Query was empty

54877380

I keep getting the 'Query was empty' error, and I can't seem to figure out why. It's definitely not empty, as I checked by printing it out in the error.

if (isset($_POST['create']))
	{
	$username = $_POST['username'];
	$character = $_POST['character'];
	$password = $_POST['password'];
	$level = $_POST['level'];
	$guardian = $_POST['guardian'];
	$mysql = mysql_query("INSERT INTO accounts (username, password, character, level, guardian) VALUES ('$username', '$password', '$character', '$level', '$guardian')");

if (!mysql_query($mysql,$con))
	{
	die('Error: ' . mysql_error() . "<p />" . $username . " " . $password . " " . $character . " " . $level . " " . $guardian);
	}

}

bradgrafelman

Build the SQL query string in a variable and pass that variable to [man]mysql_query/man instead. That way, if an error occurs, you can output the exact SQL query that was sent - post that query here for us to see.

54877380

ok, i've changed it to this.

if (isset($_POST['create']))
	{
	$username = $_POST['username'];
	$character = $_POST['character'];
	$password = $_POST['password'];
	$level = $_POST['level'];
	$guardian = $_POST['guardian'];
	$sql = "INSERT INTO accounts (username, password, character, level, guardian) VALUES ('$username', '$password', '$character', '$level', '$guardian')";
	$mysql = mysql_query($sql);

if (!mysql_query($mysql,$con))
	{
	die('Error: ' . mysql_error() . "<p />" . $sql);
	}

}

Which outputs this.

Error: Query was empty

INSERT INTO accounts (username, password, character, level, guardian) VALUES ('user', 'pass', 'player', '1', 'FALSE')

laserlight

You called mysql_query twice. I would expect something like this:

if (isset($_POST['create'], $_POST['username'], $_POST['character'],
    $_POST['password'], $_POST['level'], $_POST['guardian']))
{
    $sql = sprintf("INSERT INTO accounts
        (username, password, character, level, guardian)
        VALUES ('&#37;s', '%s', '%s', %d, '%s')",
        mysql_real_escape_string($_POST['username'], $con),
        mysql_real_escape_string($_POST['password'], $con),
        mysql_real_escape_string($_POST['character'], $con),
        $_POST['level'],
        mysql_real_escape_string($_POST['guardian'], $con));

mysql_query($mysql, $con)
    or die('Error: ' . mysql_error($con) . '; ' . htmlspecialchars($sql));
}