PostGreSQL Form - RJM Programming - May, 2015


"; if (!isset($_GET['oops'])) { try { $conn = pg_pconnect("host=localhost port=5432 dbname=databasename user=username password=password"); if (!$conn) { echo "An Error occurred.\n"; exit; } if (isset($_GET['code']) && ($_GET['code'] != "") && isset($_GET['delete'])) { $sql = "DELETE from films WHERE code='" . $_GET['code'] . "'"; $result = pg_query($conn, $sql); } else if (isset($_GET['code']) && ($_GET['code'] != "") && strpos($_GET['did'],"-") === false && isset($_GET['title']) && isset($_GET['did']) && isset($_GET['date_prod']) && isset($_GET['kind']) && isset($_GET['len']) && ($_GET['title'] != "") && ($_GET['did'] != "") && ($_GET['date_prod'] != "") && ($_GET['kind'] != "") && ($_GET['len'] != "")) { $result = pg_query($conn, "INSERT INTO films (code,title,did,date_prod,kind,len) values ('" . $_GET['code'] . "','" . $_GET['title'] . "'," . $_GET['did'] . ",to_date('" . $_GET['date_prod'] . "','YYYY-MM-DD'),'" . $_GET['kind'] . "','" . $_GET['len'] . "')"); } else if (isset($_GET['code']) && ($_GET['code'] != "")) { $delim=" "; $sql = "UPDATE films SET WHERE code='" . $_GET['code'] . "'"; if (isset($_GET['title']) && ($_GET['title'] != "")) { $sql = str_replace(" WHERE ", $delim . " title='" . $_GET['title'] . "'" . " WHERE ", $sql); $delim = ", "; } if (isset($_GET['did']) && strpos($_GET['did'],"-") === false && ($_GET['did'] != "")) { $sql = str_replace(" WHERE ", $delim . " did=" . $_GET['did'] . " WHERE ", $sql); $delim = ", "; } if (isset($_GET['date_prod']) && ($_GET['date_prod'] != "")) { $sql = str_replace(" WHERE ", $delim . " date_prod=to_date('" . $_GET['date_prod'] . "','YYYY-MM-DD')" . " WHERE ", $sql); $delim = ", "; } if (isset($_GET['kind']) && ($_GET['kind'] != "")) { $sql = str_replace(" WHERE ", $delim . " kind='" . $_GET['kind'] . "'" . " WHERE ", $sql); $delim = ", "; } if (isset($_GET['len']) && ($_GET['len'] != "")) { $sql = str_replace(" WHERE ", $delim . " len='" . $_GET['len'] . "'" . " WHERE ", $sql); $delim = ", "; } $result = pg_query($conn, $sql); } $result = pg_query($conn, "SELECT * FROM films"); if (!$result) { echo "An error Occurred.\n"; exit; } echo "
"; while ($row = pg_fetch_row($result)) { echo ""; } echo "
Film CodeTitleIdDateKindLength
$row[0]$row[1]$row[2]$row[3]$row[4]$row[5]
"; pg_close($conn); } catch(PDOException $e) { echo $e->getMessage(); } } else { try { $dbh = new PDO('pgsql:host=localhost;port=5432;dbname=databasename;user=username;password=password'); if (isset($_GET['code']) && ($_GET['code'] != "") && isset($_GET['delete'])) { $sql = "DELETE from films WHERE code='" . $_GET['code'] . "'"; $result = $dbh->query($sql); } else if (isset($_GET['code']) && ($_GET['code'] != "") && strpos($_GET['did'],"-") === false && isset($_GET['title']) && isset($_GET['did']) && isset($_GET['date_prod']) && isset($_GET['kind']) && isset($_GET['len']) && ($_GET['title'] != "") && ($_GET['did'] != "") && ($_GET['date_prod'] != "") && ($_GET['kind'] != "") && ($_GET['len'] != "")) { $result = $dbh->query("INSERT INTO films (code,title,did,date_prod,kind,len) values ('" . $_GET['code'] . "','" . $_GET['title'] . "'," . $_GET['did'] . ",to_date('" . $_GET['date_prod'] . "','YYYY-MM-DD'),'" . $_GET['kind'] . "','" . $_GET['len'] . "')"); } else if (isset($_GET['code']) && ($_GET['code'] != "")) { $delim=" "; $sql = "UPDATE films SET WHERE code='" . $_GET['code'] . "'"; if (isset($_GET['title']) && ($_GET['title'] != "")) { $sql = str_replace(" WHERE ", $delim . " title='" . $_GET['title'] . "'" . " WHERE ", $sql); $delim = ", "; } if (isset($_GET['did']) && strpos($_GET['did'],"-") === false && ($_GET['did'] != "")) { $sql = str_replace(" WHERE ", $delim . " did=" . $_GET['did'] . " WHERE ", $sql); $delim = ", "; } if (isset($_GET['date_prod']) && ($_GET['date_prod'] != "")) { $sql = str_replace(" WHERE ", $delim . " date_prod=to_date('" . $_GET['date_prod'] . "','YYYY-MM-DD')" . " WHERE ", $sql); $delim = ", "; } if (isset($_GET['kind']) && ($_GET['kind'] != "")) { $sql = str_replace(" WHERE ", $delim . " kind='" . $_GET['kind'] . "'" . " WHERE ", $sql); $delim = ", "; } if (isset($_GET['len']) && ($_GET['len'] != "")) { $sql = str_replace(" WHERE ", $delim . " len='" . $_GET['len'] . "'" . " WHERE ", $sql); $delim = ", "; } $result = $dbh->query($sql); } echo "
"; foreach ($dbh->query("SELECT * FROM films") as $row) { echo ""; } echo "
Film CodeTitleIdDateKindLength
$row[0]$row[1]$row[2]$row[3]$row[4]$row[5]
"; $dbh->close(); } catch(PDOException $e) { echo $e->getMessage(); } } echo "

"; if (isset($_GET['oops'])) echo " "; echo "
"; echo ""; echo ""; echo ""; echo ""; echo ""; echo "
Film Code:
Title:
Id:
Date:
Kind:
Length:

 

 

"; echo ""; ?>