Updating table error?

Big_Ad

Hi,

Trying to make a page that updates some records and a bit confused as I'm getting a parse error I can't see?

Heres my code:

<?php 

if ($_POST[client_fullname] && $_POST[client_sex] && $_POST[client_dob] && $_POST[client_height] && $_POST[client_weight] && $_POST[client_street_address] && $_POST[client_town] && $_POST[client_postcode] && $_POST[client_phone] && $_POST[client_email] && $_POST[gp_name] && $_POST[gp_address] && $_POST[gp_phone] && $_POST[gp_notes])
{

	require_once("config.php");

	$shortdate = date("d.m.y - g:i a");

	$query = "UPDATE $client_table SET FullName='$_POST[client_fullname]', Sex='$_POST[client_sex]', DOB='$_POST[client_dob]', Height='$_POST[client_height]', Weight='$_POST[client_weight]', StreetAddress='$_POST[client_street_address]', Town='$_POST[client_town]', PostCode='$_POST[client_postcode]', PhoneNumber='$_POST[client_phone]', Email='$_POST[client_email]', GPName='$_POST[gp_name]', GPAddress='$_POST[gp_address]', GPPhoneNumber='$_POST[gp_phone]', MedicalNotes='$_POST[gp_name]', LastUpdated='$shortdate' WHERE id='$uid';

	mysql_db_query($db_name, $query) or die(mysql_error());

	[b]print "<center>Client records updated, <a href=\"cp.php?u=$u&p=$p\">click here for control panel main</a></center>";[/b]
}
else
{
	print "<center><b>Error:</b> You need to fill in all fields, please <a href=\"javascript:history.back(1);\">go back</a>";
}
?>

Heres the parse error:

Parse error: syntax error, unexpected '>' in /usr/local/psa/home/vhosts/*****.net/subdomains/cp/httpdocs/clients/viewclient_2.php on line 30

Line 30 is bold.

Any advice would be great thank you!!

Piranha

I have a few comments on your code:

When using arrays the syntax is $_POST['name']. But not in strings.
Make sure you are safe against sql injection by using the correct functions, for example mysql_real_escape_string.

Unfortunatley I can't see what is causing the error.

bradgrafelman

When posting PHP code, please use the board's

bbcode tags - they make the code much, much easier to read (as well as aiding the diagnosis of syntax errors). You should edit your post now and add these bbcode tags to help others in reading/analyzing your code.

Once you add those tags, I think the error will become apparent (hint: look where the syntax highlighting first goes awry - you're missing a quote).

Also, instead of code such as

if ($_POST['user']) {

to check if a variable exists/has data, you should be using something like:

if(!empty($_POST['user'])) {
// -- OR --
if(isset($_POST['user'])) {

In addition to Piranha's warning about SQL injections, you should also make sure you remove the [man]mysql_error/man part when this script goes live.

EDIT: Why is the LastUpdate column not a DATETIME column if it's meant to hold a date and time? You should consider using proper column types according to the data they hold; change LastUpdated to a DATETIME column and instead of generating the date you can simply use LastUpdated=NOW() in your queries.

Big_Ad

Hi thanks for your replies.

I have edited my post.

In my code I have changed the value for LastUpdated.

I cant see where I am missing the quote? - I've tried changing the the syntax for my quote and I'm still getting no luck.

Thanks very much for your replies so far. Sorry if these are silly questions.

laserlight

I cant see where I am missing the quote? - I've tried changing the the syntax for my quote and I'm still getting no luck.

Right here:

if ($_POST[client_fullname] && $_POST[client_sex] && $_POST[client_dob] && $_POST[client_height] && $_POST[client_weight] && $_POST[client_street_address] && $_POST[client_town] && $_POST[client_postcode] && $_POST[client_phone] && $_POST[client_email] && $_POST[gp_name] && $_POST[gp_address] && $_POST[gp_phone] && $_POST[gp_notes])

Big_Ad

Ok, but if I remove all the database stuff and just print "OK" for example if variables are filled, it works?

laserlight

What did you try?

Big_Ad

The if statement was exactly the same as stated, but instead of all the database stuff it was literally a print "ok" if all fields filled else print "error fill in all fields" to check the if statement and that worked?

laserlight

That's because that part is not the problem that you reported. When testing, set error_reporting to E_ALL in php.ini.

Big_Ad

laserlight wrote:
That's because that part is not the problem that you reported. When testing, set error_reporting to E_ALL in php.ini.

Ah rite, I thought it was since you quoted that part of the code? Sorry.

Well I have e-mailed my host to see if they can do anything about the php.ini

If this was your code, what would you have everything as? Sorry about all these questions I do appreciate it.