从文本框php中获取值并与数据库匹配
我希望创建一个表单并将表单的值与数据库相匹配。我试过了,但失败了,犯了个错误。CSRF状态令牌与提供的令牌不匹配。我是新来的,需要一些帮助从文本框php中获取值并与数据库匹配,php,database,match,assign,Php,Database,Match,Assign,我希望创建一个表单并将表单的值与数据库相匹配。我试过了,但失败了,犯了个错误。CSRF状态令牌与提供的令牌不匹配。我是新来的,需要一些帮助 <?php header('P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"'); include_once "fbmain.php"; include_once "mysqli.connect.php"; mysql_connect(".....") or die(mysql_err
<?php
header('P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"');
include_once "fbmain.php";
include_once "mysqli.connect.php";
mysql_connect(".....") or die(mysql_error()) ;
mysql_select_db("jetstardatabase") or die(mysql_error()) ;
?>
<html>
<link type= "text/css" rel="stylesheet" href="starpickStyle.css">
<head>
<title>StarPick</title>
</head>
<body>
<?php
if (!isset($_POST["code"]))
{
?>
<form action="" method="post">
<strong>Code: *</strong> <input type="text" name = "code" >
<input type="submit" name="submit" value="Submit">
</form>
<?php
}else
{
$code = $_POST["code"]; }
$sql = "SELECT bookingref FROM starpick WHERE obsolete = 0";
$result = $mysqli->query($sql);
while($row = $result->fetch_object())
{
if($row->bookingref == $code)
{
echo 'Found';
}
else
{
echo 'Try Again';
}
}
?>
</body>
</html>
如果处理错误,需要让数据库进行匹配,而不是获取所有行并在php中进行匹配
比如:
$sql = "SELECT bookingref FROM starpick WHERE obsolete = 0 AND bookingref='" . mysql_real_escape_string($_POST["code"]) . "'"; // better use a prepared statement by the way but you'll have to check the manual for mysqli
然后检查是否找到一行
我自己也在使用PDO,但这里是。@Nicholas Lim您需要在mysqli调用中添加一些错误处理,从第一个连接数据库的调用开始。你能发布完整的代码(没有用户名/密码)吗?