Im using Scriptaculous' Ajax.InPlaceEditor and i have this :
But i dont no how to update the database in the ajax.php file i tried:Code:<span id="status"> <?php echo $usrd[status]; ?> </span> <script type="text/javascript"> <!-- new Ajax.InPlaceEditor('status', 'ajax.php'); --> </script>
But it didnt update nothing, any ideas?PHP Code:<?php
include("include/core.class.php");
//SQL QUERY
$dsql="UPDATE user SET status='".$usrd[status]."' WHERE id ='".$usrd[id]."'";
$dupdate=mysql_query($dsql) or die ("Couldn't Execute Command");
?>
EDIT: nvm worked it out, apparently it automatically sends a post with the variable $valueso i just done this
PHP Code:<?php
$value = $_POST['value'];
$dsql="UPDATE user SET status='".$value."' WHERE id ='".$usrd[id]."'";
$dupdate=mysql_query($dsql) or die ("Couldn't Execute Command");
echo $value;
?>
Results 1 to 2 of 2
Thread: AJAX update
-
AJAX update
Last edited by Coda; 28-08-2008 at 01:11 PM.
-
good to see you fixed it, just put it through some basic filters to stop SQL injections. Dont want internet nasty's messing around with your site
PHP Code:
// Did it in a simple function, can add addslashes or stripslashes
// if you want, but that should protect you from most things.
function filterMePlox( $string ){
$string = htmlentities( $string, ENT_QUOTES );
$string = mysql_real_escape_string( $string );
}
$value = filterMePlox($_POST['value']);
$dsql="UPDATE `user` SET `status` = '$value' WHERE `id` = '$usrd[id]'";
$dupdate=mysql_query($dsql) or die ("Sorry, something went wrong");
echo $value;
Reply With Quote
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts