这是我的代码(对长度表示歉意):
$companyid = $_SESSION["companyid"];
$_SESSION["youtubeurl"] = mysql_real_escape_string($_POST["youtubeurl"]);
$_SESSION["logourl"] = mysql_real_escape_string($_POST["logourl"]);
$_SESSION["plan1head"] = mysql_real_escape_string($_POST["plan1head"]);
$_SESSION["plan1description"] = mysql_real_escape_string($_POST["plan1description"]);
$_SESSION["plan1headline1"] = mysql_real_escape_string($_POST["plan1headline1"]);
$_SESSION["plan1price1"] = mysql_real_escape_string($_POST["plan1price1"]);
$_SESSION["plan1headline2"] = mysql_real_escape_string($_POST["plan1headline2"]);
$_SESSION["plan1price2"] = mysql_real_escape_string($_POST["plan1price2"]);
$_SESSION["plan2head"] = mysql_real_escape_string($_POST["plan2head"]);
$_SESSION["plan2description"] = mysql_real_escape_string($_POST["plan2description"]);
$_SESSION["plan2headline1"] = mysql_real_escape_string($_POST["plan2headline1"]);
$_SESSION["plan2price1"] = mysql_real_escape_string($_POST["plan2price1"]);
$_SESSION["plan2headline2"] = mysql_real_escape_string($_POST["plan2headline2"]);
$_SESSION["plan2price2"] = mysql_real_escape_string($_POST["plan2price2"]);
$_SESSION["plan3head"] = mysql_real_escape_string($_POST["plan3head"]);
$_SESSION["plan3description"] = mysql_real_escape_string($_POST["plan3description"]);
$_SESSION["plan3headline1"] = mysql_real_escape_string($_POST["plan3headline1"]);
$_SESSION["plan3price1"] = mysql_real_escape_string($_POST["plan3price1"]);
$_SESSION["plan3headline2"] = mysql_real_escape_string($_POST["plan3headline2"]);
$_SESSION["plan3price2"] = mysql_real_escape_string($_POST["plan3price2"]);
$_SESSION["plan1price1type"] = $_POST["plan1price1type"];
$_SESSION["plan1price2type"] = $_POST["plan1price2type"];
$_SESSION["plan2price1type"] = $_POST["plan2price1type"];
$_SESSION["plan2price2type"] = $_POST["plan2price2type"];
$_SESSION["plan3price1type"] = $_POST["plan3price1type"];
$_SESSION["plan3price2type"] = $_POST["plan3price2type"];
mysql_connect("localhost", "name", "password") or die(mysql_error());
mysql_select_db("database") or die(mysql_error());
$getstats = mysql_query("SELECT * FROM company WHERE companyid =
'$companyid'");
$stats = mysql_fetch_array($getstats);
$calculaterating = $stats["ratingscore"] / $stats["ratingcount"];
if (!$calculaterating) {
$rating = "None";
} else {
$rating = $calculaterating;
}
$usage = $stats["usage"];
if(isset($_POST["submitpreview"])) {
$companyid = $_SESSION["companyid"];
$youtubeurl = $_SESSION["youtubeurl"];
$logourl = $_SESSION["logourl"];
$plan1head = $_SESSION["plan1head"];
$plan1description = $_SESSION["plan1description"];
$plan1headline1 = $_SESSION["plan1headline1"];
$plan1price1 = $_SESSION["plan1price1"];
$plan1headline2 = $_SESSION["plan1headline2"];
$plan1price2 = $_SESSION["plan1price2"];
$plan2head = $_SESSION["plan2head"];
$plan2description = $_SESSION["plan2description"];
$plan2headline1 = $_SESSION["plan2headline1"];
$plan2price1 = $_SESSION["plan2price1"];
$plan2headline2 = $_SESSION["plan2headline2"];
$plan2price2 = $_SESSION["plan2price2"];
$plan3head = $_SESSION["plan3head"];
$plan3description = $_SESSION["plan3description"];
$plan3headline1 = $_SESSION["plan3headline1"];
$plan3price1 = $_SESSION["plan3price1"];
$plan3headline2 = $_SESSION["plan3headline2"];
$plan3price2 = $_SESSION["plan3price2"];
$headlines = $_SESSION["headlines"];
$plan1price1type = $_SESSION["plan1price1type"];
$plan1price2type = $_SESSION["plan1price2type"];
$plan2price1type = $_SESSION["plan2price1type"];
$plan2price2type = $_SESSION["plan2price2type"];
$plan3price1type = $_SESSION["plan3price1type"];
$plan3price2type = $_SESSION["plan3price2type"];
mysql_connect("localhost", "name", "password") or die(mysql_error());
mysql_select_db("database") or die(mysql_error());
$islisted = mysql_query("SELECT * FROM companypage WHERE companyid = '$companyid'");
if ($islisted) {
mysql_query("UPDATE companypage SET
plan1head = '$plan1head',
plan1description = '$plan1description',
plan1price1type = '$plan1price1type',
plan1headline1 = '$plan1headline1',
plan1price1 = '$plan1price1',
plan1price2type = '$plan1price2type',
plan1headline2 = '$plan1headline2',
plan1price2 = '$plan1price2',
plan2head = '$plan2head',
plan2description = '$plan2description',
plan2price1type = '$plan2price1type',
plan2headline1 = '$plan2headline1',
plan2price1 = '$plan2price1',
plan2price2type = '$plan2price2type',
plan2headline2 = '$plan2headline2',
plan2price2 = '$plan2price2',
plan3head = '$plan3head',
plan3description = '$plan3description',
plan3price1type = '$plan3price1type',
plan3headline1 = '$plan3headline1',
plan3price1 = '$plan3price1',
plan3price2type = '$plan3price2type',
plan3headline2 = '$plan3headline2',
plan3price2 = '$plan3price2',
logourl = '$logourl',
youtubeurl = '$youtubeurl',
headlines = '$headlines'
WHERE companyid='$companyid'") or die(mysql_error());
} else {
mysql_query("INSERT INTO companypage (
companyid,
plan1head,
plan1description,
plan1price1type,
plan1headline1,
plan1price1,
plan1price2type,
plan1headline2,
plan1price2,
plan2head,
plan2description,
plan2price1type,
plan2headline1,
plan2price1,
plan2price2type,
plan2headline2,
plan2price2,
plan3head,
plan3description,
plan3price1type,
plan3headline1,
plan3price1,
plan3price2type,
plan3headline2,
plan3price2,
logourl,
youtubeurl,
headlines)
VALUES(
'$companyid',
'$plan1head',
'$plan1description',
'$plan1price1type',
'$plan1headline1',
'$plan1price1',
'$plan1price2type',
'$plan1headline2',
'$plan1price2',
'$plan2head',
'$plan2description',
'$plan2price1type',
'$plan2headline1',
'$plan2price1',
'$plan2price2type',
'$plan2headline2',
'$plan2price2',
'$plan3head',
'$plan3description',
'$plan3price1type',
'$plan3headline1',
'$plan3price1',
'$plan3price2type',
'$plan3headline2',
'$plan3price2',
'$logourl',
'$youtubeurl',
'$headlines')
") or die(mysql_error());
}
echo "<script>window.close();</script";
}
本质上,这里发生的事情是用户有一个自己的页面,可以通过一系列表单、下拉菜单等进行更改。要创建或更新他们的页面,他们填写表单并点击一个预览按钮,它是一个 target_blank,然后会弹出一个新选项卡来预览他们的页面的外观。上一页中的所有变量都首先插入 session 中供以后使用。在“预览”页面上有一个更新按钮。如果他们喜欢他们所看到的,他们会点击更新按钮(从而在 PHP 代码中执行“提交预览”)。然后 PHP 代码检查他们是否创建了页面,然后将它们添加到表中或根据变量更新当前表。
这是我的问题。当预览页面第一次加载时,所有变量、 session 或 POST 都会正确显示。但是,当执行提交预览并将信息存储在数据库中时,将存储以下内容:companyid 存储为 0,其他所有内容在表中存储为空白(即使它不应该接受空值?) .这对于插入和更新都适用。所以这显然让我觉得我做错了什么我的 session 变量(从 $_POST 变量在页面的第一页加载,我知道这是正确的,因为它们显示在预览页面上)不知何故当我在执行提交预览时将它们传回普通变量时传递错误。但真正让我难过的是 companyid 也没有正确存储(存储为 0 而不是正确的 id),即使当我在其他地方回显它时它显示正确。我确定我正在做的是一个简单的愚蠢错误,但我想不通。
感谢您的帮助,对于代码和问题的长度感到抱歉。
最佳答案
如果这是您的实际脚本,那么在您执行所有这些 mysql_real_escape_string() 调用时您还没有连接到 MySQL。您必须连接才能使用此功能。现在它只会返回一长串 bool FALSE 值来表示错误。
将您的数据库连接代码移到脚本的开头,它应该会开始更好地工作。但当然,您应该升级到 mysqli 或 PDO,因为 mysql_*() 已被弃用。
当然,绝不假设数据库操作已经成功。始终检查失败的返回值,例如:
$var = mysql_real_escape_string($_POST['var']) or die(mysql_error());
^^^^^^^^^^^^^^^^^^^^^^
会告诉你问题出在哪里。
关于返回空白的 PHP session 变量,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/14817501/