Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <html>
- <head><title>Guestbook DB</title></head>
- <body>
- <?php
- //user:guest; pass:12345
- //DB:guestbook; TABLE:data(date TIMESTAMP, name VARCHAR(100), comment TEXT)
- //PHP7 - вместо mysql_функция() ---> mysqli_функция() - има разлика в броя на аргументите
- printForm();
- if($_SERVER['REQUEST_METHOD'] === 'POST') saveData();
- printData();
- function printForm() {
- print <<<EOF
- <form method="POST">
- Име: <input type="text" name="ime" /><br />
- Коментар:
- <textarea name="comment"></textarea>
- <input type="submit" value="SEND!" />
- </form>
- EOF;
- }
- function saveData() {
- if($_SERVER['CONTENT_LENGTH']>1000) return;
- $db = mysqli_connect('localhost','guest','12345');
- if(!$db) die('ERROR DB CONNECT');
- mysqli_select_db($db, 'guestbook');
- $ime = addslashes($_SERVER["REMOTE_ADDR"] . ':' . $_POST['ime']);
- $comment = addslashes($_POST['comment']);
- $ime = mysqli_real_escape_string($db, $ime);
- $comment = mysqli_real_escape_string($db, $comment);
- $q = "INSERT INTO data VALUES (now(), '$ime','$comment')";
- $result = mysqli_query($db, $q);
- if(!$result) die('ERROR INSERT');
- mysqli_close($db);
- }
- function printData() {
- $db = mysqli_connect('localhost','guest','12345');
- if(!$db) die('ERROR DB CONNECT');
- mysqli_select_db($db, 'guestbook');
- $q = 'SELECT * FROM data';
- $result = mysqli_query($db, $q);
- $count = mysqli_num_rows($result);
- print "<table border='1'><tr><td>Дата</td><td>Име</td><td>Коментар</td></tr>\n";
- for($i=0; $i<$count; $i++) {
- $row = mysqli_fetch_array($result);
- $date = stripslashes($row['date']);
- $ime = stripslashes($row['name']);
- $comment = stripslashes($row['comment']);
- echo "<tr><td>$date</td><td>$ime</td><td>$comment</td></tr>";
- }
- print '</table>';
- mysqli_close($db);
- }
- ?>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
