How can I make a script retrieve specific data from a MYSQL database?
Question
I made a simple search to retrieve customer data from a database. So far I've only been able to make it successful display the current table data on the webpage but I can't get the search function to retrieve specific data. I'm having 0 database access issues.
I've been searching on goggle for hours and trying many different combinations but I can't find any decent tutorials on making a mysqli search.
Cust_no is primary key(varchar), prog_id(integer), balance(varchar)
**Table structure**
Query Output:
> SELECT prog_id, cust_no, balance
FROM `tee`.`teecust`
+ ------------ + ------------ + ------------ +
| prog_id | cust_no | balance |
+ ------------ + ------------ + ------------ +
| 220852 | 1184631 | 0
|
| 220853 | 1184693 | 0
|
| 225726 | 1186292 | 0
|
| 220854 | 1233446 | 0
|
| 220856 | 1233672 | 0
<!DOCTYPE html>
<head>
<title>Search the Database</title>
</head>
<body>
<form action="search.php" method="get" enctype="application/x-www-form-urlencoded" target="_self" id="search">
Search: <input type="text" name="term" /><br />
<input type="submit" name="submit" value="Submit" />
</form>
<?php
$host="****";
$port="3306";
$socket="";
$user="u*****";
$password="*****";
$dbname="tee";
$mysqli = new mysqli($host, $user, $password, $dbname);
if (mysqli_connect_errno()) {
printf("Connect failed: %s\n", mysqli_connect_error());
exit();
}
$query = "SELECT cust_no FROM teecust LIMIT 20,5";
if ($result = $mysqli->query($query)) {
/* fetch associative array */
while ($row = $result->fetch_row()) {
printf ("Customer Number:%s Billing ID:%s Balance due:%s\n", $row["cust_no"], $row["prog_id"], $row["balance"]);
}
/* free result set */
$result->close();
}
/* close connection */
$mysqli->close();
?>
</body>
</html>
2 answers
solution1
1 ACCPTED 2013-03-31 03:14:04
You need to get the search criteria via get - since that is what you specified. Although you didn't mention this in your post, I'm assuming you want to use the search criteria in your query:
Extra note: You may also want to read up on the where clause in SQL
(I've shown you how to use prepared statements for added security)
<?php
$searchTerm = $_GET['term']; // GET the search term submitted by the form
$customerNumber = '';
$progID = '';
$balance = '';
// build your query - notice the user of '?' as I'm using prepared statements to query the database. Also notice the 'where' clause.
$sql = "Select cust_no, prog_id, balance From teecust where cust_no = ?";
// Create the prepared statement
if($stmt = $mysqli->prepare($sql)){
$stmt->bind_param("s", $searchTerm); // bind the search term to the query where the '?' once was
if(!$stmt->execute()){ // run the query
echo $mysqli->error;
}
$stmt->bind_result($customerNumber, $progID, $balance ); // retrieve results into variables
while($stmt->fetch()){ // loop through results
// You now have the result in $customerNumber, $progID, and $balance - do what you want with it
echo "customer number: " . $customerNumber . "<br> Program ID: " . $progID . "<br> Balance: " . $balance;
}
$stmt->close();
}
else{
echo $mysqli->error;
}
?>
solution2
1 2013-03-31 06:04:18
There is nothing wrong with mysqli - ... all preference.
Surely it's a matter of preference. If one prefers bloated, non-reusable and insecure code, mysqli is their choice. But if they want something otherwise, then PDO have to be chosen:
$sql = "Select cust_no, prog_id, balance From teecust where cust_no = ?";
$stmt = $pdo->prepare($sql);
$stmt->execute(array($_GET['term']));
while($row = $stmt->fetch()) {
echo "Customer: $row[cust_no]<br>
Program ID: $row[prog_id]<br>
Balance: $row[balance]";
}
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.