/
searchFunction.php
55 lines (40 loc) · 1.67 KB
/
searchFunction.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
<?php
function searchDatabase($tableName, $columnName, $searchInput) {
$dbHost="localhost"; // Host name
$dbUsername="root"; // Mysql username
$dbPassword="VMware5"; // Mysql password
$dbName="manager"; // Database name
// $tbl_name="customers"; // Table name
// Connect to server and select databse.
$dbCon = new mysqli("$dbHost", "$dbUsername", "$dbPassword", "$dbName");
if (mysqli_connect_errno($dbCon)) {
echo "Failed to connect to MySQL: " . mysqli_connect_error();
}
// $columnName = mysqli_real_escape_string($columnName);
// $searchInput = mysqli_real_escape_string($searchInput);
$query = "SELECT * FROM " . $tableName . " WHERE " . $columnName . " like '%" . $searchInput . "%'";
// echo "DEBUG [searchDatabase::22]:" . $query . "<br>";
$result = $dbCon->query($query);
return $result;
}
function updateDatabase($tableName, $columnName, $newInput) {
$dbHost="localhost"; // Host name
$dbUsername="root"; // Mysql username
$dbPassword="VMware5"; // Mysql password
$dbName="manager"; // Database name
// $tbl_name="customers"; // Table name
// Connect to server and select databse.
$dbCon = new mysqli("$dbHost", "$dbUsername", "$dbPassword", "$dbName");
if (mysqli_connect_errno($dbCon)) {
echo "Failed to connect to MySQL: " . mysqli_connect_error();
}
$columnName = mysqli_real_escape_string($columnName);
$newInput = mysqli_real_escape_string($newInput);
$query = "SELECT * FROM {$tableName} WHERE {$columnName} like '%" . "{$newInput}" . "%'";
// UPDATE {$taableName} set {$columnName} = '{$newpassword}' WHERE cust_num = '{$customerNumber}'";
// DEBUG
// echo $query . "<br>";
$result = $dbCon->query($query);
return $result;
}
?>