13 replies to this topic

[Demonslay]

Well, you can either simply construct a second query to insert whatever into the second table, or you can look into using database functions. I've read some things in the MySQL manual about using functions or procedures that automatically execute when the table is acted upon; for example, I remember a comment on making it so when a table has data INSERT'ed to it, it automatically updates another table with stuff like time and the row ID.

[stingerblue]

It should be possible.

$cat = $_POST['act_cat'];
$action = $_POST['action'];
$datee = $_POST['datee'];

$first = mysql_query("INSERT INTO `first table` (`act_cat`,`action`,`datee`) VALUES ('$cat','$action','$datee'")or die(mysql_error());

$second = mysql_query("INSERT INTO `second table` (`act_cat`,`action`,`datee`) VALUES ('$cat','$action','$datee'")or die(mysql_error());

if(($first)&&($second))
  {

echo("worked");

} else {

echo("error");

}

Edited by stingerblue, 30 August 2007 - 10:07 PM.

[stingerblue]

Creative Insanity, on Aug 31 2007, 09:39 AM, said:

Hey thanks Stinger .. great help. I will place then in my script files. Nice!

You're welcome .

[Demonslay]

INSERT INTO `music` (`name`,`file`,`img`,`genre`,`txt`,`cat`) VALUES ('$tname','$tfile','$img','$genre','$txt','$cat',

Notice the comma and absence of the closing parenthesis for the VALUES statement.

Also note that when an error is returned by MySQL, it is referring to the lines of the SQL statement; so in this case, anywhere is pretty much line 1 since you have the full query on one line in every query. MySQL doesn't know its interacting with PHP, and PHP is simply returning the error given from MySQL, which is the error in the command MySQL received from PHP.

[stingerblue]

Creative Insanity, on Sep 1 2007, 03:31 AM, said:

Still didn't work.. bugger.

What was the error? Plus the if(($first)&&($second)) is missed out, that bit is to check that both inserts were successful.

May I ask what this bit of code is for, as it only looks like a header redirect to me:

$insertGoTo = "track_upload.php";
  if (isset($_SERVER['QUERY_STRING'])) {
	$insertGoTo .= (strpos($insertGoTo, '?')) ? "&" : "?";
	$insertGoTo .= $_SERVER['QUERY_STRING'];
  }
  header(sprintf("Location: %s", $insertGoTo));

*Edit: Some of the inserts have wrong names, like $act_cat: $acat = $_POST['act_cat']; the name used to insert it into the database would be $acat.

---

None of the inserts are secure, use htmlspecialchars() on them

$genre = htmlspecialchars($_POST['genre']);

if ((isset($_POST["MM_insert"])) && ($_POST["MM_insert"] == "add_track")) {
$acat = $_POST['act_cat'];
$action = $_POST['action'];
$datee = $_POST['datee'];
$tname = $_POST['name'];
$tfile = $_POST['file'];
$img = $_POST['img'];
$genre = $_POST['genre'];
$txt = $_POST['txt'];
$cat = $_POST['cat'];


$first = mysql_query("INSERT INTO music (tname, tfile, img, genre, txt, cat) VALUES ('$name', '$file', '$img', $genre, '$txt', '$cat')") or die(mysql_error()); 
$first = mysql_query("INSERT INTO actions (acat, action, datee) VALUES ('$acat', '$action', $datee)") or die(mysql_error());

if(($first)&&($second))
{
$insertGoTo = "track_upload.php";
  if (isset($_SERVER['QUERY_STRING'])) {
	$insertGoTo .= (strpos($insertGoTo, '?')) ? "&" : "?";
	$insertGoTo .= $_SERVER['QUERY_STRING'];
  }
  header(sprintf("Location: %s", $insertGoTo));

}

Edited by stingerblue, 01 September 2007 - 10:56 AM.

[Demonslay]

You still aren't closing the parenthesis of either VALUES statements.

$first = mysql_query("INSERT INTO `music` (`name`,`file`,`img`,`genre`,`txt`,`cat`) VALUES ('$tname','$tfile','$img','$genre','$txt','$cat')")or die(mysql_error());

$second = mysql_query("INSERT INTO `actions` (`act_cat`,`action`,`datee`) VALUES ('$acat','$action','$datee')")or die(mysql_error());