Ask a question

Popular technologies

PHP x 42333
Laravel x 7025
Yii x 238
CodeIgniter x 704
Symfony x 1006
CakePHP x 144
Zend Framework x 17
Phalcon x 29
FuelPHP x 2
Slim x 42
JavaScript x 4234
React x 147
Angular x 74
Vue.js x 41
JQuery x 598
Node.js x 72
MySQL x 2803
CSS x 292
Bootstrap x 173
Foundation x 12
Animate.css x 1
HTML x 2152

Latest questions:

735 php - I need to generate a good date and time based on laravel carbon, but I need to remove the timezone from this return
26 apache - read/write websocket server in php is not wotking
191 php - Laravel 9 - implode() and whereIn
830 php - what's the meaning of the result of var_dump (object)?
679 php - Unauthenticated in Laravel Passport while fetching data
727 php - How to get ID of the first table in a join table
749 guzzle - Where is the get() function in PHP GuzzleHttp?
481 javascript - Timekeeping System: Plot schedule for time in and time out frame within the same day is not working
253 php - Walker_Nav_Menu() for top level links only
491 php - I keep getting unidentified varible $data
  1. Home
  2. javascript - Manipulate SQL query depending on the filters applied in PHP?
781 votes
2 answers

javascript - Manipulate SQL query depending on the filters applied in PHP?

Get the solution ↓↓↓

I have a HTML table that gets populated with values retrieved from the connected database table 'Attendance' on page load with the session UserID of who's logged in.

html table

To adjust this table, I'm using a collection of filters created with<form> and inputs as such:

filters panel

For Workspace No. it takes all the Workspace number's in the file and lists them as options in the dropdown so they are pre-populated values. The attendance checkboxes correlate to a checkbox with a value of 1 for Present and 0 for Late

So far I have only the filters for ID search and the Workspace No. written out but I'm unsure if this is the way to go as the SQL query will still have theWHERE ... WorkID = ? even if there has been no selection made for Workspace No. rather than being omitted from the query?

$('.apply').click(function () {
      if ($('#idSearch')[0].checkValidity()){ #checks if the form is valid
      $('#idSearch').submit();
    }
    if ($('#chosenWork') != ""){
      $('#WorkIDSearch').submit(); #submits the form to POST the Workspace No.
    }
  });

...

include("config.php");

if (isset($_POST['reqID'])){ #checks if the ID search input field (reqID) has been submitted
  $userid = $_POST['reqID'];
  
} else{                                  
  $userid = $_SESSION['sess_user_id'];
  
}

if (isset($_POST['chosenWork'])){ #checks if the dropdown for Workspace Number (chosenWork) has been selected
  $chosenwork = $_POST['chosenWork'];
  
}

if (isset($_POST['chosenWork']) && isset($_POST['reqID'])){ #checks if both are selected
  $chosenwork = $_POST['chosenWork'];
  $userid = $_POST['reqID'];
  
}


$stmt = $conn->prepare("SELECT Number, ID, Date, Log_Time, WorkID, Att_Type FROM Attendance WHERE ID = ? AND WorkID = ?";
$stmt->bindParam("ii", $userid, $chosenwork);
$stmt->execute();

$result = $stmt->setFetchMode(PDO::FETCH_ASSOC);

My desired output is that any of these filters can be applied independently or combined to adjust the WHERE clause of the SQL query.

701
votes

Answer

Solution:

You can try it this way:

$query = "SELECT Number, ID, Date, Log_Time, WorkID, Att_Type FROM Attendance";
$chosenwork = null;

if (isset($_POST['reqID'])){ #checks if the ID search input field (reqID) has been submitted
  $userid = $_POST['reqID'];
  $query .= " WHERE ID = ?";
  
} else{                                  
  $userid = $_SESSION['sess_user_id'];
  $query .= " WHERE ID = ?";
}

if (isset($_POST['chosenWork'])){ #checks if the dropdown for Workspace Number (chosenWork) has been selected
  $chosenwork = $_POST['chosenWork'];
  $query .= " WorkID = ?";
}

if (isset($_POST['chosenWork']) && isset($_POST['reqID'])){ #checks if both are selected
  $chosenwork = $_POST['chosenWork'];
  $userid = $_POST['reqID'];
  $query = "SELECT Number, ID, Date, Log_Time, WorkID, Att_Type FROM Attendance WHERE ID = ? AND WorkID = ?";
}

$query .= ";";
$stmt = $conn->prepare($query);
(isset($userid)) ?? $stmt->bind_param("i", $userid);
(isset($chosenwork)) ?? $stmt->bind_param("i", $chosenwork);
$stmt->execute();

$result = $stmt->setFetchMode(PDO::FETCH_ASSOC);

662
votes

Answer

Solution:

It is hard to help debug without more info, but several things I noticed:

  1. Looking at the error, it says the problem is either syntax but it could be the result of an old version. Have you checked your sql version? Prepared statements were introduced in v4.1.

  2. You haven't shown your html or js validation, but since you are telling sql to expect integers, are you absolutely sure your variables are integers? To be sure, add a 0 to $userid and $chosenwork (e.g.$userid = $userid + 0;) before binding them

  3. For security, validating posted form data should be done on the server not client -- it is trivial to circumvent client-side js validation

  4. The null coalescing operators in Serghei Leonardo's answer will only work if you are using php7 or higher. Also, I am not familiar with his usage of it so I may be wrong, but it looks to me it will return $userid and $chosenwork if they are set and only bind ifisset($userid) orisset($chosenwork) are null (i.e. if $userid or $chosenwork are null), which would be backwards from what you want. See another explanation here. This might not work, but try changing it to:

    (!isset($userid) ?? $stmt->bind_param("i", $userid));(!isset($chosenwork) ?? $stmt->bind_param("i", $chosenwork));

Source

Share

Didn't find the answer?

Our community is visited by hundreds of web development professionals every day. Ask your question and get a quick answer for free.

Similar questions

Find the answer in similar questions on our website.

109 php - What to do with mysqli problems? Errors like mysqli_fetch_array(): Argument #1 must be of type mysqli_result and such
920 php - MySQL Monitoring Notificaation System
125 IF infant missed the now() date schedule then he we will get the show next date schedule php mysql
719 laravel - .Blade.php page doesn't work with localhost but with php artisan server it's work
357 php - Retrieve Postmeta in Custom WordPress Query
581 php - jQuery If checkbox in foreach loop is checked, include checkboxes and input values within that loop
587 javascript - Notification functionality using ajax php
923 php - i can't update MYSQL database record using HTML form even i get updated successfully
983 How to first check in JavaScript if the link of the "video" returned by the JSON of the PHP Code is of HTML "oEmbed" type?
481 I want to alter column name dynamic in existing table using php and mysql

Write quick answer

Do you know the answer to this question? Write a quick response to it. With your help, we will make our community stronger.




About the technologies asked in this question

PHP

PHP (from the English Hypertext Preprocessor - hypertext preprocessor) is a scripting programming language for developing web applications. Supported by most hosting providers, it is one of the most popular tools for creating dynamic websites. The PHP scripting language has gained wide popularity due to its processing speed, simplicity, cross-platform, functionality and distribution of source codes under its own license.
https://www.php.net/


JavaScript

JavaScript is a multi-paradigm language that supports event-driven, functional, and mandatory (including object-oriented and prototype-based) programming types. Originally JavaScript was only used on the client side. JavaScript is now still used as a server-side programming language. To summarize, we can say that JavaScript is the language of the Internet.
https://www.javascript.com/


HTML

HTML (English "hyper text markup language" - hypertext markup language) is a special markup language that is used to create sites on the Internet. Browsers understand html perfectly and can interpret it in an understandable way. In general, any page on the site is html-code, which the browser translates into a user-friendly form. By the way, the code of any page is available to everyone.
https://www.w3.org/html/

Welcome to webdevask.com

Welcome to webdevask.com

Welcome to the Q&A site for web developers. Here you can ask a question about the problem you are facing and get answers from other experts. We have created a user-friendly interface so that you can quickly and free of charge ask a question about a web programming problem. We also invite other experts to join our community and help other members who ask questions. In addition, you can use our search for questions with a solution.

Get answers to specific questions

Ask about the real problem you are facing. Describe in detail what you are doing and what you want to achieve.

Help Others Solve Their Issues

Our goal is to create a strong community in which everyone will support each other. If you find a question and know the answer to it, help others with your knowledge.

© 2022 webdevask.com