department log in
a page displays employees
on this page you may add edit delete employee
but the problem is that my add/edit/delete all option are running at same time even after passing correct variables
please help
homedisp.php
Expand|Select|Wrap|Line Numbers
- <HTML>
- <HEAD>
- <TITLE="cccc SALARY">
- <?php
- SESSION_START();
- include ("conn.php");
- include ("HEADER.php");
- //exit;
- IF (ISSET($_SESSION['deptno']))
- {
- //$deptno="";$RS="";
- $deptno=$_SESSION['deptno'];
- //ECHO $deptno;
- //EXIT;
- $qi="SELECT * FROM PAYMST WHERE DEPTno=$deptno";
- $RESULT=mysqli_query($conn,$qi);
- //$CONN->CLOSE();
- echo "<BODY>";
- echo "<TABLE BORDER='1'>";
- echo "<TH>cccc SALARY INFORMATION UPDATE</TH>";
- WHILE($RS=MYSQLI_FETCH_ARRAY($RESULT))
- {
- ?>
- <TR><TD><?PHP ECHO $RS['ECODE'] ?></TD><TD><?PHP ECHO $RS['NAME'] ?></TD><TD><A HREF='INDEX.PHP?STRACTION=ADD'>ADD</A></TD>
- <TD><A HREF="INDEX.PHP?STRACTION=EDIT & ECODE=<?PHP ECHO $RS['ECODE'] ?>">EDIT</A></TD>
- <TD><A HREF="INDEX.PHP?STRACTION=DELETE & ECODE=<?PHP ECHO $RS['ECODE'] ?>">DELETE</A></TD></TR>
- <?PHP
- }
- }
- ELSE
- {
- ECHO "<META HTTP-EQUIV='REFRESH' CONTENT='0 URL=SALLOGIN.PHP'>";
- }
- ?>
- </TABLE>
- </BODY>
- </TITLE>
- </HEAD>
- </HTML>
Expand|Select|Wrap|Line Numbers
- <HTML>
- <HEAD>
- <TITLE="cccc SALARY">
- <?php
- SESSION_START();
- include ("conn.php");
- include ("HEADER.php");
- //$STRACTION="";
- $ECODE=$NAME="";
- //exit;
- IF (ISSET($_SESSION["deptno"]))
- {
- $DEPTNO=$_SESSION["deptno"];
- IF(ISSET($_GET["STRACTION"]))
- {
- //ECHO "hhhh";
- //EXIT;
- $STRACTION=$_GET["STRACTION"];
- ECHO $STRACTION;
- // EXIT;
- }
- IF($_SERVER["REQUEST_METHOD"]="POST" AND ISSET($_POST["SUBMIT"]))
- {
- FUNCTION TESTINPUT($DATA)
- {
- $DATA=TRIM($DATA);
- $DATA=STRIPSLASHES($DATA);
- $DATA=HTMLSPECIALCHARS($DATA);
- RETURN $DATA;
- }
- $ECODE=TESTINPUT($_POST["TXTECODE"]);
- $NAME=TESTINPUT($_POST["TXTNAME"]);
- IF ($STRACTION="ADD")
- {
- $qi="INSERT INTO PAYMST (ECODE,NAME,DEPTNO) VALUES ('$ECODE','$NAME',$DEPTNO)";
- IF($result=mysqli_query($conn,$qi))
- {
- ECHO "<br/> VALUE INSERTED SUCCESSFULLY";
- }
- }
- IF ($STRACTION="EDIT")
- {
- $qi="UPDATE PAYMST SET NAME='$NAME' WHERE ECODE='$ECODE' ";
- IF(mysqli_query($conn,$qi))
- {
- ECHO "<br/> VALUE UPDATED SUCCESSFULLY";
- }
- }
- IF ($STRACTION="DELETE")
- {
- $qi="DELETE FROM PAYMST WHERE ECODE='$ECODE' ";
- IF(mysqli_query($conn,$qi))
- {
- ECHO "<br/> VALUE DELETED SUCCESSFULLY";
- }
- }
- //$CONN->CLOSE();
- }
- IF ($STRACTION="EDIT")
- {
- if(isset($_GET['ECODE']))
- {
- echo "hhhh";
- //exit;
- $ECODE=$_GET['ECODE'];
- }
- $qi="SELECT * FROM PAYMST WHERE ECODE='$ECODE'";
- IF($RESULT=mysqli_query($conn,$qi))
- {
- WHILE($RS=MYSQLI_FETCH_ARRAY($RESULT))
- {
- $ECODE=$RS['ECODE'];
- $NAME=$RS['NAME'];
- }
- }
- }
- else
- {
- $ECODE="";
- $NAME="";
- }
- ?>
- <BODY>
- <form name="a" method="post" action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>">
- <TABLE>
- <TH>cccc SALARY INFORMATION UPDATE</TH>
- <TR><TD>ECODE</TD><TD><INPUT TYPE="TEXT" NAME="TXTECODE" VALUE="<?PHP ECHO $ECODE; ?>"></TD></TR>
- <TR><TD>NAME</TD><TD><INPUT TYPE="TEXT" NAME="TXTNAME" VALUE="<?PHP ECHO $NAME; ?>"></TD></TR>
- <TR><TD><INPUT TYPE="SUBMIT" NAME="SUBMIT" VALUE="SUBMIT"></TD></TR>
- </form>
- <?PHP
- }
- ELSE
- {
- ECHO "<META HTTP-EQUIV='REFRESH' CONTENT='0 URL=SALLOGIN.PHP'>";
- }
- ?>
- </TABLE>
- </BODY>
- </TITLE>
- </HEAD>
- </HTML>