Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- ini_set("session.save_path", "/home/unn_w16004164/sessionData");
- session_start();
- ?>
- <!doctype html>
- <html lang="en">
- <head>
- <meta charset="UTF-8" />
- <title>Retrieve records from the fine_feedback table</title>
- </head>
- <body>
- <?php
- echo "<ul>
- <li><a href='chooseRecords.php'>Home</a></li>";
- if(isset($_SESSION['logged-in']) && ($_SESSION['logged-in'] == true)){
- echo"<li><a href ='logout.php'>Log out</a></li>";
- } else{
- echo "<li><a href ='loginForm.html'>Log in</a></li>";
- }
- echo"</ul>";
- if(isset($_SESSION['logged-in']) && $_SESSION['logged-in'] == true){
- try {
- require_once("functions.php");
- $dbConn = getConnection();
- $selectSQL = "SELECT recordID, recordTitle, recordYear, recordPrice, catDesc FROM nmc_records
- INNER JOIN nmc_publisher
- ON nmc_records.pubID = nmc_publisher.pubID
- INNER JOIN nmc_category
- ON nmc_records.catID = nmc_category.catID
- ORDER BY recordTitle";
- $stmt = $dbConn->query($selectSQL);
- // Now you can loop through the record set as usual
- while ($rowObj = $stmt->fetchObject()) {
- $rowObj->recordTitle = filter_var($rowObj->recordTitle, FILTER_SANITIZE_STRING, FILTER_FLAG_NO_ENCODE_QUOTES);
- $rowObj->recordTitle = filter_var($rowObj->recordTitle, FILTER_SANITIZE_SPECIAL_CHARS);
- $rowObj->recordYear = filter_var($rowObj->recordYear, FILTER_SANITIZE_STRING, FILTER_FLAG_NO_ENCODE_QUOTES);
- $rowObj->recordYear = filter_var($rowObj->recordYear, FILTER_SANITIZE_SPECIAL_CHARS);
- $rowObj->recordPrice = filter_var($rowObj->recordPrice, FILTER_SANITIZE_STRING, FILTER_FLAG_NO_ENCODE_QUOTES);
- $rowObj->recordPrice = filter_var($rowObj->recordPrice, FILTER_SANITIZE_SPECIAL_CHARS);
- $rowObj->catDesc = filter_var($rowObj->catDesc, FILTER_SANITIZE_STRING, FILTER_FLAG_NO_ENCODE_QUOTES);
- $rowObj->catDesc = filter_var($rowObj->catDesc, FILTER_SANITIZE_SPECIAL_CHARS);
- echo "<div class='div record'>
- <span class='title'><a href='editRecords.php?recordID={$rowObj->recordID}'>{$rowObj->recordTitle}</a></span>
- <span class ='recordYear'>{$rowObj->recordYear}</span>\n
- <span class ='catDesc'>{$rowObj->catDesc}</span>\n
- <span class ='recordPrice'>{$rowObj->recordPrice}</span>\n
- </div>\n";
- }
- }
- catch (Exception $e) {
- echo "Records not found: " . $e->getMessage();
- }
- } else{
- echo "<p> Access denied, please log in</p>";
- }
- ?>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement