SQL update within PHP

Question

Just trying to query the database to UPDATE a row (and the data in it) from a web UI. I have a table "customer" - Simply want too update the records (I have already achieved INSERT and DELETE).

I am echoing the table and including the option to update through this syntax:

<td><a href =Scripts/Update.php?id=".$row['Customer_ID'].">Update</a> </td>";

This shows "update" at the end of every row just like I need, and when I click it, it runs the update script. GREAT.

whilst echoing the table I have also changed the input type to text, so the user can click there, Edit the data and click the update button.

The problem is however, when I try and update a record within the table, it refreshes back to the chosen header page but has not updated any of the information, just returns the row with cleared data cells. (It did not delete the row from the database, as I display the Customer ID in the table and that's still there).

my Update.php script is as follows:

     <?php
    include "../Connection.php";

    $Firstname = mysqli_real_escape_string($con, $_POST['FirstName']);
    $Lastname = mysqli_real_escape_string($con, $_POST['LastName']);
    $CusEmail = mysqli_real_escape_string($con, $_POST['Email']);
    $CusUsername = mysqli_real_escape_string($con, $_POST['Username']);
    $CusPhone = mysqli_real_escape_string($con, $_POST['Phone']);   
    $CusCountry = mysqli_real_escape_string($con, $_POST['Country']);
    $CusTown = mysqli_real_escape_string($con, $_POST['Town']);
    $CusAddress = mysqli_real_escape_string($con, $_POST['Address']);
    $CusPostcode = mysqli_real_escape_string($con, $_POST['Postcode']);

            $sqlupdate = "UPDATE customer SET Customer_FirstName = '$Firstname', Customer_LName ='$Lastname', Customer_Email ='$CusEmail', Customer_Username ='$CusUsername', Customer_Phone ='$CusPhone', Customer_Country ='$CusCountry', Customer_Town ='$CusTown', Customer_Address = '$CusAddress', Customer_Postcode = '$CusPostcode' WHERE Customer_ID ='$GET_[id]'";

mysqli_query($con, $sqlupdate);
mysqli_close($con);

    if($sqlupdate){
        header('Location:../CustomerRecords.php');
        }
        else{
            echo "Failed!";
            }

There are a few things I have tried, for example, I usually do this from a HTML form, with the method POST, whereas this way I am doing it from an echo a href... (which is my first time). I have used this same method on the DELETE function and it works great. To follow on from that, I would usually add:

if ($_SERVER["REQUEST_METHOD"] == "POST") {

And

if(isset($_POST)){

Where needed, but again, tried this and get the same results.

It may be my SQL syntax is wrong but I can't figure it out, if anyone can advise that'd be great.

Thank You.

UPDATE:

I have made some changes above, I have been staring at this code a while now and just "playing" with it now... I have also tried this, but it throws errors, which seems worse off than it is now:

        $sqlupdate = "UPDATE customer SET Customer_FirstName = '$Firstname', Customer_LName ='$Lastname', Customer_Email ='$CusEmail', Customer_Username ='$CusUsername', Customer_Phone ='$CusPhone', Customer_Country ='$CusCountry', Customer_Town ='$CusTown', Customer_Address = '$CusAddress', Customer_Postcode = '$CusPostcode' WHERE Customer_ID ='$_GET[id]'";


    if(mysqli_query($con, $sqlupdate)){
        header('Location:../CustomerRecords.php');
        }
        else{
            echo "Failed!";
            }

Answer 1

You're not actually performing the query. After:

$sqlupdate = "UPDATE customer SET Customer_FirstName = '$Firstname', Customer_LName ='$Lastname', Customer_Email ='$CusEmail', Customer_Username ='$CusUsername', Customer_Phone ='$CusPhone', Customer_Country ='$CusCountry', Customer_Town ='$CusTown', Customer_Address = '$CusAddress', Customer_Postcode = '$CusPostcode' WHERE Customer_ID ='$GET[id]'";

You need to add:

mysqli_query($con,$sqlupdate);