PHP | Coders Folder

Validate an array input field

25th February 2018

This tutorial is based on procedural PHP. It will teach you how to validate an array input field with a specific field. We find it really hard to validate an array input field. So this tutorial is make the concept more clear. The source code for this tutorial is available at end of the tutorial.

Step 1: Setup the working environment

Go to the htdocs and create a folder named validate_array_input and create a file index.php. Paste or write this code into the index.php


<!DOCTYPE html>
<html>
<head>
	<title>Validate the array input field form</title>
</head>
<body>

<form action="" method="post">
	
	<?php for ($i=1; $i < 4; $i++) { ?>		
		<div style="margin-bottom: 20px;">
			<label>Product <?php echo $i; ?>: </label>							
		
			<input type="text" name="productName[<?php echo $i; ?>]" value="<?php echo $_POST['productName'][$i]; ?>"/> 
		</div>
	<?php } // /.foreach ?>

	<input type="submit" name="submitForm" value="Submit" />
</form>

</body>
</html>

As you can we can see we have created three input fields by iterating 3 times. So this means we will have three input filed.


<?php 
for ($i=1; $i < 4; $i++) { 
} 
?>

This means it will iterate 3 times, and the $i variable will repeat until its value is less than 4.


    <input type="text" name="productName[<?php echo $i; ?>]" value="<?php echo $_POST['productName'][$i]; ?>"/>

Now this input field is inside the iteration. This means the input field is repeated three times with the array number 1, 2, and 3. This will represent as productName[1], productName[2], productName[3]. The same logic goes to the value attribute of the input element.

If you have followed these steps correctly then the output of the code will look like the below image:

Step 2: Work with PHP validation

We are almost finished with this tutorial, now we will add these codes as shown below.


<?php 
$errors = array();
if(isset($_POST['submitForm'])) {

	$productName = $_POST['productName'];

	foreach ($productName as $key => $value) {		
		if(empty($productName[$key])) {
			$errors[$key] = "<p style='color:red;'> Product ".$key." Field is Required</p> ";
		}
	} // /foreach

	if(empty($errors)) {
		// validation is ok, and here we can insert the data into the database
	}

}
?>

Add these codes right above the HTML tag. This code checks if the form is submitted. If yes first it stores the array data in the $productName variable. After that, it iterates through each array and checks if the value is empty or not. If it's empty then it stores the error message into any error with the $key variable which counts the array key number.

Another if statement checks if the $errors variable is empty. If the $errors are empty then the validation is validated.


 <?php 
	if(!empty($errors)) {
		foreach ($errors as $key => $value) {
			if($key == $i) {
				echo $value;
			} // .if
		} // /.foreach errors
	} // /.if
?>

This code will be right below the input field to display the validation errors. The first if statement checks if the $errors variable is not empty and if not empty then it iterates that variable to display each message. As you know $i variable is from for loop. Now it checks if the $key and $i variable match with each other

Integrate the step 2

By integrating the step 2 code it should look like the below code


 <?php 

	$errors = array();
	if(isset($_POST['submitForm'])) {

		$productName = $_POST['productName'];

		foreach ($productName as $key => $value) {		
			if(empty($productName[$key])) {
				$errors[$key] = "<p style='color:red;'> Product ".$key." Field is Required</p> ";
			}
		} // /foreach

		if(empty($errors)) {
			// validation is ok, and here we can insert the data into the database
		}

	}

	?>

	<!DOCTYPE html>
	<html>
	<head>
		<title>Validate the array input field form</title>
	</head>
	<body>

	<form action="" method="post">
		
		<?php for ($i=1; $i < 4; $i++) { ?>		
			<div style="margin-bottom: 20px;">
				<label>Product <?php echo $i; ?>: </label>							
			
				<input type="text" name="productName[<?php echo $i; ?>]" value="<?php echo $_POST['productName'][$i]; ?>"/> 
				<?php 
					if(!empty($errors)) {
						foreach ($errors as $key => $value) {
							if($key == $i) {
								echo $value;
							} // .if
						} // /.foreach errors
					} // /.if
				?>		
			</div>
		<?php } // /.foreach ?>

		<input type="submit" name="submitForm" value="Submit" />
	</form>

	</body>
	</html>

I hope this helps you a lot.

For Source Code:

Download

CodeIgniter Tutorial – Register and Login with Ajax

16th September 2016

Codeigniter is a PHP framework that contains libraries, helpers, plugin-in, and other resources. It will make the PHP codes simple, quick, and user-friendly. It is a lightweight MVC programming technique to keep the business logic separate from the layout of the application. MVC stands for Model View Controller which is a software development method splitting the data layer (Model), the business logic (Controller), and the layout of the application (View). With the help of this framework, we will be building the simple Register and Login application with Ajax.

Introduction

This tutorial will teach you to create a register and login system with Ajax. The registration and login system is the most important role in the web application. The user’s login status will be checked by the session.

The source code of this application is provided at the end of this tutorial, you can easily download them by clicking on the download button. As well as the database is also required to run the application correctly. So please do not forget to download the database and run them into the phpMyAdmin.

Configure Config File

In this part, Go to the config.php file i.e. application/config/config.php and you must change the base URL root to work the code properly without any errors. You will have to modify the base URL value in the config file to help the CodeIgniter to guess the protocol and path of your installation.


<?php
/*
|--------------------------------------------------------------------------
| Base Site URL
|--------------------------------------------------------------------------
| URL to your CodeIgniter root. Typically this will be your base URL,
| WITH a trailing slash:
| http://localhost/codeigniter_register_login/
*/
$config['base_url'] = 'http://localhost:9080/codeigniter_register_login/';

?>

Configure Database

Database Name: codeigniter_register_login
Table Name: users
Table Column: id, username, password, salt, name, contact

To create the database for this tutorial, either you can download the SQL file which is provided at the end of this tutorial or copy and paste the following SQL command into your MYSQL Database.


CREATE DATABASE `crud_datatables_codeigniter`;

CREATE TABLE `codeigniter_register_login`.`users` (
  `id` int(11) NOT NULL AUTO_INCREMENT,
  `username` varchar(255) NOT NULL,
  `password` varchar(255) NOT NULL,
  `salt` text NOT NULL,
  `name` varchar(255) NOT NULL,
  `contact` varchar(255) NOT NULL,
  PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=latin1 AUTO_INCREMENT=1 ;

Database Connection

In database.php file i.e. [application/config/database.php], contains a database connection. If you have a different database name then change the database name in the database.php file highlighted below.


$db['default'] = array(
	'dsn'	=> '',
	'hostname' => 'localhost',
	'username' => 'root',
	'password' => '',
	'database' => 'codeigniter_register_login',
	'dbdriver' => 'mysqli',
	'dbprefix' => '',
	'pconnect' => FALSE,
	'db_debug' => (ENVIRONMENT !== 'production'),
	'cache_on' => FALSE,
	'cachedir' => '',
	'char_set' => 'utf8',
	'dbcollat' => 'utf8_general_ci',
	'swap_pre' => '',
	'encrypt' => FALSE,
	'compress' => FALSE,
	'stricton' => FALSE,
	'failover' => array(),
	'save_queries' => TRUE
);

Source Code !!

Download

Login Tutorial – Procedural PHP

12th September 2016

This tutorial will give you the core idea of login systems in procedural PHP. The main concept is to fetch and verify the users’ usernames stored in the database with provided information and create valid users’ information in session as well as redirect them to their respective dashboards.

Table of Content

Setting up project folder
Configure Database
Database Connection
Login Page
Styling the login form
Home Page
Logout Page
Source Code

1. Setting up project folder

In this section, we’ll be setting up a project folder that contains five files. First of all, create five files and name them db_connect.php, home.php, index.php, logout.php, and style.css. The db_connect.php file contains the database connection, the index.php file contains the login form, the home.php file contains the dashboard, the logout.php file removes the session and redirects to the login page and the style.css file contains the login form design codes. If you have followed the steps correctly then the working folders files structure would look like the below:

login_procedural_php

2. Configure Database

Database Name: login
Table Name: users
Table Column: id, username, password

Creating the database for this tutorial, you can either download the SQL Command at the end of this tutorial or copy and paste the following code into your MYSQL Database


CREATE DATABASE `login`;

CREATE TABLE `login`.`users` (
  `id` int(11) NOT NULL AUTO_INCREMENT,
  `username` varchar(255) NOT NULL,
  `password` varchar(255) NOT NULL,
  PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=latin1 AUTO_INCREMENT=2 ;

3. Database Connection

Go to db_connect.php i.e. [login/db_connect.php], for managing the database connection. To perform any action related to the database this file is called to execute the query and close the database connection. If you prefer to have a different database name for this tutorial then please change the name of the database in this file which is highlighted below.


<?php 

$servername = "127.0.0.1";
$username = "root";
$password = "";
$dbname = "login";
	
// creating the connection
$connect = new mysqli($servername, $username, $password, $dbname);

// checking the connection
if(!$connect->connect_error) {
	// echo "Successfully connected";
}
else {
	die("Connection Failed : " . $connect->connect_error);
}

4. Login

For now, copy and paste these codes into your index.php file and we’ll go through them afterward.


<?php 

// check connection
require_once 'db_connect.php';

session_start();

// check if users already logged in 
if(isset($_SESSION['user_id'])) {
	header('location:home.php');
	exit();
}

if( !empty($_POST) ) {
	$errors = array();

	$username = $_POST['username'];
	$password = $_POST['password'];

	if( empty($username) == true OR empty($password) == true ) {
		$errors[] = '* Username/Password field is required';
	} 
	else {
		// if username exists
		$sql = "SELECT * FROM users WHERE username = '$username'";
		$query = $connect->query($sql);
		if( $query->num_rows > 0 ) {
			// check username and password
			$password = md5($password);

			$sql = "SELECT * FROM users WHERE username = '$username' AND password = '$password'";
			$query = $connect->query($sql);
			$result = $query->fetch_array();

			$connect->close();

			if($query->num_rows == 1) {				
				$_SESSION['logged_in'] = true;
				$_SESSION['user_id'] = $result['id'];

				header('location:home.php');
				exit();
			}	
			else {
				$errors[] = ' * Username/Password combination is incorrect';
			}
		} 	
		else {
			$errors[] = ' * Username doesn\'t exists';
		}
	}

}

?>

<!DOCTYPE html>
<html>
<head>
	<title>Login - Procedural PHP</title>
	<link rel="stylesheet" type="text/css" href="style.css">
</head>
<body>

<fieldset>
	<legend>Login</legend>
	<?php if(!empty($errors)) {?>
		<div class="error">
			<?php foreach ($errors as $key => $value) {
				echo $value;
			} ?>
		</div>
	<?php } ?>
	

	<form action="<?php echo $_SERVER['PHP_SELF'] ?>" method="POST" >
		<table>
			<tr>
				<th><label for="username">Username</label></th>
				<td>
					<input type="text" name="username" id="username" placeholder="Username" autocomplete="off" />
				</td>
			</tr>
			<tr>
				<th><label for="password">Password</label></th>
				<td>
					<input type="password" name="password" id="password" placeholder="Password" autocomplete="off" />
				</td>
			</tr>
			<tr>
				<th></th>
				<td>
					<button type="submit">Login</button>
				</td>
			</tr>
		</table>
	</form>

</fieldset>

</body>
</html>

Firstly, at the beginning of the code, it calls the database connection file to interact with the database. Secondly, the session is initialized and checks if the user is already logged into the system by redirecting to the home page. Thirdly, the PHP script checks if the form is submitted and validates the login credentials by checking the information with the database. Lastly, the HTML elements include the form elements to enter the login information. Besides that, the external CSS is included in the head section for better UI design.

5. Styling the login form

Go to the style.css file, and copy and paste these codes into your file.


body {
	margin: 0px;
	padding: 0px;
}

fieldset {
	max-width: 400px;
	margin: auto;
	margin-top: 150px;
}

fieldset legend {
	font-size: 20px;
}

fieldset table {
	padding: 20px;
	width: 100%;
}

fieldset table tr td {
	padding: 10px;
}

form {
	width: 100%;
}

input {
	width: 90%;
	padding: 10px;
}

button {
	padding: 10px;
	width: 100%;
}

div.error {
	padding: 10px;
	border-style: solid;
	border-width: 1px;
	border-color: grey;
	border-left-style: solid;
	border-left-width: 4px;
	border-left-color: red;
	background-color: #fff;
}

If you have linked this file correctly into your index.php file then the index page would look like the below:

6. Home

In this section, the PHP scripts will redirect valid users to this page. For now, copy and paste these codes into your home.php file and we’ll go through them afterward.


<?php 

require_once 'db_connect.php';
session_start();

// check if user is not logged in 
if(empty($_SESSION['user_id'])) {
	header('location:index.php');
	exit();
}

if(isset($_SESSION['user_id'])) { ?>


<?php 
$user_id = $_SESSION['user_id'];

$sql = "SELECT * FROM users WHERE id = $user_id";
$query = $connect->query($sql);
$result = $query->fetch_array();

// close database connection
$connect->close();

?>

<!DOCTYPE html>
<html>
<head>
	<title>Home</title>
</head>
<body>

<ul>
	<li>Hello, <?php echo $result['username'] ?> </li>
	<li><a href="logout.php">Logout</a></li>
</ul>

</body>
</html>

<?php
}
?>

Firstly, at the beginning of the code calls the database-connected file to retrieve the logged-in user’s information. Secondly, the session is initialized and verifies the user logged state by redirecting them to an index page. Thirdly, the users’ information is retrieved from the database through the $_SESSION[‘user_id’] and displays welcome messages for current logged-in users’ usernames. Lastly, the HTML elements contain the logout link which will be explained in the next part.

7. Logout

In this section, when the users click on the logout link, the first line of the code will start the session. The second code session_unset() will remove all the variables. The third code session_destroy() will destroy the session and the last code will direct to the login page.


<?php 

session_start();

session_unset();
session_destroy();

header('location:index.php');
exit();

7. Source Code

Download

Login and Registration with Procedural PHP, Mysqli

08th August 2016

This tutorial will teach you to create a user registration and login system with procedural php and mysqli. The registration and login system is the most crucial part of the web application and the session plays a vital role to check the user’s login status. The source code is provided at the end of this tutorial.

Table of Content

Setting up project folder
Configure Database
Database Connection
Users File
Init File
Home Page
Register Page
Login Page
Dashboard Page
Logout
Profile Data
Setting
Change Password

1. Setting up project folder

In this part, we will be setting up the project folder which contains eight files and one folder. First of all, create five files and name them changepassword.php, dashboard.php, index.php, login.php, logout.php, profile.php, register.php, and setting.php. Secondly, create a folder and name them as a core, and inside that folder create three files namely db_connect.php, init.php, and users.php.

If you have followed the steps correctly then the working folder files structure would look like the below:

login_registration_procedural_php

2. Configure Database

Database Name: login_registration
Table Name: users
Table Column: id, username, password, first_name, last_name, contact, address, salt, active

Creating the database for this tutorial, you can either download the SQL Command at the end of this tutorial or copy and paste the following code into your MYSQL Database


CREATE DATABASE `login_registration`;

CREATE TABLE `login_registration`.`users` (
  `id` int(11) NOT NULL AUTO_INCREMENT,
  `username` varchar(255) NOT NULL,
  `password` varchar(255) NOT NULL,
  `first_name` varchar(255) NOT NULL,
  `last_name` varchar(255) NOT NULL,
  `contact` varchar(255) NOT NULL,
  `address` varchar(255) NOT NULL,
  `salt` text NOT NULL,
  `active` int(11) NOT NULL DEFAULT '0',
  PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=latin1 AUTO_INCREMENT=1 ;

3. Database Connection

In this part, we will be creating and checking the database connection. Go to db_connect.php i.e. [core/db_connect.php]. If you have a different database name for this tutorial then change the name of the database in this file which is highlighted below.


<?php 

$servername = "127.0.0.1";
$username = "root";
$password = "";
$dbname = "login_registration";

// crearte connection
$connect = new Mysqli($servername, $username, $password, $dbname);

// check connection
if($connect->connect_error) {
	die("Connection Failed : " . $connect->error);
} else {
	// echo "Successfully Connected";	
}

?>

4. Users File

This file contains the php function to manipulate the database operation. For instance, inserting the user’s credentials into the database, updating the user’s information, etc. This file is located at [core/users.php]. For now note that it file will be used to interact with the database, in a later chapter this file will use.

5. Init File

In this part, we will start the session and include the database connection file and user file. This file will be called on the login page, register page, change password page and etc.


<?php 

session_start();

require_once 'db_connect.php';
require_once 'users.php';

?>
[/css]

6. Home Page 
In this part, a simple login and register link is provided for the user to interact with the system. For now, copy and paste these codes into the index.php and we will go through them afterward. 

[css autolinks="false" classname="myclass" collapse="false" firstline="1" gutter="true" highlight="" htmlscript="false" light="false" padlinenumbers="false" smarttabs="true" tabsize="4" toolbar="true" language="" title="index.php"]
<?php 

require_once 'core/init.php';

if(logged_in() === TRUE) {
	header('location: dashboard.php');
}

?>

<!DOCTYPE html>
<html>
<head>
	<title>Login and Registration Procedural PHP </title>
</head>
<body>

<a href="login.php">Login</a> or <a href="register.php">Register</a>

</body>
</html>
[/css]

Firstly, the beginning of the code includes the init file which was explained before. The logged_in function is invoked from the users.php, this function checks the user's information stored in the session and redirects to the dashboard.php if its value is true. 

Now go to users.php i.e. [core/users.php] to create a logged_in function. This function verifies if the id is stored in the session by returning the boolean value. 

[css autolinks="false" classname="myclass" collapse="false" firstline="1" gutter="true" highlight="" htmlscript="false" light="false" padlinenumbers="false" smarttabs="true" tabsize="4" toolbar="true" language="" title="users.php"]
function logged_in() {
	if(isset($_SESSION['id'])) {
		return true;
	} else {
		return false;
	}
}

The index page should look like the below:

home_page_login

7. Register Users

In this part, we will create a registration form for users to enter their information. The submitted form will validate the required field information and call the registered users to function from the users.php and store it in the database. In this part, firstly we will create a user interface form and secondly, store the valid user’s information in the database by creating a function in the users.php.

Go to the register.php file to create a register form. For now, copy and paste these codes into the register.php file and go through them afterward.


<?php 

require_once 'core/init.php';

if(logged_in() === TRUE) {
	header('location: dashboard.php');
}

// form is submitted
if($_POST) {

	$fname = $_POST['fname'];
	$lname = $_POST['lname'];
	$username = $_POST['username'];
	$password = $_POST['password'];
	$cpassword = $_POST['cpassword'];

	if($fname == "") {
		echo " * First Name is Required <br />";
	}

	if($lname == "") {
		echo " * Last Name is Required <br />";
	}

	if($username == "") {
		echo " * Username is Required <br />";
	}

	if($password == "") {
		echo " * Password is Required <br />";
	}

	if($cpassword == "") {
		echo " * Conform Password is Required <br />";
	}

	if($fname && $lname && $username && $password && $cpassword) {

		if($password == $cpassword) {
			if(userExists($username) === TRUE) {
				echo $_POST['username'] . " already exists !!";
			} else {
				if(registerUser() === TRUE) {
					echo "Successfully Registered <a href='login.php'>Login</a>";
				} else {
					echo "Error";
				}
			}
		} else {
			echo " * Password does not match with Conform Password <br />";
		}
	}

}

?>

<!DOCTYPE html>
<html>
<head>
	<title>Registration Form</title>
</head>
<body>


<form action="<?php echo $_SERVER['PHP_SELF']; ?>" method="POST">
	<div>
		<label for="fname">First Name: </label>
		<input type="text" name="fname" placeholder="First Name" autocomplete="off" value="<?php if($_POST) {
			echo $_POST['fname'];
			} ?>" />
	</div>
	<br />

	<div>
		<label for="lname">Last Name: </label>
		<input type="text" name="lname" placeholder="Last Name" autocomplete="off" value="<?php if($_POST) {
			echo $_POST['lname'];
			} ?>" />
	</div>
	<br />

	<div>
		<label for="username">Username: </label>
		<input type="text" name="username" placeholder="Username" autocomplete="off" value="<?php if($_POST) {
			echo $_POST['username'];
			} ?>" />
	</div>
	<br />

	<div>
		<label for="password">Password: </label>
		<input type="password" name="password" placeholder="Password" autocomplete="off" />
	</div>
	<br />

	<div>
		<label for="cpassword">Conform Password: </label>
		<input type="password" name="cpassword" placeholder="Conform Password" autocomplete="off" />
	</div>
	<br />
	<div>
		<button type="submit">Create</button>
		<button type="reset">Cancel</button>
	</div>

</form>

Already Registered? Click <a href="login.php">login</a> 

</body>
</html>

In this file, the first line code includes the init.php file which was explained before. After that, the script checks if the user is already logged in by redirecting to the dashboard page. The script checks if the form is submitted and then stores the input value into their appropriate variable name respectively.

Secondly, it validates the value by providing an error message. Thirdly, if the form validation is valid then it checks the username by calling the userExists function and passing the username variable. If the username does not exist in the system then the script calls the registerUser function and displays a successful message. The userExists and registerUser function will be created in the users.php file. Now go to the users.php file, copy and paste these codes and we will go through them afterward.


function userExists($username) {
	// global keyword is used to access a global variable from within a function
	global $connect;

	$sql = "SELECT * FROM users WHERE username = '$username'";
	$query = $connect->query($sql);
	if($query->num_rows == 1) {
		return true;
	} else {
		return false;
	}

	$connect->close();
	// close the database connection
}

function registerUser() {

	global $connect;

	$fname = $_POST['fname'];
	$lname = $_POST['lname'];
	$username = $_POST['username'];
	$password = $_POST['password'];
	
	$salt = salt(32);
	$newPassword = makePassword($password, $salt);
	if($newPassword) {
		$sql = "INSERT INTO users (first_name, last_name, username, password, salt, active) VALUES ('$fname', '$lname', '$username', '$newPassword', '$salt' , 1)";
		$query = $connect->query($sql);
		if($query === TRUE) {
			return true;
		} else {
			return false;
		}
	} // /if

	$connect->close();
	// close the database connection
} // register user funtion

function salt($length) {
	return mcrypt_create_iv($length);
}

function makePassword($password, $salt) {
	return hash('sha256', $password.$salt);
}

The usersExists function requires one parameter i.e. username. The variable connect is a database connection used as a global. After that its checks the username by returning the boolean value.

The registerUser function does not require any parameter. This function calls the variable to connect as a global from the db_connetion file to execute the SQL query. This function also stores the form’s input value in the variable with the appropriate name. To secure the password, this function will encrypt the password value into a hash. To do this, we will first create a salt variable and call the salt function and pass thirty-two (32) lengths to generate the mcrypt_create_iv value. That salt will be stored in the database to match the password whenever users try to login into the system. After that, the makePassword function will have two parameters that are the password, and the salt variable returning the password value which is encrypted into the sha256 hash format.

Lastly, the scripts check the newPassword variable and insert the user’s information into the database by returning the boolean value.

The register page should look like the below:

8. Login

In this part, we will create a login form for users to enter their login credentials. The login form submitted will validate the required field and check if the username exists if it exists then it calls the login function and stores the user’s information in the session. Firstly, we will create a user interface form, and secondly, validate the required field and login into the system, and store it in the session.

Go to the login.php file to create a login form. For now, copy and paste these codes into the login.php file and we will go through them afterward.


<?php 

require_once 'core/init.php';

if(logged_in() === TRUE) {
	header('location: dashboard.php');
}

// form submiited
if($_POST) {
	$username = $_POST['username'];
	$password = $_POST['password'];

	if($username == "") {
		echo " * Username Field is Required <br />";
	}

	if($password == "") {
		echo " * Password Field is Required <br />";
	}

	if($username && $password) {
		if(userExists($username) == TRUE) {
			$login = login($username, $password);
			if($login) {
				$userdata = userdata($username);

				$_SESSION['id'] = $userdata['id'];

				header('location: dashboard.php');
				exit();
					
			} else {
				echo "Incorrect username/password combination";
			}
		} else{
			echo "username does not exists";
		}
	}

} // /if


?>


<!DOCTYPE html>
<html>
<head>
	<title>Login</title>
</head>
<body>

<form action="<?php echo $_SERVER['PHP_SELF'] ?>" method="POST">
	<div>
		<label for="username">Username</label>
		<input type="text" name="username" id="username" autocomplete="off" placeholder="Username" />
	</div>
	<br />

	<div>
		<label for="password">Password</label>
		<input type="password" name="password" id="password" autocomplete="off" placeholder="Password" />
	</div>
	<br />

	<div>
		<button type="submit">Login</button>
		<button type="reset">Cancel</button>
	</div>
	
</form>

Not Registered? Click <a href="register.php">Register</a> 

</body>
</html>

This file includes the init.php and checks if the user is logged in. After that, the script checks if the form is submitted, and if it’s true then it stores the username and password value in the respective variable name. The scripts validate the username and password value and display an appropriate message. If the validation is valid then the scripts checks if the username value exists in the database by displaying an error message. If the username value exists in the database then it calls the login function with two parameters which are username, and password variables. If the login function returns the true value then the script retrieves the user’s information by calling the user data function by passing the username variable and storing the user’s id into the session and redirecting to the dashboard.

The logged_in, userExists function is already created in the registered chapter. In this part, the login, and userdata function is new. For now, go to the users.php file, copy and paste these codes and we will go through them afterward.


function login($username, $password) {
	global $connect;
	$userdata = userdata($username);

	if($userdata) {
		$makePassword = makePassword($password, $userdata['salt']);
		$sql = "SELECT * FROM users WHERE username = '$username' AND password = '$makePassword'";
		$query = $connect->query($sql);

		if($query->num_rows == 1) {
			return true;
		} else {
			return false;
		}
	}

	$connect->close();
	// close the database connection
}

function userdata($username) {
	global $connect;
	$sql = "SELECT * FROM users WHERE username = '$username'";
	$query = $connect->query($sql);
	$result = $query->fetch_assoc();
	if($query->num_rows == 1) {
		return $result;
	} else {
		return false;
	}
	
	$connect->close();

	// close the database connection
}

The login function requires two parameters i.e. username and password. The variable connect is a global variable that holds the database connection and will be used to execute the SQL query. The userdata variable holds the user’s information. The script checks if the userdata variable is not empty. If the userdata variable is valid the script creates a new variable as a makePassword which holds the encrypted was of the by calling the makePassword (this function is defined in the previous part). After that the script checks if the provided information matches with the database and returns the boolean value.

The userdata function required one parameter i.e. username. The scripts fetch the user’s information through the username value and return the user’s information.

The login page should look like the below :

login_registration_loginpage

9. Dashboard

The valid users will be redirected to this page. The dashboard contains the following pages and they are Profile, setting, change password, and Logout. This list will be listed in the unordered list with a link that will redirect to the selected page. For now, copy and paste these codes into the dashboard.php file and we will go through them afterward.


<?php 

require_once 'core/init.php'; 

if(not_logged_in() === TRUE) {
	header('location: login.php');
}

$userdata = getUserDataByUserId($_SESSION['id']);

?>

<!DOCTYPE html>
<html>
<head>
	<title>Dashboard</title>
</head>
<body>

<ul>
	<li>Hello , <?php echo $userdata['username']; ?></li>
	<li><a href="profile.php">Profile</a></li>
	<li><a href="setting.php">Setting</a></li>
	<li><a href="changepassword.php">Change Password</a></li>
	<li><a href="logout.php">Logout</a></li>
</ul>

</body>
</html>

This page will include the init file which was discussed in the early part. This page will also check if the user is not logged in to the system and then redirect to the login page. The user data variable holds the user’s information through the user id which was stored while logging the user id was stored into the session.

The not_logged_in function will return the session login status by returning the boolean value. The getUserDataByUserId function requires one parameter which is the user id. This function is invoked by the users.php, its retrieves the user information via the user id which was stored in the session.

For not_logged_in, and getUserDataByUserId functions, go to users.php, copy and paste these codes into the users.php file and we will go through them afterward.


<?php 

function not_logged_in() {
	if(isset($_SESSION['id']) === FALSE) {
		return true;
	} else {
		return false;
	}
}

function getUserDataByUserId($id) {
	global $connect;

	$sql = "SELECT * FROM users WHERE id = $id";
	$query = $connect->query($sql);
	$result = $query->fetch_assoc();
	return $result;

	$connect->close();
}

?>

The not_logged_in function checks the id stored in the session by returning the boolean value. If the user id is stored in the session then returns true else false.

The getUserDataByUserId function requires one parameter which is id. This function selects the user’s information from the user’s table where the id is equal to provided id and it returns in an associative array.

The dashboard page should look like below :

dashboard_login_registration_php

10. Logout

In this part, the logout page will call the logout function from the users.php file. The logout function will unset and destroy the session and redirects to the login page. For now, copy and paste these codes into the logout.php and we will go through afterward.


<?php 

require_once 'core/init.php'; 

logout(); 

?>

When evet the user clicks on the logout links the page will redirect to this page. This page contains the init file and logout function invoked from the user.php file. The main function of logout contains the logout function in the users.php file which is listed below. For now, copy and paste these codes into the users.php file and we will go through them afterward.


<?php 

function logout() {
	if(logged_in() === TRUE){
		// remove all session variable
		session_unset();

		// destroy the session
		session_destroy();

		header('location: login.php');
	}
}

?>

This function logout will call the logged_in function to check if the user is logged in to the system. If the statement is true then the scripts will call the built-in php function session_unset and session_destoy to remove and destroy the session variable and it redirects to the login page.

11. Profile Data

In this part, we will be fetching the user’s information from the database through the user id which is stored in the session. For now, copy and paste these codes into profile.php and we will go through them afterward.


<?php 

require_once 'core/init.php'; 

if(not_logged_in() === TRUE) {
	header('location: login.php');
}

$userdata = getUserDataByUserId($_SESSION['id']);

?>

<!DOCTYPE html>
<html>
<head>
	<title>Profile Information</title>
</head>
<body>

<h1>Profile Information</h1>

<table border="1" style="width:100%;">
	<tr>
		<th>Username </th>
		<td><?php echo $userdata['username'] ?></td>
	</tr>
	<tr>
		<th>First Name </th>
		<td><?php echo $userdata['first_name'] ?></td>
	</tr>
	<tr>
		<th>Last Name </th>
		<td><?php echo $userdata['last_name'] ?></td>
	</tr>
	<tr>
		<th>Contact </th>
		<td><?php echo $userdata['contact'] ?></td>
	</tr>
	<tr>
		<th>Address </th>
		<td><?php echo $userdata['address'] ?></td>
	</tr>
</table>

<br />

<a href="dashboard.php"><button type="button">Back</button></a>

</body>
</html>

This page includes the init.php file and checks if the user is not logged in to the system which calls the not_logged_in function to check the user’s status. The user’s information is retrieved by calling the getUserDataByUserId function which requires one parameter and stores the retrieve data in the user data variable.

The user’s information is displayed in the table layout as you can see below image. The not_logged_in and getUserDataByUserId functions explain before the part.

The profile page should look like below :

login_registration_profile

12. Setting

In this part, the valid user should be to update their information. This page will display the user’s information which is stored in the system. For now, copy and paste these codes into the setting.php file and we will go through them afterward.


<?php require_once 'core/init.php'; 

if(not_logged_in() === TRUE) {
	header('location: login.php');
}

$userdata = getUserDataByUserId($_SESSION['id']);


if($_POST) {
	$fname = $_POST['fname'];
	$lname = $_POST['lname'];
	$username = $_POST['username'];
	$contact = $_POST['contact'];
	$address = $_POST['address'];

	if($fname == "") {
		echo " * First Name is Required <br />";
	}

	if($lname == "") {
		echo " * Last Name is Required <br />";
	}

	if($username == "") {
		echo " * Username is Required <br />";
	}

	if($contact == "") {
		echo " * Contact is Required <br />";
	}

	if($address == "") {
		echo " * Address is Required <br />";
	}

	if($fname && $lname && $username && $contact && $address) {
		$user_exists = users_exists_by_id($_SESSION['id'], $username);
		if($user_exists === TRUE) {
			echo "username already exists <br /> ";
		} else {
			if(updateInfo($_SESSION['id']) === TRUE) {
				echo "Successfully Updated <br />";
			} else {
				echo "Error while updating the information";
			}
		}
	}

}


?>


<!DOCTYPE html>
<html>
<head>
	<title>Setting</title>
</head>
<body>

<form action="<?php $_SERVER['PHP_SELF'] ?>" method="POST">
	<div>
		<label for="username">Username</label>
		<input type="text" name="username" id="username" placeholder="Username" value="<?php if($_POST) {
			echo $_POST['username'];
			} else {
			 	echo $userdata['username'];
			 	} ?>">
	</div>
	<br />

	<div>
		<label for="fname">First Name</label>
		<input type="text" name="fname" id="fname" placeholder="Fisrt Name" value="<?php if($_POST) {
			echo $_POST['fname'];
			} else {
				echo $userdata['first_name'];
				} ?>">
	</div>
	<br />

	<div>
		<label for="lname">Last Name</label>
		<input type="text" name="lname" id="lname" placeholder="Last Name" value="<?php if($_POST) {
			echo $_POST['lname'];
			} else { 
				echo $userdata['last_name'];
				} ?>">
	</div>
	<br />

	<div>
		<label for="contact">Contact</label>
		<input type="text" name="contact" id="contact" placeholder="Contact" value="<?php if($_POST) {
			echo $_POST['contact'];
			} else {
				echo $userdata['contact'];
				} ?>">
	</div>
	<br />

	<div>
		<label for="address">Address</label>
		<input type="text" name="address" id="address" placeholder="Address" value="<?php if($_POST) {
			echo $_POST['address'];
			} else { 
				echo $userdata['address']; 
				} ?>">
	</div>
	<br />

	<div>
		<button type="submit">Submit</button>		
	</div>

</form>

<a href="dashboard.php"><button type="button">Back</button></a>

</body>
</html>

This page includes the init file and checks the user’s logged-in status. The user’s information is retrieved by calling a getUserDataByUserId function which requires one parameter i.e. user id. The script checks if the form is submitted and stores the input value into the variable with its appropriate name. After that, the scripts validate the input field and if it is valid then it checks if the user’s name already exists in the system by calling the users_exists_by_id function which required two parameters i.e. user id and username value. If the username does not exist in the system then the script calls the updateInfo function which required one parameter which is the user id and updates the information in the system by displaying a successful message.

The not_logged_in, getUserDataByUserId function has been explained before the chapter. The new function in this part is users_exists_by_id and updateInfor function is the new functionality in this part. For now, copy and paste these codes into the users.php file and we will go through them afterward.


<?php 

function users_exists_by_id($id, $username) {
	global $connect;

	$sql = "SELECT * FROM users WHERE username = '$username' AND id != $id";
	$query = $connect->query($sql);
	if($query->num_rows >= 1) {
		return true;
	} else {
		return false;
	}

	$connect->close();
}

function updateInfo($id) {
	global $connect;

	$username = $_POST['username'];
	$fname = $_POST['fname'];
	$lname = $_POST['lname'];
	$contact = $_POST['contact'];
	$address = $_POST['address'];

	$sql = "UPDATE users SET username = '$username', first_name = '$fname', last_name = '$lname', contact = '$contact', address = '$address' WHERE id = $id";
	$query = $connect->query($sql);
	if($query === TRUE) {
		return true;
	} else {
		return false;
	}
}

The users_exists_by_id function requires two parameters that are the user id, and username value. This function calls the global connect variable to execute the SQL queries. Then it selects the user’s information from the user’s table which id is not equal to the current logged-in user id because the username should not be equal to the current logged-in username. After the query execution, the script checks if the username exists more than or equal to one by returning the boolean value.

The updateInfo function requires one parameter which is the user id. This function stores the form input value into the variable with the appropriate name and executes the query.

The setting page should look like the below:

setting

13. Change password

In this part, the logged-in users should be able to change the current password into a new password. The change password page should display a form that contains the current password, new password, and password again input field. For now, copy and paste these codes into the changepassword.php file and we will go through them afterward.


<?php 

require_once 'core/init.php'; 

if(not_logged_in() === TRUE) {
	header('location: login.php');
}

if($_POST) {
	$currentpassword = $_POST['currentpassword'];
	$newpassword = $_POST['password'];
	$conformpassword = $_POST['conformpassword'];

	if($currentpassword == "") {
		echo "Current Password field is required <br />";
	}

	if($newpassword == "") {
		echo "New Password field is required <br />";
	}

	if($conformpassword == "") {
		echo "Conform Password field is required <br />";
	}

	if($currentpassword && $newpassword && $conformpassword) {
		if(passwordMatch($_SESSION['id'], $currentpassword) === TRUE) {

			if($newpassword != $conformpassword) {
				echo "New password does not match conform password <br />";
			} else {
				if(changePassword($_SESSION['id'], $newpassword) === TRUE) {
					echo "Successfully updated";
				} else {
					echo "Error while updating the information <br />";
				}
			}
			
		} else {
			echo "Current Password is incorrect <br />";
		}
	}
}

?>

<!DOCTYPE html>
<html>
<head>
	<title>Change Password</title>
</head>
<body>

<form action="<?php echo $_SERVER['PHP_SELF'] ?>" method="POST">
	<table>
		<tr>
			<th>
				Current Password
			</th>
			<td>
				<input type="password" name="currentpassword" autocomplete="off" placeholder="Current Password" />
			</td>
		</tr>
		<tr>
			<th>
				New Password
			</th>
			<td>
				<input type="password" name="password" autocomplete="off" placeholder="New Password" />
			</td>
		</tr>
		<tr>
			<th>
				Conform Password
			</th>
			<td>
				<input type="password" name="conformpassword" autocomplete="off" placeholder="Confrom Password" />
			</td>
		</tr>
		<tr>
			<td>
				<button type="submit">Change Password</button>
			</td>
			<td>
				<a href="dashboard.php"><button type="button">Back</button></a>
			</td>
		</tr>
	</table>
</form>

</body>
</html>

This page requires the init.php file and checks the user’s logged-in status. The script checks if the form is submitted and stores the value in the variable with an appropriate name. The scripts validate the required field and if it is valid then firstly, the script checks if the current password matches with users in the database. This is done by calling the passwordMatch function which requires two parameters, the user id which is stored in the session, and the current password variable which holds the value of the current. If the current password matches with the current logged-in user details then the changePassword function will store the new password in the user’s table.

The passwordMatch and changePassword functions will be explained. For now, copy and paste these codes into the users.php file and we will go through them afterward.


<?php 

function passwordMatch($id, $password) {
	global $connect;

	$userdata = getUserDataByUserId($id);

	$makePassword = makePassword($password, $userdata['salt']);

	if($makePassword == $userdata['password']) {
		return true;
	} else {
		return false;
	}

	// close connection
	$connect->close();
}

function changePassword($id, $password) {
	global $connect;

	$salt = salt(32);
	$makePassword = makePassword($password, $salt);

	$sql = "UPDATE users SET password = '$makePassword', salt = '$salt' WHERE id = $id";
	$query = $connect->query($sql);

	if($query === TRUE) {
		return true;
	} else {
		return false;
	}
   
?>

The passwordMatch function requires two parameters which are user id and password value. This function fetches the user’s details from the database by the getUserDataByUserId function and makes an encrypted password by calling the makePassword function by passing the password variable, and the salt value from $userdata variable should be retrieved before. Now the script checks the encrypted password value equal to the user information retrieved from the database.

The changPassword function requires two parameters which are the user id and password variable. This function creates a new salt value by calling the salt function and passing the thirty-two length parameters. Then it makes an encrypted password by calling the makePassword function and updates the password information in the system.

The change password page should look like the below:

changepassword

Source Code

Download Source Code

Download

Simple CRUD with PHP, MYSQLI

03rd August 2016

CRUD (Create, Retrieve, Update, Delete) is a usual job in web development. In Later Career, as a web developer, you’ll encounter lots of CRUD functionality in your career. The design of a CRUD will allow the users to create/retrieve/update/remove the data from the front end of the system. Generally, with the help of PHP as a server-side programming language, the data will be stored in MYSQL Database. PHP as a server-side language will be manipulating MYSQL Database tables to perform a particular action triggered by the users.

Table of Content

PHP CRUD Part 1 Introduction
PHP CRUD Part 2 Configure Database
PHP CRUD Part 3 Setting up project folder
PHP CRUD Part 4 Database Connection
PHP CRUD Part 5 Create
PHP CRUD Part 6 Retrieve
PHP CRUD Part 7 Update
PHP CRUD Part 8 Remove

1. PHP CRUD Part 1 Introduction

In this section, the overall CRUD operation is introduced as well as we are going to develop a simple CRUD (Create, Retrieve, Update, Delete) PHP operation. In a web application, these are the basic stuff required to create, retrieve, update, and delete the data using PHP with MYSQL Database. You will be creating the database tables and inserting the data into the database tables without any fatal errors. This is an uncomplicated and easy tutorial to learn a CRUD operation. To understand how CRUD operations work, I recommend you go through each part of this tutorial.

The below video illustrates the final system of this tutorial. The source code of this application will be provided at the end of this tutorial.

2. PHP CRUD Part 2 Configure Database

Database Name : php_crud
Table Name : members
Table Column : id, fname, lname, contact, age, active

To create the database in this tutorial, there are two ways.

2.1 First way to create database

Copy and paste the following SQL command in your MySQL database to create a database and table



CREATE DATABASE `php_crud`; 

// create table
CREATE TABLE `php_crud`.`members` (
`id` int(11) NOT NULL AUTO_INCREMENT,
`fname` varchar(255) NOT NULL,
`lname` varchar(255) NOT NULL,
`contact` varchar(255) NOT NULL,
`age` varchar(255) NOT NULL,
`active` int(11) NOT NULL DEFAULT '0',
PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=latin1 AUTO_INCREMENT=1 ;

2.2 Second way to create database

A tutorial video to demonstrate to you, how to create a database and tables for this tutorial

3. PHP CRUD Part 3 Setting up project folder

In this part, we will be creating a project folder and files for this tutorial. First of all, create the project folder as “crud_php”. After that create the create.php, edit.php, index.php, and remove.php files inside this project folder as shown [crud_php/create.php], [crud_php/edit.php] and so on.

Second, Create a folder named “php_action” inside this project folder as [crud_php/php_action] which will handle the server-side processing actions. In this directory create a create.php, db_connect.php, remove.php and update.php file as shown [crud_php/php_action/create.php], [crud_php/php_action/db_connect.php], and so on.

The current file structure should look like the below if you have followed the steps correctly:

CRUD_PHP_FOLDER

The video displays you to create a project folder and files for this tutorial.

4. PHP CRUD Part 4 Database Connection

The db_connect.php file i.e. [php_action/db_connect.php], this file contains a database connection. In this application, the db_connect.php file will be used to perform any action for CRUD. Such as connecting to the database, executing the query, and closing the connection.


<?php 

$localhost = "127.0.0.1"; 
$username = "root"; 
$password = ""; 
$dbname = "php_crud"; 

// create connection 
$connect = new mysqli($localhost, $username, $password, $dbname); 

// check connection 
if($connect->connect_error) {
	die("connection failed : " . $connect->connect_error);
} else {
	// echo "Successfully Connected";
}

?>

5. PHP CRUD Part 5 Create

5.1 Adding “Add Member” Button and “Action” button

To start with the create.php page we need a button that will lead to create.php page. Open index.php file which we created in Chapter 3 in this tutorial. And add an “Add Member” button at the top of the table, and an “Edit”, and “Remove” buttons at each row of the table.

Now the index.php file’s code should look like below, the highlighted code is what we need to implement in this tutorial.



<?php require_once 'php_action/db_connect.php'; ?>

<!DOCTYPE html>
<html>
<head>
	<title>PHP CRUD</title>

	<style type="text/css">
		.manageMember {
			width: 50%;
			margin: auto;
		}

		table {
			width: 100%;
			margin-top: 20px;
		}

	</style>

</head>
<body>

<div class="manageMember">
	<a href="create.php"><button type="button">Add Member</button></a>
	<table border="1" cellspacing="0" cellpadding="0">
		<thead>
			<tr>
				<th>Name</th>
				<th>Age</th>
				<th>Contact</th>
				<th>Option</th>
			</tr>
		</thead>
		<tbody>
			
		</tbody>
	</table>
</div>

</body>
</html>

Now if you go to the index.php page, you’ll see the “Add member” button. Eventually, the create.php is created at Chapter 3 and it will lead to a blank page when you click the “Add Member” button. In the next step, we will create a form to enter the member information into the system and add the member’s information to the database.

5.2 Creating a Create page

In create.php file which you created in Chapter 3. This file contains an HTML form where the user’s input data will pass to the server side and add the information to the database.

The first part of this code is to create an HTML form with the required input field and pass the data to the server.


<!DOCTYPE html>
<html>
<head>
	<title>Add Member</title>

	<style type="text/css">
		fieldset {
			margin: auto;
			margin-top: 100px;
			width: 50%;
		}

		table tr th {
			padding-top: 20px;
		}
	</style>

</head>
<body>

<fieldset>
	<legend>Add Member</legend>

	<form action="php_action/create.php" method="post">
		<table cellspacing="0" cellpadding="0">
			<tr>
				<th>First Name</th>
				<td><input type="text" name="fname" placeholder="First Name" /></td>
			</tr>		
			<tr>
				<th>Last Name</th>
				<td><input type="text" name="lname" placeholder="Last Name" /></td>
			</tr>
			<tr>
				<th>Age</th>
				<td><input type="text" name="age" placeholder="Age" /></td>
			</tr>
			<tr>
				<th>Contact</th>
				<td><input type="text" name="contact" placeholder="Contact" /></td>
			</tr>
			<tr>
				<td><button type="submit">Save Changes</button></td>
				<td><a href="index.php"><button type="button">Back</button></a></td>
			</tr>
		</table>
	</form>

</fieldset>

</body>
</html>

The second part of this code insert process happens. Look through the codes and we will go through them afterward:


<?php 

require_once 'db_connect.php';

if($_POST) {
	$fname = $_POST['fname'];
	$lname = $_POST['lname'];
	$age = $_POST['age'];
	$contact = $_POST['contact'];

	$sql = "INSERT INTO members (fname, lname, contact, age, active) VALUES ('$fname', '$lname', '$contact', '$age', 1)";
	if($connect->query($sql) === TRUE) {
		echo "<p>New Record Successfully Created</p>";
		echo "<a href='../create.php'><button type='button'>Back</button></a>";
		echo "<a href='../index.php'><button type='button'>Home</button></a>";
	} else {
		echo "Error " . $sql . ' ' . $connect->connect_error;
	}

	$connect->close();
}

?>

Let us look at the beginning of the code. It first checks if the form is submitted by using a $_POST global variable. If a form is submitted then it inserts the data into the database by using $_POST. And check if the query is executed successfully then it displays a successful message and link button.

The end result should look like this if you have followed the instruction correctly. Click on Add Member on the index page and enter the member information into the input field. Click on the Save Changes button.

create

After creating some records by entering the member information, you should be able to see a CRUD grid as below:

create2

6. PHP CRUD Part 6 Retrieve

In the index.php page, we are going to retrieve the data that are stored in the database. This part is quite easy. We need a database connection file to execute the SQL command.
The highlighted codes are created for the edit and remove buttons. You can copy all the codes below.


<?php require_once 'php_action/db_connect.php'; ?>

<!DOCTYPE html>
<html>
<head>
	<title>PHP CRUD</title>

	<style type="text/css">
		.manageMember {
			width: 50%;
			margin: auto;
		}

		table {
			width: 100%;
			margin-top: 20px;
		}

	</style>

</head>
<body>

<div class="manageMember">
	<a href="create.php"><button type="button">Add Member</button></a>
	<table border="1" cellspacing="0" cellpadding="0">
		<thead>
			<tr>
				<th>Name</th>
				<th>Age</th>
				<th>Contact</th>
				<th>Option</th>
			</tr>
		</thead>
		<tbody>
			<?php
			$sql = "SELECT * FROM members WHERE active = 1";
			$result = $connect->query($sql);

			if($result->num_rows > 0) {
				while($row = $result->fetch_assoc()) {
					echo "<tr>
						<td>".$row['fname']." ".$row['lname']."</td>
						<td>".$row['age']."</td>
						<td>".$row['contact']."</td>
						<td>
							<a href='edit.php?id=".$row['id']."'><button type='button'>Edit</button></a>
							<a href='remove.php?id=".$row['id']."'><button type='button'>Remove</button></a>
						</td>
					</tr>";
				}
			} else {
				echo "<tr><td colspan='5'><center>No Data Avaliable</center></td></tr>";
			}
			?>
		</tbody>
	</table>
</div>

</body>
</html>

Now if you open this page “index.php”, you should see the member’s information on the table. As well as you should notice the “Edit” and “Remove” buttons at each table row data. They are not functional for this part. In the next part, we are going to learn about the update functionality for this tutorial.

index

7. PHP CRUD Part 7 Update

Go to edit.php file in [crud_php/edit.php] which was creating in Chapter 3. We will teach in two parts; the first part creating HTML form, and the second part server-side processing. The first part of the code is an HTML form to update the information of members. But it will not only update the data, but it will also display the member information. Copy the code below to the edit.php file at [crud_php/edit.php]:


<?php 

require_once 'php_action/db_connect.php';

if($_GET['id']) {
	$id = $_GET['id'];

	$sql = "SELECT * FROM members WHERE id = {$id}";
	$result = $connect->query($sql);

	$data = $result->fetch_assoc();

	$connect->close();

?>

<!DOCTYPE html>
<html>
<head>
	<title>Edit Member</title>

	<style type="text/css">
		fieldset {
			margin: auto;
			margin-top: 100px;
			width: 50%;
		}

		table tr th {
			padding-top: 20px;
		}
	</style>

</head>
<body>

<fieldset>
	<legend>Edit Member</legend>

	<form action="php_action/update.php" method="post">
		<table cellspacing="0" cellpadding="0">
			<tr>
				<th>First Name</th>
				<td><input type="text" name="fname" placeholder="First Name" value="<?php echo $data['fname'] ?>" /></td>
			</tr>		
			<tr>
				<th>Last Name</th>
				<td><input type="text" name="lname" placeholder="Last Name" value="<?php echo $data['lname'] ?>" /></td>
			</tr>
			<tr>
				<th>Age</th>
				<td><input type="text" name="age" placeholder="Age" value="<?php echo $data['age'] ?>" /></td>
			</tr>
			<tr>
				<th>Contact</th>
				<td><input type="text" name="contact" placeholder="Contact" value="<?php echo $data['contact'] ?>" /></td>
			</tr>
			<tr>
				<input type="hidden" name="id" value="<?php echo $data['id']?>" />
				<td><button type="submit">Save Changes</button></td>
				<td><a href="index.php"><button type="button">Back</button></a></td>
			</tr>
		</table>
	</form>

</fieldset>

</body>
</html>

<?php
}
?>

Let’s look at the code. At the beginning of the code, it catches the $id from a $_GET request. Then it fetches the information by that $id variable. After the data is retrieved from the database, the information is added to the input field. As well as the new input field is also appended to a name “id” to match the specific member data when the form is submitted.

In the Second part, the data update process is coded here. Open the update.php file in crud_php/php_action/update.php which was creating in Chapter 3. Open the file and copy and paste these codes.


<?php 

require_once 'db_connect.php';

if($_POST) {
	$fname = $_POST['fname'];
	$lname = $_POST['lname'];
	$age = $_POST['age'];
	$contact = $_POST['contact'];

	$id = $_POST['id'];

	$sql = "UPDATE members SET fname = '$fname', lname = '$lname', age = '$age', contact = '$contact' WHERE id = {$id}";
	if($connect->query($sql) === TRUE) {
		echo "<p>Succcessfully Updated</p>";
		echo "<a href='../edit.php?id=".$id."'><button type='button'>Back</button></a>";
		echo "<a href='../index.php'><button type='button'>Home</button></a>";
	} else {
		echo "Erorr while updating record : ". $connect->error;
	}

	$connect->close();

}

?>

Let us look at the beginning of the code. It first checks if the form is submitted by using a $_POST global variable. If a form is submitted then it updates the data in the database by using $_POST. And check if the query is executed successfully then it displays a successful message and link button.

If you followed the step correctly then your edit.php file should look like the below:

update

8. PHP CRUD Part 8 Remove

Go to remove.php file in [crud_php/remove.php] which was creating in Chapter 3. The logic is the same as we learned in Chapter 7 Update . In the first part, we’ll create HTML, and in the second part a server-side processing file. Copy the code below to the edit.php file at [crud_php/remove.php]:


<?php 

require_once 'php_action/db_connect.php';

if($_GET['id']) {
	$id = $_GET['id'];

	$sql = "SELECT * FROM members WHERE id = {$id}";
	$result = $connect->query($sql);
	$data = $result->fetch_assoc();

	$connect->close();
?>

<!DOCTYPE html>
<html>
<head>
	<title>Remove Member</title>
</head>
<body>

<h3>Do you really want to remove ?</h3>
<form action="php_action/remove.php" method="post">

	<input type="hidden" name="id" value="<?php echo $data['id'] ?>" />
	<button type="submit">Save Changes</button>
	<a href="index.php"><button type="button">Back</button></a>
</form>

</body>
</html>

<?php
}
?>

Let’s look at the code. At the beginning of the code, it catches the $id from a $_GET request. Then it fetches the information by that $id variable. After the data is retrieved from the database, a new input field is also appended named “id” to match the specific member data when the form is submitted.

If you followed correctly, then the remove.php page should be similar to the below:

remove



<?php 

require_once 'db_connect.php';

if($_POST) {
	$id = $_POST['id'];

	$sql = "UPDATE members SET active = 2 WHERE id = {$id}";
	if($connect->query($sql) === TRUE) {
		echo "<p>Successfully removed!!</p>";
		echo "<a href='../index.php'><button type='button'>Back</button></a>";
	} else {
		echo "Error updating record : " . $connect->error;
	}

	$connect->close();
}

?>

Let’s look at the beginning of the code. It first checks if the form is submitted by using a $_POST global variable. If a form is submitted then it removes the data. And checks if the query is executed successfully then it displays a successful message and button link.

Download Source Code!!!!

Download