Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <!DOCTYPE html>
- <!--index.php -->
- <html>
- <head>
- <meta charset="UTF-8">
- <title></title>
- </head>
- <body>
- <?php
- include 'config.php';
- $query = mysqli_query($connection, "SELECT * FROM `automobiliai`");
- $total = mysqli_num_rows($query);
- $i = 0;
- while ($i < $total) {
- $automobiliaiVisi = mysqli_fetch_assoc($query);
- echo "<br>ID: " . $automobiliaiVisi['id'];
- echo "<br>Marke: " . htmlspecialchars($automobiliaiVisi['Markė']); // nuo xss atakos - htmlspecialchars - nevykdo o rodo visus html tagus. kad ivedant vartotojas neivestu html zymiu/scripto
- echo "<br>Modelis: " . htmlspecialchars($automobiliaiVisi['Modelis']);
- echo "<br>Pagaminimo metai: " . htmlspecialchars($automobiliaiVisi['pagaminimoMetai']);
- echo "<br>Kaina: " . htmlspecialchars($automobiliaiVisi['kaina']);
- echo '<br><a href="delete.php?id=' . $automobiliaiVisi['id'] . '" >Delete</a>';
- echo '<br><a href="edit.php?id=' . $automobiliaiVisi['id'] . '" >edit</a>';
- echo "<hr>";
- $i++;
- }
- mysqli_close($connection);
- ?>
- <a href="create.php">prdeti nauja</a>
- </body>
- </html>
- <!--config.php -->
- <?php
- function connect() {
- $host = "localhost";
- $user = "root";
- $pass = "";
- $db = "crud";
- $conn = mysqli_connect($host, $user, $pass, $db);
- mysqli_set_charset($conn, "utf8"); // put your code here
- return $conn;
- }
- $connection = connect();
- ?>
- <!--create.php -->
- <!DOCTYPE html>
- <html>
- <head>
- <meta charset="UTF-8">
- <title></title>
- </head>
- <body>
- <form action="store.php" method="POST">
- Markė:<br>
- <input type="text" name="marke"></input> <br>
- Modelis:<br>
- <input type="text" name="modelis" value=""><br>
- pagaminimoMetai : <br>
- <input type="number" name="pagaminimoMetai" value=""><br>
- Kaina:<br>
- <input type="number" name="kaina" value=""><br>
- <input type="submit" value="Išsagoti">
- </form>
- </body>
- </html>
- <!--store.php -->
- <!DOCTYPE html>
- <html>
- <head>
- <meta charset="UTF-8">
- <title></title>
- </head>
- <body>
- <?php
- include 'config.php';
- if (array_key_exists("marke", $_POST) && array_key_exists("modelis", $_POST) && array_key_exists("pagaminimoMetai", $_POST) && array_key_exists("kaina", $_POST)) {
- $marke = addslashes($_POST['marke']); // aPSAUGA NUO INJEKCIJU, kad kabuciu neskaitytu. dirbant su duomabze butina !!
- $modelis = addslashes($_POST['modelis']);
- $pagaminimoMetai = addslashes($_POST['pagaminimoMetai']);
- $kaina = addslashes($_POST['kaina']);
- $year = (new DateTime)->format("Y");
- if (is_numeric($_POST["pagaminimoMetai"]) && is_numeric($_POST["kaina"])) {
- if ($pagaminimoMetai >= 1897 && $pagaminimoMetai <= $year && $kaina > 0) {
- $query = mysqli_query($connection, "INSERT INTO `automobiliai` SET `Markė` = '" . $marke . "', "
- . "`Modelis`='" . $modelis . "', "
- . "`pagaminimoMetai`='" . $pagaminimoMetai . "', "
- . "`kaina`='" . $kaina . "'");
- mysqli_close($connection);
- } else {
- echo "Pasitikrinkite įvestus duomenis: pirmas automibilis pagamintas 1897m ir ne vėlesni nei dabartiniai matei: ".$year. " o kaina - teigiamas skaičius.";
- echo "<a href='create.php'> patikslinti duomenis <br></a>";
- }
- } else {
- echo "Pasitikrinkite įvestus duomenis: pirmas automibilis pagamintas 1897m ir kaina - teigiamas skaičius.";
- }
- } else {
- echo "nepalikite tuščių reikšmių ";
- }
- ?>
- įvesta <a href="index.php">grįžti atgal</a>
- </body>
- </html>
- <!--delete.php -->
- <!DOCTYPE html>
- <html>
- <head>
- <meta charset="UTF-8">
- <title></title>
- </head>
- <body>
- <?php
- include 'config.php';
- $id = addslashes($_GET['id']);
- $query = mysqli_query($connection, "DELETE FROM `automobiliai` WHERE `id` = '" . $id . "'");
- mysqli_close($connection);
- ?>
- ištrynėm, ačiū, <a href="index.php"> grįžti atgal</a>
- </body>
- </html>
- <!--edit.php -->
- <!DOCTYPE html>
- <html>
- <head>
- <meta charset="UTF-8">
- <title></title>
- </head>
- <body>
- <?php
- include 'config.php';
- $id = $_GET['id'];
- $query = mysqli_query($connection, "SELECT * FROM `automobiliai` WHERE `id` = '" . $id . "'");
- $automobiliaiVisi = mysqli_fetch_array($query);
- mysqli_close($connection);
- ?>
- <form action="update.php?id=<?php echo $id; ?>" method="POST">
- Markė:<br>
- <input type="text" name="marke" value="<?php echo $automobiliaiVisi['Markė']; ?>"></input> <br>
- Modelis:<br>
- <input type="text" name="modelis" value="<?php echo $automobiliaiVisi['Modelis']; ?>"><br>
- pagaminimoMetai : <br>
- <input type="number" name="pagaminimoMetai" value="<?php echo $automobiliaiVisi['pagaminimoMetai']; ?>"><br>
- Kaina:<br>
- <input type="number" name="kaina" value="<?php echo $automobiliaiVisi['kaina']; ?>"><br>
- <input type="submit" value="Išsagoti">
- </form>
- </body>
- </html>
- <!--update.php -->
- <!DOCTYPE html>
- <html>
- <head>
- <meta charset="UTF-8">
- <title></title>
- </head>
- <body>
- <?php
- include 'config.php';
- if (array_key_exists("marke", $_POST) && array_key_exists("modelis", $_POST) && array_key_exists("pagaminimoMetai", $_POST) && array_key_exists("kaina", $_POST)) {
- $id = addslashes($_GET['id']);
- $marke = addslashes($_POST['marke']); // aPSAUGA NUO INJEKCIJU, kad kabuciu neskaitytu. dirbant su duomabze butina !!
- $modelis = addslashes($_POST['modelis']);
- $pagaminimoMetai = addslashes($_POST['pagaminimoMetai']);
- $kaina = addslashes($_POST['kaina']);
- $year = (new DateTime)->format("Y");
- if (is_numeric($_POST["pagaminimoMetai"]) && is_numeric($_POST["kaina"])) {
- if ($pagaminimoMetai >= 1897 && $pagaminimoMetai <= $year && $kaina > 0) {
- $query = mysqli_query($connection, "UPDATE `automobiliai` SET `Markė` = '" . $marke . "', "
- . "`Modelis`='" . $modelis . "', "
- . "`pagaminimoMetai`='" . $pagaminimoMetai . "', "
- . "`kaina`='" . $kaina . "'"
- . "WHERE `id` = '" . $id . "' ");
- mysqli_close($connection);
- } else {
- echo "Pasitikrinkite įvestus duomenis: pirmas automibilis pagamintas 1897m ir kaina - teigiamas skaičius.";
- }
- } else {
- echo "Pasitikrinkite įvestus duomenis: pirmas automibilis pagamintas 1897m ir kaina - teigiamas skaičius.";
- }
- } else {
- echo "nepalikite tuščių reikšmių ";
- }
- ?>
- atnaujinta <a href="index.php"> grįžti atgal</a>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement