Re: [Jason] Using addForm.php - insert logged in user num
Hi Jason,
Thanks for the help.
I've made the form only accessible to users that have logged in but I'm still getting "unknown" for createdBy and updatedBy.
Here is the code I'm using:
<?php
require_once "cmsAdmin/lib/init.php";
// submit form
if (@$_REQUEST['submit']) {
// error checking
$errorsAndAlerts = "";
if (!@$_REQUEST['product']) { $errorsAndAlerts .= "Please specify title!<br/>\\n"; }
if (!@$_REQUEST['description']) { $errorsAndAlerts .= "Please specify content!<br/>\\n"; }
// turn off strict mysql error checking for: STRICT_ALL_TABLES
mysqlStrictMode(false); // disable Mysql strict errors for when a field isn't defined below (can be caused when fields are added later)
// add record
if (!@$errorsAndAlerts) {
mysql_query("INSERT INTO `{$TABLE_PREFIX}wanted_ads` SET
product = '".mysql_real_escape_string( $_REQUEST['product'] )."',
description = '".mysql_real_escape_string( $_REQUEST['description'] )."',
createdDate = NOW(),
updatedDate = NOW(),
createdByUserNum = '".mysql_escape($CURRENT_USER['num'])."',
updatedByUserNum = '".mysql_escape($CURRENT_USER['num'])."'")
or die("MySQL Error Creating Record:<br/>\\n". htmlspecialchars(mysql_error()) . "\\n");
$recordNum = mysql_insert_id();
// display thanks message and clear form
$errorsAndAlerts = "Thanks, we've added that record!";
$_REQUEST = array();
}
}
?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<?php require_once "cmsAdmin/lib/viewer_functions.php"; ?>
<?php if (!$CURRENT_USER) { websiteLogin_redirectToLogin(); } ?>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title></title>
<style type="text/css">
body, td { font-family: arial }
</style>
</head>
<body>
<form method="post" action="">
<input type="hidden" name="submit" value="1" />
<h1>Sample Record Add Form</h1>
<?php if (@$errorsAndAlerts): ?>
<div style="color: red; font-weight: bold; font-size: 16px;"><br/>
<?php echo $errorsAndAlerts; ?><br/><br/>
</div>
<?php endif ?>
<table border="0" cellspacing="0" cellpadding="2">
<tr>
<td valign="top">Product</td>
<td><input type="text" name="product" value="<?php echo htmlspecialchars(@$_REQUEST['product']) ?>" size="30" /></td>
</tr>
<tr>
<td valign="top">Description</td>
<td><textarea name="description" cols="30" rows="4"><?php echo htmlspecialchars(@$_REQUEST['description']) ?></textarea></td>
</tr>
</table><br/><br/>
<input type="submit" name="add" value="Add Record >>" />
</form>
</body>
</html>
Thanks again fo all you help.
Regards,
Greg