I am going crazy trying to figure this out!

Joe_Marchant

I am new and have spent a lot of time debugging as you can see from my comments. As far as I can see, and that aint very far, the problem manifests itself at the end of the code below at this point: Retrieve the results...

// Get the basic data from the company status table
$result = mysqli_query($link, 'SELECT id, compstatus FROM compstatus');
if (!$result)
{
$error = 'Error fetching compstatus from database!';
include '../errorfetchingcompstats.html.php';
exit();
}
while ($row = mysqli_fetch_array($result))
{
$compstatuss[] = array('id' => $row['id'],'compstatus' => $row['compstatus']);
}
include 'searchform.html.php';

// The basic SELECT statement
if (isset($_GET['action']) and $_GET['action'] == 'search')
{
include $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_db_ciq_connection.php';
$select = 'SELECT id, name';
$from = ' FROM company';
$WHERE = 'WHERE TRUE';


// Checking to see if a type was specified in the search querry
$type_id = mysqli_real_escape_string($link, $_GET['type']);
if ($type_id != '') // A type is selected
{
$where .= " AND type_id='$type_id'";
echo $type_id;
}


// Note:  If there are many to many situations between tables, you must create inbetween tables and use joins to link them together. There will be two extra blocks of code per check(type and company status)


// Checking to see if a company status was specified in the search querry
$compstatusid = mysqli_real_escape_string($link, $_GET['compstatus']);
if ($compstatusid != '') // A company status is selected
{
$where .= " AND compstatusid='$compstatusid'";
echo $compstatusid;
}


// Checking to see if the text of a company was specified in the search querry
$text = mysqli_real_escape_string($link, $_GET['text']);
if ($text != '') // Some search text was specified
{
$where .= " AND name LIKE '%$text%'";
echo $text;
}

// Retrieve the results of our querry and display the results
$result = mysqli_query($link, $select . $from . $where);
if (!$result)
{
$error = 'Error fetching companies.';
include '../errorfetchingquerry.html.php';
exit();
}

bradgrafelman

Welcome to PHPBuilder! When posting PHP code, please use the board's [noparse]

..

[/noparse] bbcode tags as they make your code much easier to read and analyze.

Now, onto your 'problem'...

First and foremost, you never told us what the "problem" is! What's happening? What isn't happening? Are you getting any error messages (and/or did you even verify that display_errors is set to On and error_reporting set to E_ALL)?
If it's a SQL query problem (hint: it is 🙂), you should be using the error message returned by the MySQL server to aid in the debugging process.

In other words, if [man]mysqli_query/man returns FALSE (indicating error), then you should be examining the value of [man]mysqli_error/man to determine the cause. Note that it is often helpful to also output the query string sent so that you can visually examine it.
If you had done the above, you would have noticed that there is no space between the table name and the 'WHERE' keyword.

Joe_Marchant

OK, Thanks for your reply and advice. I will try to do better. I am trying to get a little search engine to work on our site. By the way, I didn't see any place in my code where I was missing a space at the WHERE and the table name. Could you clarrify? Anyway, the code checks to see if a TYPE was selected and ditto for COMPANY STATUS and then it checks to see if any text was typed as in Company name. So, the page loads great. http://www.ciqadmin.ciqxchange.com/cms/
When I click one search without selecting any contstraints, it should populate with all the records in the Company table. It don't. I get a PARSE error. Also, when I select ADD COMPANY, I get another error. I did set up error messages at each juncture and I did locate the error to be at this line: $result = mysqli_query($link, $select . $from . $where); But I haven't been able to discover exactly what the error is. Thanks again soooooooooo much.

Joe_Marchant

php

// Display search form
include $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_db_ciq_connection.php';

// Get the basic data from the type table
$result = mysqli_query($link, 'SELECT id, type FROM type');
if (!$result)
{
$error = 'Error fetching type from database!';
include '../errorfetchingbasics.html.php';
exit();
}
while ($row = mysqli_fetch_array($result))
{
$types[] = array('id' => $row['id'],'type' => $row['type']);
}

// Get the basic data from the company status table
$result = mysqli_query($link, 'SELECT id, compstatus FROM compstatus');
if (!$result)
{
$error = 'Error fetching compstatus from database!';
include '../errorfetchingcompstats.html.php';
exit();
}
while ($row = mysqli_fetch_array($result))
{
$compstatuss[] = array('id' => $row['id'],'compstatus' => $row['compstatus']);
}
include 'searchform.html.php';

// The basic SELECT statement
if (isset($GET['action']) and $GET['action'] == 'search')
{
include $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_db_ciq_connection.php';
$select = 'SELECT id, name';
$from = ' FROM company';
$WHERE = 'WHERE TRUE';

// Checking to see if a type was specified in the search querry
$type_id = mysqli_real_escape_string($link, $_GET['type']);
if ($type_id != '') // A type is selected
{
$where .= " AND typeid = '$typeid'";
echo $type_id;
}

// Note: If there are many to many situations between tables, you must create inbetween tables and use joins to link them together. There will be two extra blocks of code per check(type and company status)

// Checking to see if a company status was specified in the search querry
$compstatusid = mysqli_real_escape_string($link, $_GET['compstatus']);
if ($compstatusid != '') // A company status is selected
{
$where .= " AND compstatusid = '$compstatusid'";
echo $compstatusid;
}

// Checking to see if the text of a company was specified in the search querry
$text = mysqli_real_escape_string($link, $GET['text']);
if ($text != '') // Some search text was specified
{
$where .= " AND name LIKE '%$text%'";
include $SERVER['DOCUMENT_ROOT'] . '/includes/inc_db_ciq_connection.php';
}

// Retrieve the results of our querry and display the results
$result = mysqli_query($link, $select . $from . $where);
if (!$result)
{
$error = 'Error fetching companies.';
include '../errorfetchingquerry.html.php';
exit();
}
while ($row = mysqli_fetch_array($result))
{
$companies[] = array('id' => $row['id'], 'text' => $row['name']);
}
include 'companies.html.php';
exit();
}

// Display the blank form when add new company is clicked
include_once $SERVER['DOCUMENT_ROOT'] .'/includes/magicquotes.inc.php';
if (isset($GET['add']))
{
$pagetitle = 'New company';
$action = 'addform';
$text = '';
$id = '';
$type_id = '';
$compstatusid = '';
$address = '';
$city = '';
$state = '';
$zip = '';
$signatory = '';
$title = '';
$button = 'Add company';
include $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_db_ciq_connection.php';

// Build the list of company types
$sql = "SELECT id, type FROM type";
$result = mysqli_query($link, $sql);
if (!$result)
{
$error = 'Error fetching list of types.';
include '../errorfetchinglistoftypes.html.php';
exit();
}
while ($row = mysqli_fetch_array($result))
{
$types[] = array(
'id' => $row['id'],
'type' => $row['type']);
}

// Build the list of company status
$sql = "SELECT id, compstatus FROM compstatus";
$result = mysqli_query($link, $sql);
if (!$result)
{
$error = 'Error fetching list of company status.';
include '../errorfetching.listofcompstat.html.php';
exit();
}
while ($row = mysqli_fetch_array($result))
{
$compstatus[] = array(
'id' => $row['id'],
'compstatus' => $row['compstatus']);
// note: we must add this code if we had one to many situation: 'selected' => FALSE);
}
include 'form.html.php';
exit();
}

// If the user clicks on edit company we must build the form with the populated data to edit
if (isset($POST['action']) and $POST['action'] == 'Edit')
{
include $SERVER['DOCUMENT_ROOT'] . '/includes/inc_db_ciq_connection.php';
$id = mysqli_real_escape_string($link, $POST['id']);

$sql = "SELECT id, name, type_id, compstatusid, address, city, state, zip, signatory, title From company WHERE id ='$id'";
$result = mysqli_query($link, $sql);

if (!$result)
{
$error = 'Error fetching company details.';
include '../errorfetchingcompdetails.html.php';
exit();
}

$row = mysqli_fetch_array($result);
$pagetitle = 'Edit company';
$action = 'editform';
$id = $row['id'];
$text = $row['name'];
$type_id = $row['type_id'];
$compstatusid = $row['compstatusid'];
$address = $row['address'];
$city = $row['city'];
$state = $row['state'];
$zip = $row['zip'];
$signatory = $row['signatory'];
$title = $row['title'];
$button = 'Update company';

// Build the list of types
$sql = "SELECT id, type FROM type";
$result = mysqli_query($link, $sql);
if (!$result)
{
$error = 'Error fetching list of types.';
include '../errorfetchinglistoftypes.html.php';
exit();
}
while ($row = mysqli_fetch_array($result))
{
$types[] = array('id' => $row['id'], 'type' => $row['type']);
}

// Build the list of company status
$sql = "SELECT id, compstatus FROM compstatus";
$result = mysqli_query($link, $sql);
if (!$result)
{
$error = 'Error fetching list of compstatus.';
include '../errorfetchinglistofstatus.html.php';
exit();
}
while ($row = mysqli_fetch_array($result))
{
$compstatus[] = array('id' => $row['id'], 'compstatus' => $row['compstatus']);
}

include 'form.html.php';
exit();
}

// This code processes the form submissions
if (isset($GET['addform']))
{
include $SERVER['DOCUMENT_ROOT'] . '/includes/inc_db_ciq_connection.php';
$text = mysqli_real_escape_string($link, $POST['name']);
$type = mysqli_real_escape_string($link, $POST['type']);

if ($type == '')
{
$error = 'You must choose a type for this company.
Click ‘back’ and try again.';
include '../errormustchoosetypeforcomp.html.php';
exit();
}
$compstatus = mysqli_real_escape_string($link, $_POST['compstatus']);
if ($compstatus == '')
{
$error = 'You must choose a company status for this company.
Click ‘back’ and try again.';
include '../errormustchoosecompanystatus.html.php';
exit();
}
$sql = "INSERT INTO company SET
name='$text',
type_id='$type_id',
compstatusid='$compstatusid',

address='$address',
city='$city',
state='$state',
zip='$zip',
signatory='$signatory',
title='$title'";

if (!mysqli_query($link, $sql))
{
$error = 'Error adding submitted company.';
include '../erroraddingsubmittedcompany.html.php';
exit();
}

header('Location: form.html.php');
exit();
}

// The form processing code for editing existing companies
if (isset($GET['editform']))
{
include $SERVER['DOCUMENT_ROOT'] . '/includes/inc_db_ciq_connection.php';
$text = mysqli_real_escape_string($link, $POST['text']);
$type = mysqli_real_escape_string($link, $POST['type']);
$compstatus = mysqli_real_escape_string($link, $POST['compstatus']);
$id = mysqli_real_escape_string($link, $POST['id']);
if ($type == '')
{
$error = 'You must choose a type for this company.
Click ‘back’ and try again.';
include '../errormustchoosetypeforcomp.html.php';
exit();
}

if ($compstatus == '')
{
$error = 'You must choose a company status for this company.
Click ‘back’ and try again.';
include '../errormustchoosecompanystatus.html.php';
exit();
}

$sql = "UPDATE company SET
name='$text',
type_id='$type_id',
compstatusid='$compstatusid',
date=CURDATE(),
address='$address',
city='$city',
state='$state',
zip='$zip',
signatory='$signatory',
title='$title';
WHERE id='$id'";

if (!mysqli_query($link, $sql))
{
$error = 'Error updating submitted company.';
include '/includes/inc_db_ciq_connection.php';
exit();
}
}

// The form processing code for deleting existing companies
if (isset($POST['action']) and $POST['action'] == 'Delete')
{
include $SERVER['DOCUMENT_ROOT'] . '/includes/inc_db_ciq_connection.php';
$id = mysqli_real_escape_string($link, $POST['id']);

// Delete the company
$sql = "DELETE FROM company WHERE id='$id'";
if (!mysqli_query($link, $sql))
{
$error = 'Error deleting company.';
include '../errordeleting.html.php';
exit();
}
}

/php

Joe_Marchant

I sent all the code and tried using those tags you said to use but I think I did it wrong What exactly do I type to make it work? I did php at the beginning and /php at the end.

Joe_Marchant

Okay, I put the error codes in and I am getting these:
in /home2/lowestc1/public_html/ciqAdmin/cms/companies/companycontroller.php on line 73

Parse error: syntax error, unexpected '<' in /home2/lowestc1/public_html/includes/inc_db_ciq_connection.php on line 7

Joe_Marchant

OK, after I put the error functions on my page I got some errors that I fixed, like some of WHERE key words were lower case and I made them all upper. Still going through it. I am using HTML TOOLKIT by the way, They have some nice features. But I have nothing to compare it to.

johanafm

BBcode start tags look like [this] and end tags like [/this] => [ php] ... [ /php] (without the leading white space)

The original issue pointed out to you by Brad... If you'd output more information about errors, you'd see this one quickly

$from = ' FROM company';
$where = 'WHERE TRUE'; 

# concatenation of the above two strings yield
# ' FROM companyWHERE true'

# I like to assemble one variable to hold my query, so that I can easily echo / log the exact
# same query in case something goes wrong
$qry = $select . $from . $where
$result = mysqli_query($link, $qry);
if (!$result)
{
	# This is where you'd actually want to display something relevant for debugging
	# or perhaps not display, but at least log it...
	error_log($qry . PHP_EOL . mysqli_errno . ': ' . mysqli_error($link));

# If this is shown to an actual user, you should not include the above info (but logging
# is still a good idea in a production environment
$error = 'Error fetching companies.';
include '../errorfetchingquerry.html.php';