I am making a form that verifies if a student name and a student id are in a database. Then, the select tag would signify whether we want to add/drop a course or display grades. If a course is added or dropped, a table would display showing before the change and after.
When I try to use the form, it will not process any input. welcome.php is the landing page, session.php is used for validation between my MySQL DB and client input and displaying portions of the DB table, and studentform.js is used for verification that the correct input is made.
welcome.php
<html lang="en">
<head>
<meta charset="utf-8">
<title>Student Login Form</title>
<script src="studentform.js"></script>
</head>
<body>
<h1>Student Login</h1>
<div class="container">
<form name="form">
<label for="name">Name:</label>
<input type="text" name="name" size="50" id="name" required />
<br/>
<br/>
<label for="studentid">Student ID:</label>
<input type="number" name="studentid" maxlength="8" id="studentid" required />
<br/>
<br/>
<label for="email">Email:</label>
<input type="email" name="email" size="50" id="email" required />
<br/>
<br/>
<label for="emailconfirm">Email Confirmation:</label>
<input type="checkbox" name="emailconfirm" checked /><span>Send an email confirmation</span>
<br/>
<br/>
<label for="course">Course (if you want to select Student Registration):</label>
<input type="text" name="course" size="50" id="course"/>
<br/>
<br/>
<label for="change">Type Add or Drop (if you want to select Student Registration):</label>
<input type="text" name="change" size="50" id="change"/>
<br/>
<br/>
<select name="task" id="task">
<option value="1">Student Registration</option>
<option value="2">Transcript</option>
</select>
<br/><br/>
<?php
include('session.php');
?>
<input type="submit" name="submit" value="Submit" onsubmit="session.php" />
</form>
</div>
</body>
</html>
session.php
<?php
include('config.php');
ini_set('display_errors', 1);
ini_set('display_startup_errors', 1);
error_reporting(E_ALL);
session_start();
$user_check = $_SESSION['login_user'];
$ses_sql = mysqli_query($db,"SELECT username from Student_Record where username = '$user_check'");
$row = mysqli_fetch_array($ses_sql,MYSQLI_ASSOC);
$login_session = $row['username'];
if(!isset($_SESSION['login_user'])){
header("location:login.php");
}
if (isset($_POST['task'])) {
$selectOption = $_POST['task'];
}
switch($selectOption)
{
case 2:
{
if (isset($_POST['name'])) {
$name = $_POST['name'];
}
$sql = "SELECT * from Student_Record where fullname = '$name'";
$result=$db->query($sql);
if ($result->num_rows > 0) {
$query = "SELECT grades from Student_Record where fullname = '$name'";
$result1=$conn->query($query);
echo "<br><br><table>";
while($row = $result1->fetch_assoc()){
echo "<tr><td>" . $row['fullname'] . "</td><td>" . $row['Student_ID'] . "</td><td>" . $row['email'] . "</td><td>" . $row['courses'] . "</td><td>" . $row['grades'] . "</td></tr>";
}
echo "</table>";
}
else{
echo "not found";
}
break;
}
case 1:
{
$selection = $_POST['change'];
$course = $_POST['course'];
$name = $_POST['name'];
$sql = "SELECT courses from Student_Record where fullname = '$name'";
$result = $db->query($sql);
echo "<h1>Before</h1>";
if ($result->num_rows > 0) {
$query = "SELECT * from Student_Record where fullname = '$name'";
$result1=$conn->query($query);
echo "<br><br><table>";
while($row = $result1->fetch_assoc()){
echo "<tr><td>" . $row['fullname'] . "</td><td>" . $row['Student_ID'] . "</td><td>" . $row['email'] . "</td><td>" . $row['courses'] . "</td><td>" . $row['grades'] . "</td></tr>";
}
echo "</table>";
}
else{
echo "not found";
}
if($selection="Add"){
$newcourses = $result + $course;
$sql = "UPDATE MyGuests SET courses='$newcourses' WHERE fullname='$name'";
if (mysqli_query($conn, $sql)) {
echo "Record updated successfully";
} else {
echo "Error updating record: " . mysqli_error($conn);
}
}
if($selection="Drop"){
$newcourses = str_replace($course,"",$result);
$sql = "UPDATE Student_Record SET courses='$newcourses' WHERE fullname='$name'";
if (mysqli_query($conn, $sql)) {
echo "Record updated successfully";
} else {
echo "Error updating record: " . mysqli_error($conn);
}
}
echo "<h1>Before</h1>";
if ($result->num_rows > 0) {
$query = "SELECT * from Student_Record where fullname = '$name'";
$result1=$conn->query($query);
echo "<br><br><table>";
while($row = $result1->fetch_assoc()){
echo "<tr><td>" . $row['fullname'] . "</td><td>" . $row['Student_ID'] . "</td><td>" . $row['email'] . "</td><td>" . $row['courses'] . "</td><td>" . $row['grades'] . "</td></tr>";
}
echo "</table>";
}
else{
echo "not found";
}
break;
}
default:
{
echo("Error!");
exit();
break;
}
}
$checkQuery = "SELECT * from Student_Record WHERE fullname='$_POST[name]'";
$userCheck = mysqli_query($db, $checkQuery);
if(!$userCheck){
echo "Invalid name";
return false;
}
$checkQuery = "SELECT * from Student_Record WHERE
Student_ID='$_POST[studentid]'";
$userCheck = mysqli_query($db, $checkQuery);
if(!$userCheck){
echo "Invalid Student ID";
return false;
}
?>
studentform.js
function validate() {
var studentid = document.getElementById("studentid").value;
var name = document.getElementById("name").value;
var email = document.getElementById("email").value;
if (nameEmpty(name)) {
if (studentidEmpty(studentid)) {
if (emailEmpty(email)) {
if (digitCheck(studentid)) {
if (checkEmail(email)) {
return verify(name, studentid);
}
}
}
}
}
return false;
}
function studentidEmpty(studentid) {
if (studentid == "") {
alert("Please provide your student id!");
document.getElementById("studentid").focus();
return false;
} else {
return true;
}
}
function nameEmpty(name) {
if (name == "") {
alert("Please provide your name!");
document.getElementById("name").focus();
return false;
} else {
return true;
}
}
function emailEmpty(email) {
if (email == "") {
alert("Please provide your email!");
document.getElementById("email").focus();
return false;
} else {
return true;
}
}
function digitCheck(studentid) {
var ok = studentid.search(".{8,}");
if (ok != 0) {
alert("Please provide ID with 8 digits.");
return false;
} else {
return true;
}
}
function checkEmail(email) {
var filter = /^([a-zA-Z0-9_\.\-])+\@(([a-zA-Z0-9\-])+\.)+([a-zA-Z0-9]{2,4})+$/;
if (!filter.test(email)) {
alert('Please provide a valid email address');
email.focus;
return false;
} else {
return true;
}
}
Aucun commentaire:
Enregistrer un commentaire