|
-
Jan 5th, 2010, 02:54 PM
#1
Thread Starter
Fanatic Member
 [RESOLVED] kalender(update) admin site
i'm having problems updating a calender to my database...
it does what its supposed to but it just won't add the calendar, it will let me write small things like a few words only... so how can i make it able to write the whole calendar in?
the code of the site:
Code:
<?php
session_start();
if(session_is_registered(myusername)){
if (isset($_POST['kalender']))
{
if (empty($_POST['kalender']))
{
echo "jeg skriver ikke ingenting ind i databasen ;)";
} else {
$connection = mysql_connect("localhost","root","");
mysql_select_db("kalender",$connection);
$counter = mysql_query("SELECT * FROM kalender WHERE id = '1' "); /* made id to 1 because i wouldn't need more then 1 in this */
$num = mysql_num_rows($counter);
$kalender = $_POST['kalender'];
if ($num == 0) {
$result = mysql_query("INSERT INTO kalender (kalender) VALUES ('$kalender')");
} else {
$result = mysql_query("UPDATE kalender SET kalender = '$kalender' WHERE id = '1'");
}
if ($result) {
echo "Success! :)";
}
else {
echo "hmmm... der skete lidt af en fejl :(";
}
}
}
?>
<form name="opret2" action="?a=opret2" method="POST">
<table border="0">
<tr>
<td>Indsæt Kalender:<br>
<textarea cols="30" rows="10" name="kalender"></textarea></td>
</tr>
<tr>
<td>
<input type="submit" cols="30" rows="10" name="submit" value="Opret Event"></td>
</tr>
</table>
</form>
<?php
} else {
include("loginform.php");
}
?>
the code of the calender, i have no clue if it should be the size(length, size), i made a program to generate the code..
Code:
<table width='100%' border='1' style='border-width:1px;background:url(background2.PNG);border-collapse:collapse;'>
<tr style='text-align:right;vertical-align:top;height:40px;'>
<td colspan='7' ALIGN='center' VALIGN='middle' style='padding:2px;'><h1><b>Januar 2010</b></h1></td>
</tr>
<tr style='text-align:center;height:40px;'>
<td><h3>Mandag</h3></td>
<td><h3>Tirsdag</h3></td>
<td><h3>Onsdag</h3></td>
<td><h3>Torsdag</h3></td>
<td><h3>Fredag</h3></td>
<td><h3>Lørdag</h3></td>
<td><h3>Søndag</h3></td>
</tr>
<tr style='text-align:right;vertical-align:top;height:60px;'>
<td> <br><center><a href='?b=Events'></a></center></td>
<td> <br><center><a href='?b=Events'></a></center></td>
<td> <br><center><a href='?b=Events'></a></center></td>
<td> <br><center><a href='?b=Events'></a></center></td>
<td>1 <br><center><a href='?b=Events'></a></center></td>
<td>2 <br><center><a href='?b=Events'></a></center></td>
<td>3 <br><center><a href='?b=Events'></a></center></td>
</tr>
<tr style='text-align:right;vertical-align:top;height:60px;'>
<td>4 <br><center><a href='?b=Events'></a></center></td>
<td>5 <br><center><a href='?b=Events'></a></center></td>
<td>6 <br><center><a href='?b=Events'></a></center></td>
<td>7 <br><center><a href='?b=Events'></a></center></td>
<td>8 <br><center><a href='?b=Events'></a></center></td>
<td>9 <br><center><a href='?b=Events'></a></center></td>
<td>10 <br><center><a href='?b=Events'></a></center></td>
</tr>
<tr style='text-align:right;vertical-align:top;height:60px;'>
<td>11 <br><center><a href='?b=Events'></a></center></td>
<td>12 <br><center><a href='?b=Events'></a></center></td>
<td>13 <br><center><a href='?b=Events'></a></center></td>
<td>14 <br><center><a href='?b=Events'></a></center></td>
<td>15 <br><center><a href='?b=Events'></a></center></td>
<td>16 <br><center><a href='?b=Events'></a></center></td>
<td>17 <br><center><a href='?b=Events'></a></center></td>
</tr>
<tr style='text-align:right;vertical-align:top;height:60px;'>
<td>18 <br><center><a href='?b=Events'></a></center></td>
<td>19 <br><center><a href='?b=Events'></a></center></td>
<td>20 <br><center><a href='?b=Events'></a></center></td>
<td>21 <br><center><a href='?b=Events'></a></center></td>
<td>22 <br><center><a href='?b=Events'></a></center></td>
<td>23 <br><center><a href='?b=Events'></a></center></td>
<td>24 <br><center><a href='?b=Events'></a></center></td>
</tr>
<tr style='text-align:right;vertical-align:top;height:60px;'>
<td>25 <br><center><a href='?b=Events'></a></center></td>
<td>26 <br><center><a href='?b=Events'></a></center></td>
<td>27 <br><center><a href='?b=Events'></a></center></td>
<td>28 <br><center><a href='?b=Events'></a></center></td>
<td>29 <br><center><a href='?b=Events'></a></center></td>
<td>30 <br><center><a href='?b=Events'></a></center></td>
<td>31 <br><center><a href='?b=Events'></a></center></td>
</tr>
<tr style='text-align:right;vertical-align:top;height:60px;'>
<td> <br><center><a href='?b=Events'></a></center></td>
<td> <br><center><a href='?b=Events'></a></center></td>
<td> <br><center><a href='?b=Events'></a></center></td>
<td> <br><center><a href='?b=Events'></a></center></td>
<td> <br><center><a href='?b=Events'></a></center></td>
<td> <br><center><a href='?b=Events'></a></center></td>
<td> <br><center><a href='?b=Events'></a></center></td>
</tr>
</table>
-
Jan 5th, 2010, 03:09 PM
#2
Re: kalender(update) admin site
So you're saying when you do your insert/update it isn't putting the proper value?
What is the value of $_POST['kalender']) and how are you sending it to this script?
-
Jan 5th, 2010, 03:26 PM
#3
Re: kalender(update) admin site
the form he's using to submit it is at the bottom of that script.
but, I'm having a hard time understanding the problem. if it "does what it's supposed to," then how is it not working? what do you mean "it won't add the calendar"? are you simply trying to add all of that HTML into the database? if so, then this obviously won't work because you're trying to store a string in a database that has single and double quotes, and you never thought to escape any of them. use mysql_real_escape_string() on $_POST['kalendar'] before inserting it. if you don't do this, you'd also be opening yourself up to SQL injection :/ then, make sure the kalendar field in your database is TEXT and not a VARCHAR or something.
-
Jan 5th, 2010, 03:40 PM
#4
Re: kalender(update) admin site
Ok, after reading your post, kows, I totally realise what he was asking. Yeah, completely disregard my comment, kows has it nailed.
-
Jan 5th, 2010, 03:54 PM
#5
Thread Starter
Fanatic Member
Re: kalender(update) admin site
kows if i type in like test for example then it will write into the database and show on the page i want, but if i try to put the code of the kalendar it wont write to the database...
and kfcSmitty, i get confused sometimes too 
edit: now that i read the post fully kows, i believe i should mysql_real_escape_string() for this to work? and its TEXT and not VARCHAR..
just like this?
Code:
mysql_real_escape_string($_POST['kalender']);
edit: tried what you told me kows, it worked, thanks.. i replaced the line
Code:
$kalender = $_POST['kalender'];
with
Code:
$kalender = mysql_real_escape_string($_POST['kalender']);
Last edited by Justa Lol; Jan 5th, 2010 at 04:08 PM.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|
Reply With Quote
