Webbserverprogrammering 1

Show sourcecode

The following files exists in this folder. Click to view.

webbserverprogrammering/exercises/mysqlintro/inlogg/

admin.php
dbconnection.php
deletepost.php
hemlig.php
index.php
insertpost.php
lås.php
selectposts.php
updatepost.php

deletepost.php

82 lines UTF-8 Windows (CRLF)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
<?php 
session_start();
?>
<!-- deletepost.php -->
<!doctype html>
<html>
<head>
<meta charset="utf-8">
<title>Delete</title>
</head>

<body>

<?php
include ('dbconnection.php');
include('lås.php');
$message null;
$id null;

if (isset($_POST['id']) && !empty($_POST['id'])) {
    $id $_POST['id'];
        
    try {    
        # prepare
        $sql "DELETE FROM användare WHERE id=?";
        $stmt $dbconn->prepare($sql);
        # the data we want to insert
        $data = array($id);
        # execute width array-parameter
        $stmt->execute($data);
            
        $message .= "<br />Record deleted successfully.<br />";
    }
    catch(PDOException $e)
        {
        $message .= $sql "<br>" $e->getMessage();
    }
} else {
    $message .= "<br />";
}

echo $message;

    
// Ouput table with all posts
/*** The SQL SELECT statement ***/
$sql "SELECT * FROM användare";
$stmt $dbconn->prepare($sql);
// fetch width column names, create a table
$data = array();  
$stmt->execute($data);
$output "<table><caption>En ostylad tabell!</caption>";
while ($res $stmt->fetch(PDO::FETCH_ASSOC)) {
    $idx htmlentities($res['id']);
    $first htmlentities($res['firstname']);
    $last htmlentities($res['lastname']);
    $username htmlentities($res['username']);
    $password htmlentities($res['password']);
    $admin htmlentities($res['admin']);
    
    $output .= "<tr>".
        "<td>$idx</td>".
        "<td>$first</td>".
        "<td>$last</td>".
        "<td>$username</td>".
        "<td>$password</td>".
        "<td>$admin</td>".
        "<td><form method='post' action=''>".
        "<input type='hidden' name='id' value='$idx'>".
        "<button type='submit'>Ta bort</button></form></td>".
    "</tr>";
    
}
$output .= "</table>";
echo "$output";

$dbconn null;
?>

<button onclick="window.location.href='admin.php'">Meny</button>
</body>
</html>