variables

persianboi

I'm newbie to PHP and learning things on my own. Anyways i have a project to finish by tomorrow and it's really not going well. I can try to simplify this as much as possible so u guys understand.

Introduction:

Reservation form online. so say we have a reservation.inc that includes the form and it has 1 field at this point cause if I figure out the problem with one of them, the rest is ok. 2- there is also login2.php that recieves data, checked if its ok, if so, writes into a database.

<form action="Login2.php?do=new" method="post" >
		<table border="0" width="420">
		<?PHP
		if (isset($message_new))
		echo "<tr><td colspan='2'><b>$message_new</b>
		</td></tr>";
		?>
		<tr>
		<td class="subtitleb">* <span class="text">Arrival date:</span>
		  <input type="text" name="nnights" size="10" maxlength="4" value="<?php echo @$ndyear ?>">

As u see the name is nnights.

2- Login page

<?php 

session_start();
include("info.inc");

switch (@$_GET['do'])
{
	case "new":

foreach($_POST as $field => $value)
/* the code in the middle here is not important right now because its just checking against pattern */

/* My problem starts here */

$yearstring = '$ndyear';
				$monthstring = '$ndmonth';
				$daystring ='$ndday';
				$newdate = $yearstring.$monthstring.$daystring;

			$sql = "INSERT INTO reservations (numNites)
					VALUES ( '$nnights')";
			mysql_query($sql);

Notice: Undefined variable: nnights in C:\Program Files\Apache Group\Apache2\htdocs\Pelagos\Login2.php

and I get this same problem with every other variable. But I know infact they are pass along because when I test the Pattern check section it works like a charm.

Oh and

default:
		include("reservations.inc");

is included in the bttm

Can someone PLZ help me out. I really need to finish this project. I'd GREATLY appriciate some help

LordShryku

Usual cause is you're assuming [man]register_globals[/man] is on when it's not. Meaning, you either need to turn it on, or use the superglobal array it came in (in this case, $_POST).

Summary: Try $_POST['nnights'] instead of $nnights.

Edit: Unless this is within your foreach loop, in which case the variable would be accessed as $value.

Kinsbane

Could you post up your foreach loop at least? It's hard to follow your code when I don't know when your loop blocks start & end.

LordShryku

Also, using single quotes around a variable makes that variable a string instead of parsing the variable.

ie:

$this = 'blah';
echo $this; # blah
echo '$this'; # $this

So when you say
$daystring ='$ndday';
Be sure that's what you want.

persianboi

I actually tried that. $_post['nnight'] . and btw I have no problems connectin to the database. But anyways the warnings go away, but it doesnt write anything to the database

Kinsbane

persianboi wrote:
I actually tried that. $_post['nnight'] . and btw I have no problems connectin to the database. But anyways the warnings go away, but it doesnt write anything to the database

Could you post all the code leading up to your problem bit of code?

I'm a visual guy so I need a road-map of sorts to follow to see how you ended up where you did. That way I can offer better assistance 🙂

persianboi

Kinsbane wrote:
Could you post up your foreach loop at least? It's hard to follow your code when I don't know when your loop blocks start & end.

The original code is abit long
I can post the whole thing

<?php 

session_start();
include("info.inc");

switch (@$_GET['do'])
{
	case "new":

foreach($_POST as $field => $value)
{
if( $field == "nnights")
	{
		if($value == "")
		{
			unset($_GET['do']);
			$message_new = "Please enter number of nights";
			include("reservations.inc");
			exit();
		}
		else if(!ereg("^[0-9]{1,2}$",$value))
		{
			unset($_GET['do']);
			$message_new = "Please enter valid number";
			include("reservations.inc");
			exit();
		}
	}else if( $field == "nrooms")
	{
		if($value == "")
		{
			unset($_GET['do']);
			$message_new = "Please enter number of rooms";
			include("reservations.inc");
			exit();
		}
		else if(!ereg("^[0-9]{1,2}$",$value))
		{
			unset($_GET['do']);
			$message_new = "Please enter valid number";
			include("reservations.inc");
			exit();
		}
	}else if( $field == "nadults")
	{
		if($value == "")
		{
			unset($_GET['do']);
			$message_new = "Please enter number of adults";
			include("reservations.inc");
			exit();
		}
		else if(!ereg("^[0-9]{1,2}$",$value))
		{
			unset($_GET['do']);
			$message_new = "Please enter valid number";
			include("reservations.inc");
			exit();
		}
	}else if( $field == "nchilds")
	{
		if($value == "")
		{
			unset($_GET['do']);
			$message_new = "Please enter number of children";
			include("reservations.inc");
			exit();
		}
		else if(!ereg("^[0-9]{1,2}$",$value))
		{
			unset($_GET['do']);
			$message_new = "Please enter valid number";
			include("reservations.inc");
			exit();
		}
	}else if( $field == "nfirstn")
	{
		if($value == "")
		{
			unset($_GET['do']);
			$message_new = "Please enter your first name";
			include("reservations.inc");
			exit();
		}
		else if(!ereg("^[A-Za-z' -]{1,20}$",$value))
		{
			unset($_GET['do']);
			$message_new = "Please enter valid name";
			include("reservations.inc");
			exit();
		}
	}else if( $field == "nlastn")
	{
		if($value == "")
		{
			unset($_GET['do']);
			$message_new = "Please enter your last name";
			include("reservations.inc");
			exit();
		}
		else if(!ereg("^[A-Za-z' -]{1,50}$",$value))
		{
			unset($_GET['do']);
			$message_new = "Please enter valid name";
			include("reservations.inc");
			exit();
		}
	}else if( $field == "nemail")
	{
		if($value == "")
		{
			unset($_GET['do']);
			$message_new = "Please enter your email address";
			include("reservations.inc");
			exit();
		}
		else if(!ereg("^.+@.+\.+[A-Za-z]{2,3}$",$value))
		{
			unset($_GET['do']);
			$message_new = "Please enter valid email address";
			include("reservations.inc");
			exit();
		}
	}else if( $field == "ndyear" or $field == "ndmonth" or $field == "ndday")
	{
		if($value == "")
		{
			unset($_GET['do']);
			$message_new ="Please fill up the yyyy/mm/dd fields";
			include("reservations.inc");
			exti();
		}
		if( $field =="ndyear")
		{
			if(!ereg("^[0-9]{4}$",$value))
			{
			unset($_GET['do']);
			$message_new = "Please enter valid year";
			include("reservations.inc");
			exit();
			}
		}else if( $field =="ndmonth")
			{
				if(!ereg("^[0-9]{2}$",$value))
				{
				unset($_GET['do']);
				$message_new = "Please enter valid month";
				include("reservations.inc");
				exit();
				}
		}else if( $field =="ndday")
			{
				if(!ereg("^[0-9]{2}$",$value))
				{
				unset($_GET['do']);
				$message_new = "Please enter valid day";
				include("reservations.inc");
				exit();
				}
			}
	}
}

		/* checking to see if a reservation has already been made */

		$connection = mysql_connect($host,$user,$password) or die("couldnt connect to the server");
		$db = mysql_select_db($database, $connection) or die("couldnt connect to the database");
		$sql = "SELECT firstName FROM reservations WHERE firstName =$nfirstn";
		$result = mysql_query($sql);
		$num = mysql_num_rows($result);
		if ( $num > 0)
		{
			unset($_GET['do']);
			$message_new = "There has been a reservation made under this name already";
			include("reservations.inc");
			exit();
		}
		else
		{

			$yearstring = '$ndyear';
			$monthstring = '$ndmonth';
			$daystring ='$ndday';
			$newdate = $yearstring.$monthstring.$daystring;

			$sql = "INSERT INTO reservations (arrivalDate, numNites, numRooms, numAdults, numChilds, firstName, lastName, title, email, address, zip, city, state, country, tel, fax, comments)
					VALUES ('$newdate', '$nnights', '$nrooms', '$nadults', '$nchilds', '$nfirstn', '$nlastn', '$ntitle', '$nemail', '$naddress', '$zip, '$ncity', '$nstate', '$ncountry', '$ntel', '$nfax', '$ncomments')";
			mysql_query($sql);
			/*email the new info */
			$emess = "A new reservation has been made ";
			$emess.= "First name and Last name are under: ";
			$emess.= "\n\n\t$nfirstn\n\t$nlastn\n\n";
			$emess.= "ArrivalDate : ";
			$emess.= "$yearstring/$monthstring/$daystring";
			$ehead="From: reza.zaeim@gmail.com\r\n";
			$subj = "New Reservation:";
			$mailsend=mail("$email","$subj","$emess","$ehead");
			header("Location: yahoo.com");
		}


	break;
	default:
	include("reservations.inc");
}

?>

persianboi

and this is the full reservation.inc code

<form action="Login2.php?do=new" method="post" >
		<table border="0" width="420">
		<?PHP
		if (isset($message_new))
		echo "<tr><td colspan='2'><b>$message_new</b>
		</td></tr>";
		?>
		<tr>
		<td class="subtitleb">* <span class="text">Arrival date:</span>
		  <input type="text" name="ndyear" size="10" maxlength="4" value="<?php echo @$ndyear ?>">
		  <input name="ndmonth" type="text" size="10" maxlength="2" value="<?php echo @$ndmonth ?>"> 
		  <input name="ndday" type="text" size="10" maxlength="2" value="<?php echo @$ndday ?>"> 
		  </td>
		</tr>
		<tr><td class="subtitleb">* <span class="text">Number of nights:</span>
			    <input name="nnights" type="text" size="5" maxlength="3" value="<?php echo @$nnights ?>">
       			<span class="m1">*<span class="text">Number of Rooms</span>
				<input name="nrooms" type="text" size="5" maxlength="3" value="<?php echo @$nrooms ?>">
   			  </span>		    </td>
		</tr>
		<tr>
		  <td class="subtitleb">* <span class="text">Number of adults:</span>
				<input name="nadults" type="text" size="5" maxlength="2" value="<?php echo @$nadults ?>">
				<span class="m2">*<span class="text">Number of Childern</span>
				<input name="nchilds" type="text" size="5" maxlength="3" value="<?php echo @$nchilds ?>">
				</span>				</td>
		  </tr>
				<tr>
				<td class="subtitle">
				  <p class="topm">Please give us some information about yourself:</p></td>
				</tr>
				<tr>
				<td class="subtitleb">*<span class="text">First name:</span>
				<input name="nfirstn" type="text" size="15" maxlength="15" value="<?php echo @$nfirstn ?>">
				<span class="m1">*<span class="text">Last name:</span>
				<input name="nlastn" type="text" size="15" maxlength="15" value="<?php echo @$nlastn ?>">
				</span>				</td>
				</tr>
				<tr>
				<td class="text">Title:
				<input name="ntitle" type="text" size="15" maxlength="15" value="<?php echo @$ntitle ?>">
				<span class="m3"><span class="subtitleb">*</span> <span class="text">Email:</span>
                <input name="nemail" type="text" size="15" maxlength="30" value="<?php echo @$nemail ?>">
				</span>				</td>
				</tr>
				<tr>
				<td class="text">Address:
				<input name="naddress" type="text" size="20" maxlength="50"value="<?php echo @$naddress ?>">
				<span class="m4">Zip/Postal Code:
				<input name="nzip" type="text" size="10" maxlength="15" value="<?php echo @$nzip ?>">
				</span>				</td>
				</tr>
				<tr>
				<td class="text">City:
				<input name="ncity" type="text" size="15" maxlength="15" value="<?php echo @$ncity ?>">
				<span class="m5">State/Province:
				<input name="nstate" type="text" size="15" maxlength="15" value="<?php echo @$nstate ?>">
				</span>				</td>
				</tr>
				<tr>
				<td class="text">Country:
				<input name="ncountry" type="text" size="15" maxlength="15" value="<?php echo @$ncountry ?>">
				</td>
				</tr>
				<tr>
				<td class="text">Telephone:
				<input name="ntel" type="text" size="20" maxlength="10" value="<?php echo @$ntel ?>">
				<span class="m6">Fax:
				<input name="nfax" type="text" size="20" maxlength="10" value="<?php echo @$nfax ?>">
				</span>				</td>
				</tr>
				<tr>
				<td class="subtitle">Additional Comments or Information<br>
				<textarea cols="45" rows="1" wrap="VIRTUAL" name="ncomments">
				</textarea>

			</td>
			</tr>
			<tr>
			<td>
              <input name="nsubmit" type="submit" style="Font-size: 9pt; border: #000080 1px solid; background: #80ffff;" value="Submit">
</td>
				</tr>

	</table>

persianboi

LordShryku wrote:
Also, using single quotes around a variable makes that variable a string instead of parsing the variable.

ie:
$this = 'blah';
echo $this; # blah
echo '$this'; # $this
So when you say
$daystring ='$ndday';
Be sure that's what you want.

I see ya thats true I will have to fix that for sure. but still doesnt solve the problem with my SELECT conditions

persianboi

Kinsbane wrote:
Could you post all the code leading up to your problem bit of code?

I'm a visual guy so I need a road-map of sorts to follow to see how you ended up where you did. That way I can offer better assistance 🙂

Does this help?

Kinsbane

persianboi wrote:
I see ya thats true I will have to fix that for sure. but still doesnt solve the problem with my SELECT conditions

The values going into / grabbing from your database aren't what php/mysql is expecting.

For instance, as LordShrykiu said, you need to do something like this:

//with $_POST already made into $variables
$field = $_POST['form-element'];
$sql = "SELECT * FROM table WHERE field='$field'";


//without $_POST made into $variables
$sql = "SELECT * FROM table WHERE field='".$_POST['form-element']."'";

Either define your $variables from the $_POST data, or combine them to the string using the period ( . ) concantenator (sp).

Kinsbane

persianboi wrote:
Does this help?

Yes actually, see my reply above.

persianboi

I will try that. I'm pretty sure I tried that but nothing was being inserted into the database..

persianboi

Ok The problem is now, Though I got rid of the warnings,

NOTHING is being added to the database.
Any clues where to look? I mean The connection is made and all..