sql - Display data to Logged In User - PHP

View Original

I am creating a page that will display the login history. My code currently displays all logs and should only display the log history from the logged-in user.

Database -> Logs:

log_id | user_email | ip_address | time 
-------+

LogHistory.php page:

{-code-2}

I have tried this code:

{-code-3}

With the above code I get this error message:

{-code-4}

Answer

--+

Answer

--+----- 1 | ml@a.com | 123.13.13 | 1:30|||<?php $stmt = $dbh->prepare("SELECT * FROM Logs ORDER BY log_id ASC"); $stmt->execute(); if ($stmt->rowCount() == 0) { echo 'Log history are empty.'; } else { // Data we collected from the registered user } ?>|||<?php $LoggedInUser = $_SESSION['user']; $stmt = $dbh->prepare("SELECT * FROM Logs WHERE user_email = $LoggedInUser ORDER BY log_id ASC"); $stmt->execute(); if ($stmt->rowCount() == 0) { echo 'Log history are empty.'; } else { // Data we collected from the registered user } ?>|||PHP Fatal error: Uncaught PDOException: SQLSTATE\[42000\]: Syntax error or access violation: 1064 You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near ':user@example.com ORDER BY log_id ASC'

Answer

Solution:

You just need to use parameters with prepared statements

<?php
    $LoggedInUser = $_SESSION['user'];
    $stmt = $dbh->prepare("SELECT * FROM Logs WHERE user_email = ? ORDER BY log_id ASC");
    $stmt->execute([$LoggedInUser]);
    if ($stmt->rowCount() == 0) {
        echo 'Log history are empty.';
    } else {
        // Data we collected from the registered user
    }
?>

Here live PHP code

Source
© 2021
E-mail: contact@webdevask.com
Back to top