0

I have a simple query that I'm using to insert a record based on a form submission, but it's not writing the record to the database. It's also not throwing an error. I used a var_dump and verified that the variables are posting correctly, so I think the issue is in the query syntax, but I've checked that too.

Any help or guidance is greatly appreciated. Here is the code:

if (isset($submit)){

$user_id = $_SESSION['user_id'];
$anthem1 = $_POST['anthem1'];
$cointoss2 = $_POST['cointoss2'];

$query = "INSERT INTO mypicks (";
$query .= "  user_id, anthem1, cointoss2";
$query .= ") VALUES (";
$query .= "  '{$user_id}', '{$anthem1}', '{$cointoss2}'";
$query .= ")";
$result = mysqli_query($connection, $query);

}
Improve this question
5
  • The query syntax is correct. Have you checked $submit value? (var_dump( $submit ); ) Commented Mar 24, 2016 at 1:25
  • Of course there is no error, since you do not do any sql error handling by checking the return value from mysqli_query(). I hope you do connect to a mysql server in your code. Commented Mar 24, 2016 at 1:26
  • Add an or die(mysql_error($connection)) to the end of mysqli_query($connection, $query) to get your error message, ie. $result = mysqli_query($connection, $query) or die(mysql_error($connection)); Commented Mar 24, 2016 at 1:27
  • 1
    Don't use variable interpolation, use a prepared statement. Your code is subject to SQL-injection because of this. Commented Mar 24, 2016 at 2:08
  • echo $query and run it in the sql console and look for errors there trusting the connection and db select is ok. Commented Mar 24, 2016 at 3:48

1 Answer 1

Reset to default
1

You'll want to add some checks into your code.

First you'll want to make sure that your database connection is happening:

$connection = new mysqli('localhost', 'username', 'password', 'database');

if($connection->connect_errno > 0){
    die('Unable to connect to database [' . $connection->connect_error . ']');
}

Next thing, you'll want to make sure that your $submit variable is set, so your code block is actually firing.

If it is, make sure that your query is working:

$user_id = $_SESSION['user_id'];
$anthem1 = $_POST['anthem1'];
$cointoss2 = $_POST['cointoss2'];

$stmt = $connection->prepare("INSERT INTO mypicks ( user_id, anthem1, cointoss2 ) VALUES (?, ?, ?)");
$stmt->bind_param("sss", $user_id, $anthem1, $cointoss2);
$stmt->execute();

if(!$result = $stmt->get_result()){
    die('There was an error running the query [' . $connection->error . ']');
}

Also don't forget to clean up after wards

$stmt->close();
$connection->close();
Improve this answer
Sign up to request clarification or add additional context in comments.

2 Comments

Down voted because you could have used prepared statements in your answer.
Thanks. The $submit variable wasn't being set properly. Thanks for the help everyone.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.