Update not working PHP MYSQL CRUD

Question

I have this PHP code, when I try to click the yes button and check the database.The value remains the same. Is there something I am doing wrong? I also check my SQL query and it seems to be working fine but when I incorporate it in the php code . It is not working anymore?

<?php
    require 'database.php';
    $id = 0;

    if ( !empty($_GET['gpx_field_id'])) {
        $id = $_REQUEST['gpx_field_id'];
    }

    if ( !empty($_POST)) {
        // keep track post values
        $id = $_POST['gpx_field_id'];

        // delete data
        $pdo = Database::connect();
        $pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
        $sql = "UPDATE field_info SET verify = '1' WHERE gpx_field_id = ? ";
        $q = $pdo->prepare($sql);
        $q->execute(array($id));
        Database::disconnect();
        header("Location: index.php");

    }
?>

<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="utf-8">
    <link   href="assets/bootstrap/css/bootstrap.min.css" rel="stylesheet">
    <script src="assets/bootsrap/js/bootstrap.min.js"></script>
</head>

<body>
    <div class="container">

                <div class="span10 offset1">
                    <div class="row">
                        <h3>Verify a Field</h3>
                    </div>

                    <form class="form-horizontal" action="verify.php" method="post">
                      <input type="hidden" name="gpx_field_id" value="<?php echo $id;?>"/>
                      <p class="alert alert-error">Are you sure to verify this field ?</p>
                      <div class="form-actions">
                          <button type="submit" class="btn btn-danger">Yes</button>
                          <a class="btn btn-danger" href="index.php">No</a>
                        </div>
                    </form>
                </div>

    </div> <!-- /container -->
  </body>
</html>

Answer 1

Here I assume your query is working fine so Please change your php code as below...

<?php
    require 'database.php';
    $id = 0;

    if ( !empty($_GET['gpx_field_id'])) {
        $id = $_REQUEST['gpx_field_id'];
    }

    if ( !empty($_POST)) {
        try {
                $pdo = Database::connect();
                $pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
                $sql = "UPDATE field_info SET verify = '1' WHERE gpx_field_id IN :id ";
                $q = $pdo->prepare($sql);
                $q->execute(array($id));
                Database::disconnect();
                header("Location: index.php");
        }
        catch(PDOException $e) {
            echo $e->getMessage();
        }
    }
?>

Hope it will help you.

Answer 2

You specify $id = 0 at the top, but it is never updated to some 'real' value. Therefore, the form is populated with

<input type="hidden" name="gpx_field_id" value="0"/>

and thus gpx_field_id always remains 0 . Then, your query will update all rows with WHERE gpx_field_id = 0 . Most probably, those rows will not exist...

You do need to get a proper value for $id before you insert it in the form.

On a side-note, since you are using html5 ( <!DOCTYPE html> ), the closing tag for input should be omitted. Write instead: <input type="hidden" ... > , leaving out the forward slash, just as you did with the meta and link tags in the head section.