Łączenie z bazą danych:
`<?php
$sname= “localhost”;
$uname= “root”;
$password = "";
$db_name = “my_car_users”;
$conn = mysqli_connect($sname, $uname, $password, $db_name);
if (!$conn) {
echo “Connection failed!”;
}`
Rejestracja produktu - front:
`
<?php
session_start();
if (isset($SESSION[‘user_id’]) && isset($SESSION[‘user_name’])) {
?>
<!DOCTYPE html>
<html>
<head>
<title></title>
<link rel="stylesheet" type="text/css" href="register.css">
</head>
<body>
<nav>
<ul class=navigation-bar>
<li class="index-button"><a href="../home.html">Strona główna</a></li>
</ul>
</nav>
<div class="wrapper">
<div class="header">
<h2>Dane samochodu</h2>
</div>
<form method="post" action="./car-register-back.php" name="carRegisterForm" novalidate>
<?php if (isset($_GET['error'])) { ?>
<p class="error"><?php echo $_GET['error']; ?></p>
<?php } ?>
<?php if (isset($_GET['success'])) { ?>
<p class="success"><?php echo $_GET['success']; ?></p>
<?php } ?>
<div class="input-group" id="brand_div">
<label>Marka</label>
<?php if (isset($_GET['brand'])) { ?>
<input type="text" name='brand' placeholder="Marka" value="<?= $_GET['brand']; ?>">
<?php } else { ?>
<input type="text" name='brand' placeholder="Marka"><br>
<?php } ?>
<div id="brand_error"></div>
</div>
<div class="input-group" id="model_div">
<label>Model</label>
<?php if (isset($_GET['model'])) { ?>
<input type="text" name="model" placeholder="Model" value="<?= $_GET['model']; ?>">
<?php } else { ?>
<input type="text" name="model" placeholder="Model"><br>
<?php } ?>
<div id="model_error"></div>
</div>
<div class="input-group" id="production_year_div">
<label>Rocznik</label>
<?php if (isset($_GET['production_year'])) { ?>
<input type="production_year" name="production_year" placeholder="Rocznik" value="<?= $_GET['production_year']; ?>">
<?php } else { ?>
<input type="production_year" name="production_year" placeholder="Rocznik"><br>
<?php } ?>
<div id="production_year_error"></div>
</div>
<div class="input-group" id="vin_number_div">
<label>Numer VIN</label>
<?php if (isset($_GET['vin_number'])) { ?>
<input type="text" name="vin_number" placeholder="Numer VIN" value="<?= $_GET['vin_number']; ?>">
<?php } else { ?>
<input type="text" name="vin_number" placeholder="Numer VIN"><br>
<?php } ?>
<div id="vin_number_error"></div>
</div>
<div class="input-group" id="engine_div">
<label>Typ silnika</label>
<?php if (isset($_GET['engine'])) { ?>
<input type="text" name="engine" placeholder="Typ silnika" value="<?= $_GET['engine']; ?>">
<?php } else { ?>
<input type="text" name="engine" placeholder="Typ silnika"><br>
<?php } ?>
<div id="engine_error"></div>
</div>
<div class="input-group" id="capacity_div">
<label>Pojemność silnika</label>
<?php if (isset($_GET['capacity'])) { ?>
<input type="text" name="capacity" placeholder="Pojemność " value="<?= $_GET['capacity']; ?>">
<?php } else { ?>
<input type="text" name="capacity" placeholder="Pojemność"><br>
<?php } ?>
<div id="capacity_error"></div>
</div>
<div class="input-group" id="fuel_type_div">
<label>Rodzaj paliwa</label>
<?php if (isset($_GET['fuel_type'])) { ?>
<input type="text" name="fuel_type" placeholder="Rodzaj Paliwa " value="<?= $_GET['fuel_type']; ?>">
<?php } else { ?>
<input type="text" name="fuel_type" placeholder="Rodzaj Paliwa"><br>
<?php } ?>
<div id="fuel_type_error"></div>
</div>
<div class="input-group" id="oil_type_div">
<label>Rodzaj oleju</label>
<?php if (isset($_GET['oil_type'])) { ?>
<input type="text" name="oil_type" placeholder="Rodzaj oleju " value="<?= $_GET['oil_type']; ?>">
<?php } else { ?>
<input type="text" name="oil_type" placeholder="Rodzaj oleju"><br>
<?php } ?>
<div id="oil_type_error"></div>
</div>
<div class="input-group">
<button type="submit" class="btn">Dodaj samochód</button>
</div>
</form>
</div>
</body>
</html>
<?php
} else {
header(“Location: ../login/login.php”);
exit();
}
?>
`
back:
'
<?php
session_start();
include “../db_conn.php”;
if (
isset($POST[‘brand’]) && isset($POST[‘model’])
&& isset($POST[‘production_year’]) && isset($POST[‘vin_number’])
&& isset($POST[‘engine’]) && isset($POST[‘capacity’]) && isset($POST[‘fuel_type’])
&& isset($POST[‘oil_type’])
) {
function validate($data)
{
$data = trim($data);
$data = stripslashes($data);
$data = htmlspecialchars($data);
return $data;
}
$brand = validate($_POST['brand']);
$model = validate($_POST['model']);
$production_year = validate($_POST['production_year']);
$vin_number = validate($_POST['vin_number']);
$engine = validate($_POST['engine']);
$capacity = validate($_POST['capacity']);
$fuel_type = validate($_POST['fuel_type']);
$oil_type = validate($_POST['oil_type']);
$car_data = 'brand=' . $brand . '&model=' . $model . '&production_year=' . $production_year;
$sql = "SELECT * FROM cars WHERE vin_number='$vin_number' ";
$result = mysqli_query($conn, $sql);
if (mysqli_num_rows($result) > 0) {
header("Location: car-register.php?error=Ten samochód już istnieje&$car_data");
exit();
} else {
$sql2 = "INSERT INTO
cars (
brand,
model,
production_year,
vin_number,
engine,
capacity,
fuel_type,
oil_type
)
VALUES
(
'$brand',
'$model',
'$production_year',
'$vin_number',
'$engine',
'$capacity',
'$fuel_type',
'$oil_type')";
$result2 = mysqli_query($conn, $sql2);
if ($result2) {
header("Location: car-register.php?success=Dodano samochód");
exit();
} else {
header("Location: car-register.php?error=Coś nie wyszło&$car_data");
exit();
}
}
} else {
header(“Location: car-register.php”);
exit();
}
'