Home » Programming » php
Category Archives: php
Polymorphism
Polymorphism is a Greek word. Polymorphism is created by two different words poly (means many) and morph (means forms).
It is another functionality of OOPS. In programming language two types of Polymorphism are there.
- Function overriding (Run time Polymorphism)
- Function Overloading(Compile time Polymorphism)- PHP function overloading is not supported yet.
Function Overriding:
Overriding is happened only in child class.
If parent class declares a function and child class wants to override parent class function then function overriding means run time polymorphism happened.
Example
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 |
<?php class parentclass { function name() { return 'Parent'; } } class childclass extends parentclass { function name() { return 'Child'; } } $obj = new childclass(); echo $obj->name(); echo '<hr>'; $arrobj = array(); $arrobj[0] = new parentclass; $arrobj[1] = new childclass; foreach($arrobj as $key=>$val){ echo $val->name(); echo "<br> "; } //It called child function instead of parent function ?> |
PHP Abstract Class
When a class
Abstract class is only use for inheriting another class. Main purpose of creating abstract class is to protected or restricted from direct object creation.
Example:
|
1 2 3 4 5 6 7 8 9 10 11 |
<?php abstract class Harishchandra { } class Gentleman extends Harishchandra { } $gandhi = new Harishchandra; ?> |
Output:
|
1 |
Fatal error: Cannot instantiate abstract class Harishchandra |
PHP Final Class
In PHP 5 a new mechanism added in OOPS which is Final Keyword.
If a class declares by final keyword then the class never extended. Child class can’t be created of any Final class.
It
Only class and function may
Example
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 |
<?php final class Brahmachari { function sayHello() { echo "Hello"; } } class Sons extends Brahmachari { } $obj = new Brahmachari; $obj->sayHello(); ?> |
Output:
|
1 |
Fatal error: Class Sons may not inherit from final class (Brahmachari) |
PHP Inheritance
Inheritance is a wonderful feature of OOPS. It is solved the duplication of code.
Code duplication happened when user
In Inheritance, there have
Child class has the power to access all or a few methods and variables of the parent class. Child class has also own member variables or functions.
Child class has the power to access all or few methods and variables of the
How to extend Parent or Base Class
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 |
<?php class Animal { public $name; public function Greet($name) { $this->name = $name; return "My name is " .$this->name; } } class Dog extends Animal { } $dog = new Dog; echo $dog->Greet(“Bob”); ?> |
Output
|
1 |
My name is Bob |
Parent Class: A class which is inherited from another class that is called parent or base or superclass.
Child Class: A class which is inherits from another class that is called child or sub or derived class.
In this above
Dog class can access Animal class member variable and function for Inheritance. Extends keyword helps to create
Whenever wants to inherit parent class then need to use extends keyword to create child class.
Child class cannot access all properties of parent class. In PHP there are 3 types of Access Specifiers.
Public: By
All public members of parent class can, by child class and also out of the uses. Public member
Private: Private member defines by Private Keyword. Only Parent class can be accessed Private property.
Private property cannot be access in child class and out of the class.
Protected: Protected Member defines by Protected Keyword. Protected Members are only access into Parent Class and its child class.
Protected property cannot access out of the class.
Example
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 |
<?php class SimpleClass { public $public = 'Public'; protected $protected = 'Protected'; private $private = 'Private'; function showme() { echo $this->public; echo $this->protected; echo $this->private; } } $obj = new SimpleClass(); echo $obj->public; // Works echo "<br>"; echo $obj->protected; // Fatal Error: Cannot access protected property SimpleClass::$protected echo $obj->private; // Fatal Error: Cannot access private property SimpleClass::$private $obj->showme(); // Shows Public, Protected and Private echo "<br>"; class SimpleClass2 extends SimpleClass { //can be redeclare the public and protected properties, but not private public $public = 'Public2'; protected $protected = 'Protected2'; function describe() { echo $this->public; echo $this->protected; echo $this->private; } } $obj2 = new SimpleClass2(); echo $obj2->public; // Works echo "<br>"; echo $obj2->protected; // Fatal Error: Cannot access protected property SimpleClass2::$protected echo $obj2->private; // Undefined $obj2->describe(); // Shows Public2, Protected2, Undefined echo "<br>"; ?> |
Five Types of Inheritance in Programming Language:
- Single Inheritance
- Multiple Inheritance
- Multilevel Inheritance
- Hierarchical Inheritance
- Hybrid Inheritance
But in PHP only Single and Multi-level inheritance supported.
- Single Inheritance: There only one base class and one child class. Child class only derived from one base class.
Example:
|
1 2 3 4 5 6 7 8 |
<?php class BaseClassName{ //do logic } class childClassName extends BaseClassName { //do logic } ?> |
- Multi-Level Inheritance: There one base class derived one child class and that child class derived another child class and so on.
Example
|
1 2 3 4 5 6 7 8 9 10 11 |
<?php class BaseClassName { //do logic } class child1ClassName extends BaseClassName { //do logic } class child2ClassName extends child1ClassName { //do logic } ?> |
PHP Constructor and Destructor
If the user wants to access any member function of a class then he or she must create the
The c
No need to call it by an object. Simply constructor is a function which called when
Constructor declares by two ways.
- Define function name same as class name. (This is old way to declare constructor. It is use in PHP 5.3.3 version)
- Define function by __construct keyword.
Only one constructor creates in one class. It is used to run
Like Database Connection. The constructor
Example:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 |
<?php class Computer { var $cpu; var $ram; var $hdd; function __construct($c, $r, $h) // Constructor { $this->cpu = $c; $this->ram = $r; $this->hdd = $h; } function describe() { echo "Hello, I am a Computer. My CPU is $this->cpu GHz, with $this->ram GB RAM and $this->hdd GB Hard Disk"; } } $dell = new Computer(2.4, 4, 512); $dell->describe(); ?> |
Output:
|
1 |
Hello, I am a Computer. My CPU is 2.4GHz, with 4 GB RAM and 512 GB Hard Disk. |
Explanation
In above example $dell is an object of Computer class when its created constructor automatically called and CPU, RAM and Hard disk value passed by parameter.
Then when called describe() function its return the whole value
Destructor
Destructor also called automatically when object an of any class but it’s run when The constructor creates.
It the for free up memory. Using this after complete a task unset all variable and
Destructor defines by __destruct keyword.
Example:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 |
<?php class Animal { public $name = "No-name animal"; public function __destruct() { echo "<br>I'm dead now :("; } public function __construct($name) { echo "I'm alive!"; $this->name = $name; } } $animal = new Animal("Bob"); echo "Name of the animal: " . $animal->name; ?> |
Output
|
1 2 |
I'm alive! Name of the animal: Bob I’m dead now |
PHP Class and Objects
Class and objects is a programming template to write a program in a block.
It
A class has two member one Variables and two Functions. A class is a program structure where developer defines application logic.
Object is a way which use to access class. Create an object developer access their application logic which defines in a class anywhere in a project.
Class and Object is a very useful and easy way to create a complicated application in a simple way.
Creating Class:
|
1 2 3 4 5 6 7 8 9 |
<?php class Pen{ var $name = “Ink”; var $price = 25; function describe(){ echo “I am a pen Class”; } } ?> |
Explanation:
Create a class with “class” keyword then de
PHP is a
Between { } define whole logic or code. Variable must be declared with var keyword or public keyword and all logic operation must be defined in function.
Creating Object
|
1 2 3 4 5 6 7 8 9 10 11 |
<?php class Pen{ var $name = “Ink”; var $price = 25; function describe(){ echo “I am a pen Class”; } } $obj = new Pen; echo gettype($obj); //gettype() return the data-type of a variable ?> |
Explanation:
new keyword create object of a class. Object has authority to access the class variable and function out of the class.
In this example $obj is an object of Pen class, $obj can access $name, $price or can call the describe() function out of the class.
Object never creates within class.
Accessing Members and Functions
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 |
<?php class Fruit{ var $name = “Banana”; var $price = 200; function describe(){ echo “The bucket is full of”.$this->name.” and price of this bucket is ”.$this->price; } } $obj = new Fruit; $obj->describe(); echo “<br>”; echo $obj->name; echo “<br>”; echo $obj->price; ?> |
Output:
|
1 2 3 |
The bucket is full of Banana and price of this bucket is 200 Banana 200 |
Explain:
Accessing class member variable and function by object. “->” this is accessing symbol.
$this variable is use to access class member variable in to the class member function. $this is object pointer, with reference an instance of class.
PDO in PHP
What is PDO?
Other than procedural methods like MySQLi, PHP also provides an object oriented approach to deal with databases. This framework is widely known as PDO: PHP Data Objects.
Advantages of PDO
- PDO is applicable on 12 different databases whereas MySQLi is not, which makes PDO more flexible than typical procedural approach.
- PDO also provides an exception class for handling problems during database query execution. The exception-prone code must be written in the try block. When an exception is thrown within the try{ } block, execution stops at that line and jumps directly to the first catch(){ } block.
- PDO provides a set of methods on the PDO object for performing queries, which introduces reusability of code.
- It’s useful for developing software that may deploy in environments containing different databases available without having explicit support to each database, also for using a database connection with little or no knowledge of the database.
- mysqli doesn’t allow you to handle exception. The function die(); will just stop executing the script suddenly and then show the error to the screen to the user which is NOT desirable & allowing hackers to discover your schema.
PDO provides three error handling modes:
- PDO:
:ERRMODE_SILENT acts likemysqli where you have to check each result and then look at $db->getMessage(); to get the error details. - PDO:
:ERRMODE_WARNING throws PHP Warnings on the output screen. - PDO:
:ERRMODE_EXCEPTION throws PDOException. This is the bestmode use. It acts much like ordie (mysql_error()); when it isn’t caught, but unlikedie () the PDOException can be caught and handled if you want to do so.
Limitation of PDO
The
PDO Set Up
For installation procedure, visit: http://php.net/manual/en/pdo.installation.php
Examples
Database Connection Establishment using PDO
Here is an example using PDO:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 |
<?php $servername = "localhost "; $username = "username"; $password = "password"; try { $con = newPDO("mysql:host=$servername;databasename=DB_database", $username, $password); // provide an existing database to avoid exception $con->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); echo "Connection Created successfully!"; catch(PDOException $e) { echo "Connection failed: " . $e->getMessage(); } ?> |
Run Query Without variables
For simple queries without PHP variable parameters, use the following PDO code:
|
1 2 3 4 |
<?php $affected_rows = $db->exec("UPDATE table_name SET field_name='value'"); echo $affected_rows . ' are affected'; ?> |
Just change query for the simple DELETE, and INSERT statements within the above written code.
Run Query With PHP Variables
For statements that take PHP variable parameters,
|
1 2 3 4 5 6 7 8 |
<?php $qry = $db->prepare("SELECT * FROM table_name_Ebhor WHERE fld_id=? AND fld_name=?"); $qry->execute(array( $variable_id, $variable_name )); $rows = $qry->fetchAll(PDO::FETCH_ASSOC); ?> |
Here we have performed three steps as follows:
- Prepare: A valid query template is created and sent to the database where some values are unspecified (labelled as “?”).
- Then the database parses, compiles, performs query optimization on the query template, and also stores the query result without executing it.
- Execute: Later on, the application binds the values to the parameters, and the database executes the statement in lesser time using execute. The application may execute the prepared query as many times as the user wants with different values as per the requirements. It is a safer solution than concatenating strings together using MySQLi approach.
N.B.: While binding parameters, never put quotes around the ‘?’ placeholders. It will cause SQL syntax errors because quotes aren’t needed to be known while preparing the query.
PHP Regular Expressions
What is Regex?
Regular expressions (regex) are a sequence of specific characters itself. Generally the regex consists of arithmatic operators & alphanumeric characters to construct specific patterns.
These patterns are widely used for customized validation as per user requirement.
Functions
PHP provides us three functions to deal with regular expressions:
preg_match: The function is used to check pattern match on a string. It returns true when
preg_split: The function is used for pattern matching on a string and then splits the results into a numeric array
preg_replace: The function is used to identify a pattern match on a string and replace the matched portion with the specified text.
Below is the general syntax for a regex function such as preg_match, preg_split or preg_replace.
Syntax–
|
1 |
<php func_Ebhor('/Ebhor_regex/',Ebhor_txt); ?> |
Here,
“func_Ebhor” is one of the three functions already described above.
The forward slashes denote the starting and ending of the specific regular expression
“Ebhor_regex” is the particular pattern that needs to be matched
“Ebhor_txt” is the text string needs to be matched with Ebhor_regex.
Meta characters
The meta characters help us to perform complex pattern matches such as test the validation of an email, telephone, unique username etc. Here is some commonly used meta characters:
| Meta Character | Description/Example |
| . | Dot matches any single character except a new line character././ matches anything having single character in it |
| ^ | It matches the beginning of a string./^eb/ matches any string that begins with eb |
| $ | Dollar sign matches pattern the end of the string/in$/ matches robin, coffin etc. |
| * | Star matches zero (0) or more characters in the given string./con*/ matches continuous, control, connection etc. |
| + | Plus requires preceding character(s) to appear at least once./ebh+or/ matches ebhor |
| \ | Backslash is helpful to escape meta characters./ebhor+\.com/ considers the dot as a literal value during pattern match |
| […] | Character class/[abc]/ matches abc |
| a-z | It matches lower case letters./a-z/ matches cool, happy etc. |
| A-Z | It matches upper case letters like EBHOR, PHP, REGEX etc. |
| 0-9 | It simply matches any number between 0 and 9./0-3/ matches 0,1,2,3 etc. |
Predefined Character Ranges
There are some predefined character ranges, known as character classes, are available in PHP for easier coding.
Character classes contain a collection of specific characters within a range. Some of the most popular character classes are given below:
| Sr.No | Expression & Description |
| 1 | [[ |
| 2 | [[ |
| 3 | [[: |
| 4 | [[ |
Examples
Here is an example of PHP validation using regular expressions:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 |
<?php $name_Error = $email_Error = $url_Error = $mobile_Error = $user_name = $user_email = $user_url = $user_mobile = ""; if ($_SERVER["REQUEST_METHOD"] == "POST") { $user_name = test_input($_POST["name"]); if (!preg_match(‘/^[a-zA-Z ]*$/’,$user_name)) { // regex for valid name $nameError = "Only letters and white spaces are allowed!"; } $user_email = test_input($_POST["email"]); if (!preg_match(‘/^[A-z0-9_\-]+[@][A-z0-9_\-]+([.][A-z0-9_\-]+)+[A-z.]{2,4}$/ ‘, $user_email)) { // regex for valid email $email_Error = "Invalid email!"; } $user_url = test_input($_POST["url"]); if (!preg_match(‘/\b(?:(?:https?|ftp):\/\/|www\.)[-a-z0-9+&@#\/%?=~_|!:,.;]*[-a-z0-9+&@#\/%=~_|]/i’,$user_url)) { // regex for valid URL $url_Error = "Invalid URL!"; } $user_mobile = test_input($_POST["mobile"]); if (!preg_match('/^[0-9]{10}+$/', $user_mobile)){ // regex for 10 digit mobile number $mobile_Error = "Invalid mobile number!"; } ?> |
PHP and MySQL
PHP and MySQL connectivity is a very important topic while learning PHP here step by step PHP and MySQL connectivity and create update delete and read operations are discussed using
MYSQL is a freely available open source Relational Database management System (RDBMS)** that uses Structure Q
SQL is the most popular language to accessing, adding and managing content in a database. It is popular because its fast process, reliable, ease and flexible of use.
PHP can connect to MYSQL and manipulate database. It is used on the server. Create any PHP application need MYSQL database to managing data. MYSQL is an important part of most of all PHP application like WordPress, Joomla, Magento and Drupal. MYSQL is a one kind of database system for web application with huge size of storage space (like Facebook, Twitter and Wikipedia)
MYSQL are stored data in tables. A table is a collection of related data, one kind of array.
But PHP can store data and managing data except MYSQL by using another database like ODBC(Open Database Connectivity).
Note: **RDBMS is a collection of data, stored and accessed virtually. RDBMS is used for the definition, querying, creation, update and administration of databases. It is a software application to interact with user, other application means programming language (PHP, JAVA, .NET, Python etc.) and also database itself analyze data.
Create Database on Server
In the XAMPP OR WAMPP server PHPMYADMIN is present for MYSQL. Open XAMPP or WAMPP control panel start Apache and Mysql. Then enter localhost/phpmyadmin on the browser url. Open PHPMYADMIN section which is the main MYSQL database. Here database, table can create and also data stored and manage.
Click on the Database option then open a text box to create new database with database name.
Enter database name in the open textbox and click the Create button. Remember one thing never used space between two words of database name only used – (dash) or _ (underscore) and MSQL is case sensitive so database name and table name field name are use same as it is.
If user create database with same name (previous any other existing database name) then new database is not create. Always set database name similar with application (like create school management system then create database for this application with school_management name).
When a database is created successfully then this database shown in the left side list with alphabetical order. Click the database then open particular those database table list or if there has no table then show below image.
In MYSQL there has no limit to create database.
Create Table in a database MYSQL
Create table in a particular database is very simple like create new database. When any user open their database there has an option create table a blank text box there enter table name and 2,3,4 any number in the next box (Number of columns) and click the go button.
Table name rules is same as database name never using space between two words of table name.
There is a student table with 5 numbers of columns. Here columns are field name like student name, address, marks, rollnumber, phone, etc.
Entered name value in the name column like(name, address, marks, rollnumber, phone, etc.)
Then select type of particular column in the type column. Here type means which type of data stored in this field (likename is text value so choose text, address is alphanumeric so choose varchar and phone is numeric so choose int etc)
Then enter length means how many character or digit stored in this column. (like int support 0 to 11 here only store maximum 9 digit because + and – are by default store 2 digits so if any user store number greater than 9 then choose bigint which can store 20 digit maximum. Varchar has 255 character limits. Text has no limit; in text type no need to set length value)
Then set primary key for this table in the index column and click in the save button. In this way a simple table will be created in the database.
No limitation for create table in one database. User can create many table in one database as their require.
Connect PHP with Database
There have some method to connect PHP application with MYSQL database. Like MYSQL, MYSQLi and PDO etc.
Now days MYSQLi is mainly used for connecting database.
Syntax of MYSQLi:
connection.php
|
1 2 3 4 5 6 |
<?php $conn = new MYSQLi("localhost","root",null,"tutorial"); if(mysqli_connect_error()){ die(mysqli_connect_error()); } ?> |
Explain:
MYSQLi is a library class for MYSQL database. Using this class manage MYSQL database in a PHP application. There have many functions to display data, store data, delete data and update data of database.
In the above example first parameter is server host name where the database is present by default local server host name is localhost.
Second parameter is server user name which is root in local server.
Third parameter is password value which is null in local server.
Forth parameter is database name means which particular database is connected with this PHP application.
Here $conn return object of MYSQLi class of particular tutorial database.
mysqli_connect_error() is a pre-define function which check the connection is established successfully or not. If host name user name password database name are wrong then it returns error the stop the PHP execution.
MySQL Insert Data in table
create.php
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 |
<html> <body> <?php include "connection.php"; if( isset($_POST["name"])){ $name = $_POST['name']; $phone = $_POST['phone_number']; $address = $_POST['address']; $marks = $_POST['marks']; $sql = "INSERT INTO `student`(`name`, `phone`, `address`, `marks`) VALUES ('$name','$phone','$address','$marks')"; $conn->query($sql); echo "One record Insert"; } ?> <center> <h1>Add Student Record</h1> <hr> <form method="post" action=""> <table border = 1 cellpadding = 15 width = 350 height = 175> <tr> <td>Name</td> <td><input type = "text" name = "name" placeholder = "Enter Student Name"/></td> </tr> <tr> <td>Phone</td> <td><input type = "number" name = "phone_number" placeholder = "Enter Student Phone Number"/></td> </tr> <tr> <td>Address</td> <td><textarea name = "address" placeholder = "Enter Student Address"></textarea></td> </tr> <tr> <td>Marks</td> <td><input type = "number" name = "marks" placeholder = "Enter Student Marks"/></td> </tr> <tr> <td colspan = 2 align = "right"><input type = "submit" value = "Save" /></td> </tr> </table> </form> </center> </body> </html> |
Output
Explain:
MYSQL gives insert query for store data in the database.
|
1 |
Insert into `tablename`(`column1`,`column2`,`column3`,`column4`,`column5`)values(‘value1’,‘value2’,‘value3’,‘value4’,‘value5’) |
Insert, into and values are keywords user can write it in any case small or caps. Table name and column name are case sensitive so write same as define.
Execute any MYSQL query used query() function. In above example $sql variable store insert query that’s insert query is executed and one data is stored in the database table. query() function is call by MYSQLi connection object so need to include database connection file. Without database connection never execute any MYSQL query.
Show Data from MySQL Table
show.php
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 |
<html> <body> <?php include "connection.php"; ?> <center> <h1>All Student Record</h1> <hr> <table border = 1 cellpadding = 15 width = 600 height = 300> <tr> <th>Roll Number</th> <th>Name</th> <th>Phone</th> <th>Address</th> <th>Marks</th> </tr> <?php $sql = "SELECT * FROM `student`"; $res = $conn->query($sql); while($rows = $res->fetch_array()){ echo "<tr> <td>$rows[rollnumber]</td> <td>$rows[name]</td> <td>$rows[phone]</td> <td>$rows[address]</td> <td>$rows[marks]</td> </tr>"; } ?> </table> </center> </body> </html> |
Output:
MYSQL gives select query to fetch data from database.
|
1 |
select * from `tablename` |
Here * return all columns value of this table. If any user return only specific some column then he/she can write select query like this way, select name, phone, marks from student. Here only name, phone and marks value return.
In above example query() function execute select query so student table selected. Now display the student table’s data, use fetch_array() function which return at a time one row of the table. If user show the all record of the table then call the fetch_array() in a loop. In above example use while loop for fetch all record of the student table.fetch_array() function is return table data as a numeric array and associative array both way. So user can print name value like $rows[name] or $rows[1] both return same result.
Delete Data from MySql Table
MYSQL gives delete query for delete data from database.
delete from tablename. This query deletes all record of the table. Table will be empty after execute the query. If user want to delete particular one row then add where clause in the delete query. MYSQL support where clause and also AND OR clause.
delete.php
|
1 2 3 4 5 6 7 |
<?php include "connection.php"; $sql = "DELETE FROM `student` WHERE `rollnumber` = 1"; $conn->query($sql); echo "Student record deleted"; ?> |
Output:
Student record deleted
Now in the student table, only one record left. The first row deleted from the student table. Always use the primary key column in the where clause. Because
Like user use name column then if more than one student name are same then more than one record will be deleted.
Update Data in MySQL table
MYSQL gives update query to update data in the table.
|
1 |
update `tablename` set `column1` = ‘value1’,`column2` = ‘value2’,`column3` = ‘value3’ |
With this query column1, column2 and column3 value are modified by
update.php
|
1 2 3 4 5 6 7 |
<?php include "connection.php"; $sql = "UPDATE `student` SET `address` = 'Sonarpur', `marks`= '99' WHERE `rollnumber` = 2"; $conn->query($sql); echo "Student record updated"; ?> |
Output:
Student record updated
In the above example address and marks value modified in the one row where
Inserting Multiple Data
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 |
<?php $conn = new MYSQLi("localhost","root",null,"test"); if($_POST['submit']){ if(count($_FILES['upload']['name']) > 0){ for($i=0; $i<count($_FILES['upload']['name']); $i++) { @mkdir("uploaded"); $filePath = "uploaded/".time().'-'.$_FILES['upload']['name'][$i]; copy($_FILES['upload']['tmp_name'][$i],$filePath); $sql="insert into `file` (`id`,`filepath`) values ('','$filePath')"; $conn->query($sql); } } } ?> <form action="" enctype="multipart/form-data" method="POST"> <input name="upload[]" type="file" multiple/><br> <input type="submit" name="submit" value="Submit"> </form> |
Note:
multiple keyword used to select multiple file at a time.
Getting Last Auto increment ID
<?php echo $conn->insert_id;?>
Its return last auto increment column value. In the file table last inserted id value is 4 so insert_id return 4. Call the insert_id function with the database connection object and write the code after insert query.
Set a column to auto increment value in tableto check A_I option in the table structure.
Prepare statement to insert data
PDO (PHP Data Objects) is the one of the database connection method to connect MYSQL database to PHP application.
In this method insert query needs to prepare before execute.
prepareinsert.php
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 |
<?php //Databse connection $servername = "localhost"; $username = "root"; $password = ""; $conn = new PDO("mysql:host=$servername;dbname=tutorial", $username, $password); //Insert Data in the table with prepare statement $name = "Biplab Bagchi"; $phone = "8877665544"; $address = "Sodhpur"; $marks = "60"; $sql = $conn->prepare("INSERT INTO `student` (`name`, `phone`,`address`,`marks`) VALUES (?, ?,?,?)"); $sql->bindParam(1, $name); $sql->bindParam(2, $phone); $sql->bindParam(3, $address); $sql->bindParam(4, $marks); $sql->execute(); ?> |
Explain:
Prepared statements are very useful against SQL injections.
A prepared statement is a feature used to execute the same SQL statements repeatedly with high efficiency.
Prepare: A SQL is created query and data sent to the database. Some values are not specified, they are called parameters. In above example INSERT INTO student VALUES (?, ?, ?, ?, ?) those are parameters.
Database parses the data then compile and finally execute the SQL query, in prepare method data stores in the server without execute.
Execute: In the execute method data combine with parameters and SQL execute the query to store data into database.
User can execute the query as many times as they want with different values.
Compared to executing SQL statements directly, prepared statements have two main advantages
- Prepared method reduces query parsing time for preparing a SQL query.
- Bind param minimize bandwidth to the server so website can be load fast and only need to send parameter each time not the whole query.
With Prepared methods SQL query is secured from SQL Injection, because bind param combined the values first then send to the database so no need to be escaped correctly. If the original values are not derived from input then SQL Injection con not occurs.
PHP CKEditor Installation and Uses
Write a designable content not possible through HTML form field. That’s why JS create editor which helps user to write designable content in website. Like Gmail use Closure Library JS editor, WordPress support TinyMCE WYSIWYG editor same as PHP support CKEditor, WYMeditor, FCKeditor.
Using this editor user can write blog easily with picture colorful content, admin can add product description with table design, product specification. Admin can write their website content easily by this editor like About Us page content, Privacy Policy, Contact Us, Terms & Condition, etc.
How to Install CKEditor
CKEditor is one of the best useful content editors. It is open source free editor. First need to download this editor.
https://ckeditor.com/ckeditor-5/download/ this is the download link.
|
1 |
<script src="https://cdn.ckeditor.com/ckeditor5/11.0.1/classic/ckeditor.js"></script> |
After downloading move rar file in the project folder and extract.
Using CKEditor in the project with example
|
1 2 3 4 |
<script src="ckeditor/ckeditor.js"></script> <form method = "post" action = ""> <textarea name = "content" class = "ckeditor"></textarea> </form> |
Use CKEditor in any php script with include external js file ckeditor.js and add class attribute with value ckeditor in a textarea form element.
After that editor is return in the browser.
|
1 2 3 4 5 6 7 8 9 10 |
<?php $conn = new mysqli("localhost","root","","test"); if($_POST['content']){ $conn->query($conn,"INSERT INTO `content_editor`(`content_id`, `content`) VALUES ('','$_POST[content]')"); } ?> <script src="ckeditor/ckeditor.js"></script> <form method = "post" action = ""> <textarea name = "content" class = "ckeditor"></textarea> </form> |
display.php
|
1 2 3 4 5 6 7 |
<?php $conn = new mysqli("localhost","root","","test"); $run = $conn->query($conn,"SELECT * FROM `content_editor` where `content_id` = '2'"); $result = $run->fetch_array($run); print $result['content']; ?> |
In this example use content_editor table in the test database.
This is the table structure. Content column always set longtext so user can store large data in this field.
When save editor content data will save in the database with the design of the content not only value that’s why when fetch the database data its return same design as it is.
That’s why this editor is very user friendly and useful for website.