Simple record editing with PHP+Mysql

Question

Simple record editing with PHP+Mysql

Asked 9 years, 7 months ago

Viewed 21,222 times

4

Basically the three scripts should edit a record in the Database:

php records.:

<?php

// Aqui você se conecta ao banco
$mysqli = new mysqli('127.0.0.1', 'root', '', 'login');

// Executa uma consulta 
$sql = "SELECT `user_id`, `user_name` , `user_email` , `user_data` FROM `users`";
$query = $mysqli->query($sql);
while ($dados = $query->fetch_assoc()) {
	$id        = $dados["user_id"];
	$nome      = $dados["user_name"];
	$email = $dados["user_email"];
	$data = $dados["user_data"];
	
	echo "<a href=\"editar.php?id=$id\">Editar </a>";
	
	
}


?>

edit.php:

  <?php

// Aqui você se conecta ao banco
$mysqli = new mysqli('127.0.0.1', 'root', '', 'login');

// Executa uma consulta 
$sql = "SELECT `user_id`, `user_name` , `user_email` , `user_data` FROM `admin_users`";
$query = $mysqli->query($sql);
while ($dados = $query->fetch_assoc()) {
	$id        = $dados["user_id"];
	$nome      = $dados["user_name"];
	$email = $dados["user_email"];
	$data = $dados["user_data"];
	
	echo "
	<form id=\"form1\" name=\"form1\" method=\"post\" action=\"salvar_edicao.php\">
	<input name=\"id\" type=\"text\" readonly=\"readonly\" id=\"id\" value=\"$id\" size=\"35\"/><br>
	<input name=\"nome\" type=\"text\" id=\"id\" value=\"$nome\" size=\"35\"/><br>
	<input name=\"email\" type=\"text\" id=\"id\" value=\"$email\" size=\"35\"/><br>
	<input name=\"data\" type=\"text\" readonly=\"readonly\" id=\"id\" value=\"$data\" size=\"35\"/><br>
	<input type=\"submit\" onclick=\"return confirm('Deseja mesmo editar esse registro?');\" name=\"Submit\" value=\"SALVAR ALTERAÇÕES\" class=\"btnNew\"/>
	</form>
	";
	
	
}


?>    
 
</div></div>

salvar_edicao.php:

<?php
$id      = $_POST["id"];
$nome = $_POST["nome"];
$email     = $_POST["email"];
$data      = $_POST["data"]; 

// Aqui você se conecta ao banco
$mysqli = new mysqli('127.0.0.1', 'root', '', 'login');

mysql_query("UPDATE users SET user_name = '$nome', user_email = '$email' WHERE users.id = $id");
mysql_close();
header("Location: index.php#tabs-4");
?>

It doesn’t change. What’s wrong?

2

Note that your file saves.php creates a connection with MYSQLI ($mysqli = new mysqli('127.0.0.1', 'root', 'login');) and update tries to update with MYSQL (mysql_query("UPDATE users SET user_name = '$name', user_email = '$email' where users.id = $id");)

– adrianosymphony

2015/02/26 at 20:07

2 answers

0

In salvar_edicao.php do the update routine by calling the correct mysqli API and not the old mysql_*

Change:

mysql_query("UPDATE users SET user_name = '$nome', user_email = '$email'
             WHERE users.id = $id");

To:

$mysqli->query("UPDATE users SET user_name = '$nome', user_email = '$email'
             WHERE users.id = $id");

Can avoid the problem of sql Injection using Prepared statements:

$sql = 'UPDATE users SET user_name = ?, user_email = ? WHERE users.id = ?';
$stmt = $mysqli->prepare($sql);

if(!$stmt){
  echo 'erro na consulta: '. $mysqli->errno .' - '. $mysqli->error;
}

$stmt->bind_param('ssi', $nome, $email, $id);
$stmt->execute();

Displayed error: Fatal error: Call to a Member Function bind_param() on a non-object in C: wamp www login admin salvar_edicao.php on line 17

– user20098

2015/02/27 at 18:08
1

@Renan, it means you have an error in the query.

– rray

2015/02/27 at 18:18
1

@Renan, you can put your code in the comment.

– rray

2015/02/27 at 18:43
<?php $id = $_POST["id"]; $name = $_POST["name"]; $email = $_POST["email"]; $data = $_POST["date"]; // Here you connect to the $mysqli = new mysqli('127.0.0.1', 'root', 'login'); $sql = 'UPDATE users SET user_name = ? , user_email = ? WHERE users.id = ? '; $stmt = $mysqli->prepare($sql); if(!$stmt){ echo 'query error: '. $mysqli->Errno . ' - '. $mysqli->error; } $stmt->bind_param('ssi', $name, $email, $id); $stmt->execute(); ?>

– user20098

2015/03/02 at 19:43
1

Change the prepare() line to $stmt = $mysqli->prepare($sql) or die($mysqli->error);. @Renan and see if any error appears.

– rray

2015/03/02 at 20:01
It worked with the new line

– user20098

2015/03/03 at 11:39
Is there an error? @Renan

– rray

2015/03/03 at 11:44
No, no mistake at all.

– user20098

2015/03/03 at 11:52

Show 3 more comments

Browser other questions tagged php mysql sql mysqli

You are not signed in. Login or sign up in order to post.

by user20098 · Answer 1 · 2015-03-03T12:07:49+00:00

Complete code corrected:

php records.:

<?php

// Aqui você se conecta ao banco
$mysqli = new mysqli('127.0.0.1', 'root', '', 'login');

// Executa uma consulta 
$sql = "SELECT `user_id`, `user_name` , `user_email` , `user_data` FROM `users`";
$query = $mysqli->query($sql);
while ($dados = $query->fetch_assoc()) {
	$id        = $dados["user_id"];
	$nome      = $dados["user_name"];
	$email = $dados["user_email"];
	$data = $dados["user_data"];
	
	echo "<a href=\"editar.php?user_id=$id\">Editar</a>";
	
	
}


?>

edit.php:

  <?php

// Aqui você se conecta ao banco
$mysqli = new mysqli('127.0.0.1', 'root', '', 'login');
$id = $_GET["user_id"];
settype($id, "integer");

// Executa uma consulta 
$sql = "select * from users where user_id = $id";
$query = $mysqli->query($sql);
while ($dados = $query->fetch_assoc()) {
$id        = $dados["user_id"];
$nome      = $dados["user_name"];
$email = $dados["user_email"];
$data = $dados["user_data"];}


?>

<form id="form1" name="form1" method="post" action="salvar_edicao.php">
<input type="text" readonly name="id" id="id" value="<?php echo $id;?>" /><br>
<input type="text" name="nome" id="nome" value="<?php echo $nome;?>" /><br>
<input type="text" name="email" id="email" value="<?php echo $email;?>" /><br>
<input type="text" readonly name="data" id="data" value="<?php echo $data;?>" /><br>

<input type="submit" onClick="return confirm('Deseja atualizar o registro?');" name="Submit" value="SALVAR ALTERAÇÕES" id="button-form" />
 </form>
 
</div></div>

salvar_edicao.php:

<?php
@ini_set('display_errors', '1');
error_reporting(E_ALL);

$id        = $_POST["id"];
$nome      = $_POST["nome"];
$email = $_POST["email"];
$data     = $_POST["data"];

// Aqui você se conecta ao banco
$mysqli = new mysqli('127.0.0.1', 'root', '', 'login');

$sql = 'UPDATE users SET user_name = ?, user_email = ? WHERE users.user_id = ?';
$stmt = $mysqli->prepare($sql) or die($mysqli->error);

if(!$stmt){
  echo 'erro na consulta: '. $mysqli->errno .' - '. $mysqli->error;
}

$stmt->bind_param('ssi', $nome, $email, $id);
$stmt->execute();
header("Location: index.php#tabs-4");
?>