https://netbeans.org/kb/docs/php/wish-list-lesson2.html
Creating the Database
=> Designing the Application. Reading from the Database
In this lesson you create and configure the PHP project to develop your application, create a list of pages in the application, and define the relations between them. You also develop basic application functionality and test it against the data you entered in the sample database in lesson 1.
The PHP code you write in this lesson performs the following functions:
1. Gets the name of a person that the user types in.
2. Checks whether that person is really in the database. Exits with an error message if the person is not in the database.
3. Displays a table of that person‘s wishes.
The current document is a part of the Creating a Database-Driven Application in the NetBeans IDE for PHP tutorial.
Select File > New Project (Ctrl-Shift-N on Windows and Linux, ?-Shift-N on MacOS). Create a new PHP project named "wishlist". When you create a PHP project, it contains the index file index.php by default. For information on creating and configuring a PHP project, see Setting Up a PHP Project.
The scope of your application covers the following use cases:
To cover this basic functionality, you will need to implement the following PHP files:
Now that you have finished the preliminary steps, you can start implementing the basic functionality of your application. Start with viewing the wish list of a wisher. This feature does not involve any validations and can be easily tested as you have already entered the test data into the database. The feature‘s functionality will be implemented on two pages, index.php and wishlist.php.
The index.php file will not contain any PHP code so you can easily remove the following block:
The index.php file is used for two purposes:
These actions are performed using an HTML form. Each HTML form contains:
To add a form to index.php:
Note: You can ignore warnings from the HTML validator.
.The file now looks like this:
The file now looks like this:
<form action="wishlist.php" method="GET" name="wishList">
Show wish list of: <input type="text" name="user" value=""/>
<input type="submit" value="Go" />
</form>
Note the following elements of the form:
In Adding a Form To index.php you created a form in which the user submits the name of someone whose wish list the user wants to see. The name is passed to the page wishlist.php. However, this page does not exist. If you run index.php, you will get a 404: File Not Found error when you submit a name. In this section, you create wishlist.php then test the application.
To create wishlist.php and test the application:
In this section, you first add code to wishlist.php that creates a connection to the database. You then add code to retrieve the ID number of the wisher whose name was typed into the index.php form.
<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title></title>
</head>
<body>
<?php
// put your code here
?>
</body>
</html>
Wish List of <?php echo htmlentities($_GET["user"])."<br/>";?>
The code now looks like this:
<body>Wish List of <?php echo htmlentities($_GET["user"])."<br/>";?>
<?php
// put your code here
</body>
The PHP code block displays the data that is received through the method GET in the field "user". This data is transferred from index.php where the name of the wish list owner Tom was entered in the text field "user". Repeat the steps from Testing index.php to see that wishlist.php works properly.
Delete the commented section in the template PHP block. In its place, type or paste in the following code. This code opens the connection to the database.
For the MySQL database:
$con = mysqli_connect("localhost", "phpuser", "phpuserpw");
if (!$con) {
exit(‘Connect Error (‘ . mysqli_connect_errno() . ‘) ‘
. mysqli_connect_error());
}
//set the default client character set
mysqli_set_charset($con, ‘utf-8‘);
For the Oracle database:
$con = oci_connect("phpuser", "phpuserpw", "localhost/XE", "AL32UTF8"); if (!$con) { $m = oci_error(); exit(‘Connect Error ‘ . $m[‘message‘]); }
The code attempts to open a connection to the database and gives an error message if there is a failure.
Note for Oracle Database users: You may need to alter the database connection in the oci_connect command. The standard syntax is "hostname/service name". The connection to an Oracle XE database in this snippet is "localhost/XE" to follow that syntax.
Note: You can use NetBeans IDE‘s code completion for either mysqli or OCI8 functions.
Beneath the code to open the connection to the database, in the same PHP block, type or paste the following code. This code retrieves the ID of the wisher whose wish list was requested. If the wisher is not in the database, the code kills/exits the process and displays an error message.
For the MySQL database:
mysqli_select_db($con, "wishlist");
$user = mysqli_real_escape_string($con, htmlentities($_GET["user"]));
$wisher = mysqli_query($con, "SELECT id FROM wishers WHERE name=‘" . $user . "‘");
if (mysqli_num_rows($wisher) < 1) { exit("The person " . htmlentities($_GET["user"]) . " is not found. Please check the spelling and try again"); }
$row = mysqli_fetch_row($wisher);
$wisherID = $row[0];
mysqli_free_result($wisher);
For the Oracle database: (Note that oci8 does not have an equivalent to mysqli_num_rows)
$query = "SELECT id FROM wishers WHERE NAME = :user_bv"; $stid = oci_parse($con, $query); $user = $_GET[‘user‘]; oci_bind_by_name($stid, ‘:user_bv‘, $user); oci_execute($stid); //Because user is a unique value I only expect one row $row = oci_fetch_array($stid, OCI_ASSOC); if (!$row) { exit("The person " . $user . " is not found. Please check the spelling and try again" ); } $wisherID = $row[‘ID‘]; oci_free_statement($stid);
The data is selected from the wishlist database through the $con connection. The selection criterion is the name received from the index.php as "user".
The syntax of a SELECT SQL statement can be briefly described as follows:
The mysqli query returns a result object. OCI8 returns an executed statement. In either case, you fetch a row from the result of the executed query and extract the value of the ID row, storing it in the variable $wisherID.
Lastly, you free the mysqli result or OCI8 statement. You need to free all resources that use a connection before the connection will physically be closed. Otherwise PHP‘s internal refcounting system will keep the underlying DB connection open even if $con is not usable following a mysqli_close() or oci_close() call.
Security Note: For MySQL, the htmlentities($_GET["user"]) parameter is escaped in order to prevent SQL injection attacks. See Wikipedia on SQL injections and the mysql_real_escape_string documentation. Although in the context of this tutorial you are not at risk of harmful SQL injections, it is best practice to escape strings in MySQL queries that would be at risk of such an attack. OCI8 avoids this through bind variables.
This PHP block is now complete. If you are using a MySQL database, the wishlist.php file now looks like this:
Wish List of <?php echo htmlentities($_GET["user"]) . "<br/>"; ?>
<?php
$con = mysqli_connect("localhost", "phpuser", "phpuserpw"); if (!$con) { exit(‘Connect Error (‘ . mysqli_connect_errno() . ‘) ‘ . mysqli_connect_error()); }
//set the default client character set mysqli_set_charset($con, ‘utf-8‘); mysqli_select_db($con, "wishlist"); $user = mysqli_real_escape_string($con, htmlentities($_GET["user"])); $wisher = mysqli_query($con, "SELECT id FROM wishers WHERE name=‘" . $user . "‘"); if (mysqli_num_rows($wisher) < 1) { exit("The person " . htmlentities($_GET["user"]) . " is not found. Please check the spelling and try again"); } $row = mysqli_fetch_row($wisher); $wisherID = $row[0]; mysqli_free_result($wisher); ?>
If you are using an Oracle database, the wishlist.php file now looks like this:
Wish List of <?php echo htmlentities($_GET["user"]) . "<br/>"; ?> <?php $con = oci_connect("phpuser", "phpuserpw", "localhost/XE", "AL32UTF8"); if (!$con) { $m = oci_error(); exit(‘Connect Error ‘ . $m[‘message‘]; exit; } $query = "SELECT id FROM wishers WHERE name = :user_bv"; $stid = oci_parse($con, $query); $user = htmlentities($_GET["user"]); oci_bind_by_name($stid, ‘:user_bv‘, $user); oci_execute($stid);
//Because user is a unique value I only expect one row $row = oci_fetch_array($stid, OCI_ASSOC); if (!$row) { exit("The person " . $user . " is not found. Please check the spelling and try again" ); } $wisherID = $row["ID"]; oci_free_statement($stid); ?>
If you test the application and enter an invalid user, the following message appears.
In this section, you add code that displays an HTML table of the wishes associated with the wisher. The wisher is identified by the ID you retrieved in the code in the previous section.
<table border="black"> <tr> <th>Item</th> <th>Due Date</th> </tr> </table>The </table> tag closes the table.
Enter the following PHP code block above the closing </table> tag.
For the MySQL database:
<?php
$result = mysqli_query($con, "SELECT description, due_date FROM wishes WHERE wisher_id=" . $wisherID);
while ($row = mysqli_fetch_array($result)) {
echo "<tr><td>" . htmlentities($row["description"]) . "</td>";
echo "<td>" . htmlentities($row["due_date"]) . "</td></tr>\n";
}
mysqli_free_result($result);
mysqli_close($con);
?>
For the Oracle database:
<?php
$query = "SELECT description, due_date FROM wishes WHERE wisher_id = :id_bv";
$stid = oci_parse($con, $query);
oci_bind_by_name($stid, ":id_bv", $wisherID);
oci_execute($stid);
while ($row = oci_fetch_array($stid)) {
echo "<tr><td>" . htmlentities($row["DESCRIPTION"]) . "</td>";
echo "<td>" . htmlentities($row["DUE_DATE"]) . "</td></tr>\n";
}
oci_free_statement($stid);
oci_close($con);
?>
Within the code:
Caution: Make sure you type the names of database fields exactly as they are specified during the database table creation. For Oracle, column names are returned as uppercase by default.
MySQL users: Click here to download the source code that reflects the project state after the lesson is completed.
Oracle Database users: Click here to download the source code that reflects the project state after the lesson is completed.
Back to the Tutorial Main page
PHP database/App develop flow,布布扣,bubuko.com
原文:http://www.cnblogs.com/kylegui/p/3809680.html