php - failed prepared statement and img file upload -

-

i attempting create first prepared statement , use see i'm doing wrong. had of query working before doing this, told me should way prevent sql injection.

i'm trying send product info database. included in data, trying send img file , have moved db. before attempting prepared statement doing simple mysqli insert statement , part of query did not work getting file name of img show in database actual file name. way uploading "array" or "1". changed things around try make work procedure statement best could.

i'm not sure if attempt upload img file correct in prepared statement or not. reason being none of being sent data base now. not getting errors database connection.

i start off validation. not have validation img file yet. add later once can send.

i process form info. i'm not sure if $file variable structured right sending file name db i'm getting error.

i error php error info on.. notice: undefined index: img in /home4/pfarley1/public_html/addproduct.php on line 90

//create $date = date('y-m-d h:i:s');  if($validation->passed()) {     if(isset($_post['create'])){          $product_id = trim( $_post['product_id'] );         $name = trim( $_post['name'] );         $price = trim( $_post['price'] );         $saleprice = trim( $_post['saleprice'] );         $final_price = trim( $_post['final_price'] );         $shippingprice = trim( $_post['shippingprice'] );         $category = trim( $_post['category'] );         $item_details = trim( $_post['item_details'] );         $item_details2 = trim( $_post['item_details2'] );         $description = trim( $_post['description'] );         $viewproduct_type = trim( $_post['viewproduct_type'] );         $date = ( $_post['date_created'] );  //line 90 $file = ($_post ['img'] [move_uploaded_file($_files['file']['tmp_name'],"productpics/". $_files['file']['name'])] );      //connection     $con = mysqli_connect("localhost","root","","bfb");     /* check connection */         if (mysqli_connect_errno()) {             printf("connect failed: %s\n", mysqli_connect_error());             exit();         }        /* create prepared statement */     if ($stmt = mysqli_prepare($con, "insert products ('product_id', 'name', 'price', 'saleprice', 'final_price', 'shippingprice', 'category', item_details', 'item_details2', 'description', 'viewproduct_type', 'date', 'img') values (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)")) {           /* bind parameters markers */         $stmt->bind_param('isiiiisssssis', $product_id, $name, $price, $saleprice, $final_price, $shippingprice, $category, $item_details, $item_details2, $description, $viewproduct_type, $date, $file);          /* execute query */         $stmt->execute();       /* close statement */     mysqli_stmt_close($stmt);         }     }   }  }  }    ?>

the form

<form action="" method="post" enctype="multipart/form-data">     <div class="field">         <label for="product_id">product id</label>         <input type="text" name="product_id" class="smallinputbar" required>     </div>     <div class="field">         <label for="name">product name</label>         <input type="text" class="inputbar" name="name" required>     </div>     <div class="field">         <label for="price">product price</label>         <input type="text" class="smallinputbar" name="price" required>     </div>     <div class="field">         <label for="saleprice">sale price</label>         <input type="text" class="smallinputbar" name="saleprice">     </div>     <div class="field">         <label for="final_price">final price</label>         <input type="text" class="smallinputbar" name="final_price" required>     </div>     <div class="field">         <label for="shippingprice">shipping price</label>         <input type="text" class="smallinputbar" name="shippingprice" required>     </div>     <div class="field">         <label for="category">category</label>         <input type="text" class="inputbar" name="category" required>     </div>     <div class="field">         <label for="item_details">item details</label>         <input type="message" class="messageinput" name="item_details" required>     </div>     <div class="field">         <label for="item_details2">item details 2</label>         <input type="message" class="messageinput" name="item_details2">     </div>     <div class="field">         <label for="description">description</label>         <input type="message" class="messageinput" name="description" required>     </div>     <div class="field">         <label for="viewproduct_type">view product type</label>         <select class="optionbar" name="viewproduct_type">             <option name="notselected">not selected</option>             <option name="viewproduct_type" value="a href='./viewproduct.php?view_product=$id">standard</option>             <option name="viewproduct_type" value="option">option</option>         </select>     </div>          <input type="hidden" name="token" value="<?php echo token::generate(); ?>">         <label for="button">          <input type="submit" id="button" name="create" value="create new product">         </label>      <span class="floatright">         <input type="file" name="file" class="inputbarfile">         <input type="submit" name="create" id="signinbutton" value="upload">     </span>

i followed examples php manual , youtube, none doing, adding in img file upload.

does see doing wrong prepared statement or way trying upload img file? i've been stuck in img file upload long time , have tried million different ways.


Comments

Post a Comment

Popular posts from this blog

Java 3D LWJGL collision -

-
i making 3d java game lwjgl library, , wondering how add collision detection, player not go through models. i using obj models. here objloader class, loads models: package renderengine; import java.io.bufferedreader; import java.io.file; import java.io.filenotfoundexception; import java.io.filereader; import java.util.arraylist; import java.util.list; import models.rawmodel; import org.lwjgl.util.vector.vector2f; import org.lwjgl.util.vector.vector3f; public class objloader { public static rawmodel loadobjmodel(string filename, loader loader){ filereader fr = null; try { fr = new filereader(new file("res/"+filename+".obj")); } catch (filenotfoundexception e) { system.err.println("couldn't load file!"); e.printstacktrace(); } bufferedreader reader = new bufferedreader(fr); string line; list<vector3f> vertices = new arraylist<vector3f...
Read more

spring - SubProtocolWebSocketHandler - No handlers -

-
i have ugly error during deploying spring app on jboss. 18:11:16,025 error [org.apache.catalina.core.containerbase.[jboss.web].[default-host].[/consumer]] (msc service thread 1-7) exception sending context initialized event listener instance of class org.springframework.web.context.contextloaderlistener: org.springframework.context.applicationcontextexception: failed start bean 'subprotocolwebsockethandler'; nested exception java.lang.illegalargumentexception: no handlers @ org.springframework.context.support.defaultlifecycleprocessor.dostart(defaultlifecycleprocessor.java:176) [spring-context-4.1.3.release.jar:4.1.3.release] @ org.springframework.context.support.defaultlifecycleprocessor.access$200(defaultlifecycleprocessor.java:51) [spring-context-4.1.3.release.jar:4.1.3.release] @ org.springframework.context.support.defaultlifecycleprocessor$lifecyclegroup.start(defaultlifecycleprocessor.java:346) [spring-context-4.1.3.release.jar:4.1.3.release] @ org.s...
Read more

methods - python can't use function in submodule -

-
my folder structure this: pythonstuff/ program.py modulea/ __init__.py foo.py bar.py here's code bar.py : def hello(): print("hello, world!") here's code program.py : #!/usr/bin/env python3 modulea import bar bar.hello() i run $ python3 program.py somehow error: file "program.py", line 3, in <module> bar.hello() attributeerror: 'module' object has no attribute 'hello' edit: __init__.py file empty. edit2: after trying realized had bar.py in root directory contained hello() method. bar.py in modulea/ directory empty. add it import os __all__ = [] module in os.listdir(os.path.dirname(__file__)): if module != '__init__.py' , module[-3:] == '.py': __all__.append(module[:-3]) the init .py files required make python treat directories containing packages; done prevent directories common name, such string, unintentionally hiding v...
Read more