Programming Help

Web Development

What's Here?

Members: 118,862
Replies: 435,617
Topics: 67,341
Snippets: 2,415
Tutorials: 641
Total Online: 1,698
Members: 60
Guests: 1,638

Who's Online?

Dream.In.Code > Programming Help > PHP

Welcome to Dream.In.Code
	Getting PHP Help is Easy! Join 118,862 PHP Programmers for FREE! Ask your question and get quick answers from experts. There are 1,698 online right now! We've got more than 500 tutorials and 2,000 snippets. Join and find out why Dream.In.Code is the #1 programming help community on the internet! Registration is fast and FREE... Join Now! Chat LIVE With a PHP Expert Register to Make This Box Go Away!

Allow users to edit their information

Reply to this topic

Start new topic

Allow users to edit their information, Directly from the Database?

cbgfilms	15 Jul, 2008 - 02:48 PM Post #1
New D.I.C Head Joined: 14 Jul, 2008 Posts: 22 My Contributions	Hii. I'm looking for some sort of tutorial that will instruct me on how to do the following, for example this is what the users of my website would beable to do: 1. They Login, using the login system I've already created. 2. They click the edit my account button. 3. There are fields on the page with their password, email, username, profile etc. 4. They can add bits in, and change their details. 5. They click submit, the information is updated on the database. Please note I already have a database that I'll be storing the users. If anyone could point me in the right direction that would be great!
	This Post Was Helpful! ^New!

Register for Free to Make This Ad Go Away!

Dancia	15 Jul, 2008 - 04:19 PM Post #2
D.I.C Head Joined: 15 Jun, 2008 Posts: 57 Thanked 1 times My Contributions	5. They click submit, the information is <b>updated</b> on the database. If you using mysql its easy. You already sayd that you need to UPDATE. If you are familiar with mysql read: http://www.w3schools.com/php/php_mysql_update.asp else for beginning: http://www.w3schools.com/php/php_mysql_intro.asp
	This Post Was Helpful! ^New!

akozlik	15 Jul, 2008 - 04:38 PM Post #3
D.I.C Addict Joined: 25 Feb, 2008 Posts: 544 Thanked 20 times Dream Kudos: 750 My Contributions	QUOTE(cbgfilms @ 15 Jul, 2008 - 05:48 PM) Hii. I'm looking for some sort of tutorial that will instruct me on how to do the following, for example this is what the users of my website would beable to do: 1. They Login, using the login system I've already created. 2. They click the edit my account button. 3. There are fields on the page with their password, email, username, profile etc. 4. They can add bits in, and change their details. 5. They click submit, the information is updated on the database. Please note I already have a database that I'll be storing the users. If anyone could point me in the right direction that would be great! We have a policy on the board that asks that you give us source code you've written so we could help you from there. Nobody will write the code for you, and as an act of good faith we ask that you post where you're at. How do you think you would solve the problem? We can help you from there. I will say that what you want to do is use a series of select statements to pull the details out of the database and display them to the user. You will then use INSERT or UPDATE statements to insert new data into the database, or update existing data. That should get you started in researching what you need to do.
	This Post Was Helpful! ^New!

cbgfilms	15 Jul, 2008 - 11:31 PM Post #4
New D.I.C Head Joined: 14 Jul, 2008 Posts: 22 My Contributions	QUOTE(Dancia @ 15 Jul, 2008 - 04:19 PM) 5. They click submit, the information is <b>updated</b> on the database. If you using mysql its easy. You already sayd that you need to UPDATE. If you are familiar with mysql read: http://www.w3schools.com/php/php_mysql_update.asp else for beginning: http://www.w3schools.com/php/php_mysql_intro.asp Hii Dancia, this looks pretty good, but say someone was logged in how could I make their unique data be edited, instead of having a billion edit pages for eah users. Is there a way that it'll detect the session and edit that information. Hope you understand what I mean, thanks <b>EDIT:</b> Would this be it? http://www.w3schools.com/php/php_mysql_insert.asp This post has been edited by cbgfilms: 15 Jul, 2008 - 11:40 PM
	This Post Was Helpful! ^New!

Dancia	16 Jul, 2008 - 09:29 AM Post #5
D.I.C Head Joined: 15 Jun, 2008 Posts: 57 Thanked 1 times My Contributions	Erm Once your member is registered you must somehow remember users data. Instead of using a file (because really hards to handle) you can use mySQL. For example person A is registered with password B. You can INSERT him to database. But wait, where? So you need a table in your mysql database. You can create something like: members and create some fields. member_name, member_password. Ok you can store your details into it. Ok now we table with users data. Now we want to make user profile. We can easily add more field to member. For more advanced system we would need to put something unique so we can get data which belongs to person A from other tables. For this we create one more field (it will be PRIMARY (important one)) which would have unique ID. It's easy because mysql has auto_increment option so that field will increment automaticaly. Then person A is registered he will get id 1. Another person 2 and etc. (i forgot to mention that that field can be called id_member) So we now got. id_member, member_name, member_password.......... 1, A, B How to detect if the right one is logged in? So then member fills his name and password, you would need to check if there's ANY members which have that name and password. If you find someone then data is correct and you can use his name and add it to session. ($_SESSION) So now he's registered and you have a member. I will share my php script with you. php function login2() { $username = $_POST['username']; $password = $_POST['password']; if($username == mysql_real_escape_string($username)) { $password = sha1(md5(sha1($username.$password.'5KSK5RIWXJT3OVFN14WQSHXLWZDKR58ZP7GTY5V5'))); $result = mysql_query("SELECT id_member FROM members where is_activated='1' AND real_name='$username' AND password='$password'"); if(mysql_num_rows($result) !== 0) { $row = mysql_fetch_object($result); $_SESSION['id_member'] = $row->id_member; $_SESSION['password_hash'] = $password; if($_POST['remember_me']) { $time = 60602412 + time(); $id = $row->id_member; setcookie("_id", $id, strtotime("+365 days")); setcookie("_hash", $password, strtotime("+365 days")); } } } loadLanguage('login'); loadTemplate('login'); } This script is only example and won't work properly because you will be missing functions and mysql table. So I get from form username and password. Escape bad characters. (google SQL injection for more information why). Encode my password with md5 and sha1 functions so I can't see password directly. From password B it will become something like 'fdjeswifrewif546f65e7g8'. Mysql_query - i ask for something from table then check if someone found if(mysql_num_rows($result) !== 0) if not 0 rows of data found then this one exists, we can set session. If you don't understand something then go to php.net and in search box type the function or look at w3schools. Read this: http://www.w3schools.com/php/php_forms.asp So now you will know what $_POST or $_GET does. To connect to mysql http://www.w3schools.com/php/php_mysql_connect.asp This post has been edited by Dancia*: 16 Jul, 2008 - 09:37 AM
	This Post Was Helpful! ^New!

cbgfilms	17 Jul, 2008 - 07:56 AM Post #6
New D.I.C Head Joined: 14 Jul, 2008 Posts: 22 My Contributions	QUOTE(Dancia @ 16 Jul, 2008 - 09:29 AM) Erm Once your member is registered you must somehow remember users data. Instead of using a file (because really hards to handle) you can use mySQL. For example person A is registered with password B. You can INSERT him to database. But wait, where? So you need a table in your mysql database. You can create something like: members and create some fields. member_name, member_password. Ok you can store your details into it. Ok now we table with users data. Now we want to make user profile. We can easily add more field to member. For more advanced system we would need to put something unique so we can get data which belongs to person A from other tables. For this we create one more field (it will be PRIMARY (important one)) which would have unique ID. It's easy because mysql has auto_increment option so that field will increment automaticaly. Then person A is registered he will get id 1. Another person 2 and etc. (i forgot to mention that that field can be called id_member) So we now got. id_member, member_name, member_password.......... 1, A, B How to detect if the right one is logged in? So then member fills his name and password, you would need to check if there's ANY members which have that name and password. If you find someone then data is correct and you can use his name and add it to session. ($_SESSION) So now he's registered and you have a member. I will share my php script with you. php function login2() { $username = $_POST['username']; $password = $_POST['password']; if($username == mysql_real_escape_string($username)) { $password = sha1(md5(sha1($username.$password.'5KSK5RIWXJT3OVFN14WQSHXLWZDKR58ZP7GTY5V5'))); $result = mysql_query("SELECT id_member FROM members where is_activated='1' AND real_name='$username' AND password='$password'"); if(mysql_num_rows($result) !== 0) { $row = mysql_fetch_object($result); $_SESSION['id_member'] = $row->id_member; $_SESSION['password_hash'] = $password; if($_POST['remember_me']) { $time = 606024*12 + time(); $id = $row->id_member; setcookie("_id", $id, strtotime("+365 days")); setcookie("_hash", $password, strtotime("+365 days")); } } } loadLanguage('login'); loadTemplate('login'); } This script is only example and won't work properly because you will be missing functions and mysql table. So I get from form username and password. Escape bad characters. (google SQL injection for more information why). Encode my password with md5 and sha1 functions so I can't see password directly. From password B it will become something like 'fdjeswifrewif546f65e7g8'. Mysql_query - i ask for something from table then check if someone found if(mysql_num_rows($result) !== 0) if not 0 rows of data found then this one exists, we can set session. If you don't understand something then go to php.net and in search box type the function or look at w3schools. Read this: http://www.w3schools.com/php/php_forms.asp So now you will know what $_POST or $_GET does. To connect to mysql http://www.w3schools.com/php/php_mysql_connect.asp Hi thanks, could you read my post here for more updated info, and get back to me, thanks. http://www.weberforums.com/sutra33895.html#33895
	This Post Was Helpful! ^New!

Dancia	17 Jul, 2008 - 08:55 AM Post #7
D.I.C Head Joined: 15 Jun, 2008 Posts: 57 Thanked 1 times My Contributions	Ok first you need get data which is currently set. You have set name="" values as these: <input name="username" type="text" size="35"> <input name="password" type="password" size="35"> <input name="email" type="text" size="35"> <textarea name="profile" cols="27" rows="8"></textarea> And you method is: <form method="POST" action="updatedetails.php"> POST So will will retrieve the data: php $username = mysql_real_escape_string($_POST['username']); $password = mysql_real_escape_string($_POST['password']); $email = mysql_real_escape_string($_POST['email']); $profile = mysql_real_escape_string($_POST['[profile']); mysql_real_escape_string - i escape bad stuff that user could write into queries. Additionally you would need to hash the password put its up to you. NOTE: It donesn't delete those characters, only escape. If you need to delete them, from username, for example then look at php.net for eregi, preg_match and preg_replace functions. Now we need to find the member in our database and update it. The mysql_query will be something like UPDATE table name SET new values WHERE erm put here something to identify the user If you have a $_SESSION set in your database with username or username ID (if you have it) (erm you need to have it because if someone want's to update his info, he has to be logged in and you need to identify he) So for every part the mysql_query will be something like: php mysql_query('UPDATE members SET username="'.$username.'" WHERE username="''.$_SESSION['username']."'); I suggest you searching Dream.In.Code for php tutorials. Exaple: http://www.dreamincode.net/forums/showforum47.htm This post has been edited by Dancia: 17 Jul, 2008 - 09:09 AM
	This Post Was Helpful! ^New!

cbgfilms	17 Jul, 2008 - 11:18 AM Post #8
New D.I.C Head Joined: 14 Jul, 2008 Posts: 22 My Contributions	QUOTE(Dancia @ 17 Jul, 2008 - 08:55 AM) Ok first you need get data which is currently set. You have set name="" values as these: <input name="username" type="text" size="35"> <input name="password" type="password" size="35"> <input name="email" type="text" size="35"> <textarea name="profile" cols="27" rows="8"></textarea> And you method is: <form method="POST" action="updatedetails.php"> POST So will will retrieve the data: php $username = mysql_real_escape_string($_POST['username']); $password = mysql_real_escape_string($_POST['password']); $email = mysql_real_escape_string($_POST['email']); $profile = mysql_real_escape_string($_POST['[profile']); mysql_real_escape_string - i escape bad stuff that user could write into queries. Additionally you would need to hash the password put its up to you. NOTE: It donesn't delete those characters, only escape. If you need to delete them, from username, for example then look at php.net for eregi, preg_match and preg_replace functions. Now we need to find the member in our database and update it. The mysql_query will be something like UPDATE table name SET new values WHERE erm put here something to identify the user If you have a $_SESSION set in your database with username or username ID (if you have it) (erm you need to have it because if someone want's to update his info, he has to be logged in and you need to identify he) So for every part the mysql_query will be something like: php mysql_query('UPDATE members SET username="'.$username.'" WHERE username="''.$_SESSION['username']."'); I suggest you searching Dream.In.Code for php tutorials. Exaple: http://www.dreamincode.net/forums/showforum47.htm Hi i've just added you on MSN, could you help me there? Thanks, Charlie.
	This Post Was Helpful! ^New!

Fast Reply

Reply to this topic

Start new topic

Display Mode: Standard · Switch to: Linear+ · Switch to: Outline

Track this topic · Email this topic · Print this topic · Subscribe to this forum

Time is now: 10/13/08 01:50AM

Invision Power Board v2.1.7 © 2008 IPS, Inc.

Licensed to: MediaGroup1

Advertising | Terms of Use | Privacy Policy | About Us | Site Map

Forum Index: Programming Help | C and C++ | Visual Basic | Java | VB.NET | C# | ASP.NET | PHP | ColdFusion | Perl and Python | Ruby | Databases | Other Languages | Game Programming | Software Development | Computer Science | Industry News | Programming Tutorials | C++ Tutorials | Visual Basic Tutorials | Java Tutorials | VB.NET Tutorials | C# Tutorials | PHP Tutorials | Linux Tutorials | ColdFusion Tutorials | Windows Tutorials | HTML/JavaScript Tutorials | CSS Tutorials | Flash Tutorials | Web Promotion Tutorials | Photoshop Tutorials | Software Development Tutorials | Database Tutorials | Other Language Tutorials |

Copyright 2001-2008 MediaGroup1 LLC, All Rights Reserved
A MediaGroup1 LLC Production - Version 6.0.2.1.36

Search^Updated!w00t

Over 509,000 Pages! Advanced Forum Search

Live PHP Help!

PHP Tutorials

Reference Sheets

PHP Snippets

Bye Bye Ads

Free DIC T-Shirt

T-Shirt Example

Related Sites

Monthly Drawing

Partners

Top Contributors

Top 10 Kudos This Month