php when to use get method?

Question

how all,

when is the right time to use $_GET['data']?

i want to pass value of userid from page A to page B by using popup javascript.

    $qry="SELECT * FROM dbase WHERE id='".$id."'";
    $sql=mysql_query($qry);
    $rs=mysql_fetch_array($sql);

    <script language="JavaScript">
      function myPopup() {
        window.open( "<?=$CFG->wwwroot.'/ptk/main.php?task=ptk_checkapp&id='.$rs['userid'];?>" ,"myWindow", "status = 1, height = 500, width = 500, scrollbars=yes,toolbar=no,directories=no,location=no,menubar=no, resizable='yes';" )
     } 
    </script>

calling by hyperlink:

<a href="#" onclick="myPopup()">
    <?=ucwords(strtolower($rs->nama));?>
</a>  

It seems that , the $rs['user'] dont hold any value on it. can tell me what problem or may be solution?

thank you very much.

Answer 1

The $_GET superglobal is used to get parameters from the URL used to request the page. If you want to get a variable like http://site.com/page.php?variable=value then you would use $_GET['variable'] to get value .

Answer 2

This is very very unsecure code. You will not want to use QueryStrings this way. Anyway when you get the popup page, is the URL correct? meaning does it contain the id= value that you are expecting? if it does the you may not be declaring

$id = $_GET('id'); 

which would be necessary. http://www.owasp.org/index.php/Main_Page will get you going in the right direction for secure web app thinking.

Answer 3

read about GET and POST in here and here

if you want to use javascript I suggest you to use framework like Jquery and any and post or get the data using AJAX way, it's better.