"hokieghal99" <hokiegal99@hotmail.com> wrote in message
news:bnbu19$q29$1@solaris.cc.vt.edu...[color=blue]
> Hi,
>
> I'd like to get user input from an html form into a mysql select
> statement. Here's where I'm stumped:
>
> $result = mysql_query("SELECT * FROM dept WHERE notes LIKE
> '%search-string%'",$db);
>
> I need to get the user's input into the '%search-string%' section, but I
> do not understand how to do this. I can hard-code a specific search
> string and it will work, but I want the users to be able to dynamically
> define the search-string. So, I created a basic html form and used the
> post method to grab their input, but now I can't insert that input into
> the mysql select statement. Any ideas? I think it should be easy, I just
> don't know how to do it. I've tried this:
>
> $result = mysql_query("SELECT * FROM dept WHERE notes LIKE
> '%$_POST["search"]%'",$db);
>
> But it doesn't work. Below is the form in html and the php file:
>
> <html>
> <title>Search Test</title>
> <head>
> </head>
> <body>
> <form action="search-db.php" method="POST">
> <p>Enter Your Search: <input type=text name=search></p>
> <input type="submit">
> </form>
> </body>
> </html>
> -----------------------------------------------------------
> <html>
> <body>
> <?php
> $db = mysql_connect("localhost", "Anonymous");
> mysql_select_db("computers",$db);
> $result = mysql_query("SELECT * FROM dept WHERE notes LIKE
> '%surplus%'",$db);
> echo "<table border=1>\n";
> while ($myrow = mysql_fetch_array($result)) {
> printf("<tr><td><b>%s</b></td></tr>\n", $myrow[notes]);
> }
> echo "</table>\n";
> ?>
> </body>
> </html>[/color]
Try this:
$searchstring = $_POST['search'];
$result = mysql_query("SELECT * FROM dept WHERE notes LIKE
'%$searchstring%'",$db);
JM
New River Industries, Inc. (Right around the corner from you!)
