this is just a simple form
department log in
a page displays employees
on this page you may add edit delete employee
but the problem is that my add/edit/delete all option are running at same time even after passing correct variables
please help
homedisp.php
index.php
department log in
a page displays employees
on this page you may add edit delete employee
but the problem is that my add/edit/delete all option are running at same time even after passing correct variables
please help
homedisp.php
Code:
<HTML>
<HEAD>
<TITLE="cccc SALARY">
<?php
SESSION_START();
include ("conn.php");
include ("HEADER.php");
//exit;
IF (ISSET($_SESSION['deptno']))
{
//$deptno="";$RS="";
$deptno=$_SESSION['deptno'];
//ECHO $deptno;
//EXIT;
$qi="SELECT * FROM PAYMST WHERE DEPTno=$deptno";
$RESULT=mysqli_query($conn,$qi);
//$CONN->CLOSE();
echo "<BODY>";
echo "<TABLE BORDER='1'>";
echo "<TH>cccc SALARY INFORMATION UPDATE</TH>";
WHILE($RS=MYSQLI_FETCH_ARRAY($RESULT))
{
?>
<TR><TD><?PHP ECHO $RS['ECODE'] ?></TD><TD><?PHP ECHO $RS['NAME'] ?></TD><TD><A HREF='INDEX.PHP?STRACTION=ADD'>ADD</A></TD>
<TD><A HREF="INDEX.PHP?STRACTION=EDIT & ECODE=<?PHP ECHO $RS['ECODE'] ?>">EDIT</A></TD>
<TD><A HREF="INDEX.PHP?STRACTION=DELETE & ECODE=<?PHP ECHO $RS['ECODE'] ?>">DELETE</A></TD></TR>
<?PHP
}
}
ELSE
{
ECHO "<META HTTP-EQUIV='REFRESH' CONTENT='0 URL=SALLOGIN.PHP'>";
}
?>
</TABLE>
</BODY>
</TITLE>
</HEAD>
</HTML>
Code:
<HTML>
<HEAD>
<TITLE="cccc SALARY">
<?php
SESSION_START();
include ("conn.php");
include ("HEADER.php");
//$STRACTION="";
$ECODE=$NAME="";
//exit;
IF (ISSET($_SESSION["deptno"]))
{
$DEPTNO=$_SESSION["deptno"];
IF(ISSET($_GET["STRACTION"]))
{
//ECHO "hhhh";
//EXIT;
$STRACTION=$_GET["STRACTION"];
ECHO $STRACTION;
// EXIT;
}
IF($_SERVER["REQUEST_METHOD"]="POST" AND ISSET($_POST["SUBMIT"]))
{
FUNCTION TESTINPUT($DATA)
{
$DATA=TRIM($DATA);
$DATA=STRIPSLASHES($DATA);
$DATA=HTMLSPECIALCHARS($DATA);
RETURN $DATA;
}
$ECODE=TESTINPUT($_POST["TXTECODE"]);
$NAME=TESTINPUT($_POST["TXTNAME"]);
IF ($STRACTION="ADD")
{
$qi="INSERT INTO PAYMST (ECODE,NAME,DEPTNO) VALUES ('$ECODE','$NAME',$DEPTNO)";
IF($result=mysqli_query($conn,$qi))
{
ECHO "<br/> VALUE INSERTED SUCCESSFULLY";
}
}
IF ($STRACTION="EDIT")
{
$qi="UPDATE PAYMST SET NAME='$NAME' WHERE ECODE='$ECODE' ";
IF(mysqli_query($conn,$qi))
{
ECHO "<br/> VALUE UPDATED SUCCESSFULLY";
}
}
IF ($STRACTION="DELETE")
{
$qi="DELETE FROM PAYMST WHERE ECODE='$ECODE' ";
IF(mysqli_query($conn,$qi))
{
ECHO "<br/> VALUE DELETED SUCCESSFULLY";
}
}
//$CONN->CLOSE();
}
IF ($STRACTION="EDIT")
{
if(isset($_GET['ECODE']))
{
echo "hhhh";
//exit;
$ECODE=$_GET['ECODE'];
}
$qi="SELECT * FROM PAYMST WHERE ECODE='$ECODE'";
IF($RESULT=mysqli_query($conn,$qi))
{
WHILE($RS=MYSQLI_FETCH_ARRAY($RESULT))
{
$ECODE=$RS['ECODE'];
$NAME=$RS['NAME'];
}
}
}
else
{
$ECODE="";
$NAME="";
}
?>
<BODY>
<form name="a" method="post" action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>">
<TABLE>
<TH>cccc SALARY INFORMATION UPDATE</TH>
<TR><TD>ECODE</TD><TD><INPUT TYPE="TEXT" NAME="TXTECODE" VALUE="<?PHP ECHO $ECODE; ?>"></TD></TR>
<TR><TD>NAME</TD><TD><INPUT TYPE="TEXT" NAME="TXTNAME" VALUE="<?PHP ECHO $NAME; ?>"></TD></TR>
<TR><TD><INPUT TYPE="SUBMIT" NAME="SUBMIT" VALUE="SUBMIT"></TD></TR>
</form>
<?PHP
}
ELSE
{
ECHO "<META HTTP-EQUIV='REFRESH' CONTENT='0 URL=SALLOGIN.PHP'>";
}
?>
</TABLE>
</BODY>
</TITLE>
</HEAD>
</HTML>
Comment