8000 Update search_record.php · Abhijeetbyte/SQLite-PHP-Database@b9fbd12 · GitHub
[go: up one dir, main page]
Skip to content

Commit b9fbd12

Browse files
AbhijeetbyteAbhijeetbyte
authored
Update search_record.php
1 parent 797eb13 commit b9fbd12

File tree

1 file changed

+24
-13
lines changed

1 file changed

+24
-13
lines changed

search_record.php

Lines changed: 24 additions & 13 deletions
Original file line numberDiff line numberDiff line change
@@ -32,15 +32,21 @@
3232
<h1>Records Table</h1>
3333

3434
<?php
35-
try {
36-
// Connect to SQLite database
37-
$db = new PDO('sqlite:records.db');
38-
$db->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
35+
// Initialize variables for input data
36+
$roll_number = '';
37+
$error_message = '';
3938

40-
// Check if POST data is received
41-
if ($_SERVER["REQUEST_METHOD"] == "POST") {
42-
if (isset($_POST['roll_number']) && !empty($_POST['roll_number'])) {
43-
$roll_number = htmlspecialchars($_POST['roll_number']);
39+
// Check if POST data is received
40+
if ($_SERVER["REQUEST_METHOD"] == "POST") {
41+
// Sanitize user input
42+
$roll_number = filter_input(INPUT_POST, 'roll_number', FILTER_SANITIZE_STRING);
43+
44+
// Validate roll_number
45+
if (!empty($roll_number)) {
46+
try {
47+
// Connect to SQLite database
48+
$db = new PDO('sqlite:records.db');
49+
$db->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
4450

4551
// Prepare SQL query to fetch records
4652
$stmt = $db->prepare('SELECT * FROM students WHERE roll_number = :roll_number');
@@ -63,14 +69,19 @@
6369
} else {
6470
echo '<p>No records found for roll number ' . htmlspecialchars($roll_number) . '</p>';
6571
}
66-
} else {
67-
echo '<p>Please enter a roll number to view records.</p>';
72+
} catch (PDOException $e) {
73+
echo '<p>Database connection error: ' . $e->getMessage() . '</p>';
6874
}
6975
} else {
70-
echo '<p>Access denied.</p>';
76+
$error_message = 'Please enter a roll number to view records.';
7177
}
72-
} catch (PDOException $e) {
73-
echo '<p>Database connection error: ' . $e->getMessage() . '</p>';
78+
} else {
79+
$error_message = 'Access denied.';
80+
}
81+
82+
// Display error message if any
83+
if (!empty($error_message)) {
84+
echo '<p>' . htmlspecialchars($error_message) . '</p>';
7485
}
7586
?>
7687

0 commit comments

Comments
 (0)
0