/
matchess_player_details_process.php
103 lines (90 loc) · 2.68 KB
/
matchess_player_details_process.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
<!DOCTYPE html>
<!--
Transit by TEMPLATED
templated.co @templatedco
Released for free under the Creative Commons Attribution 3.0 license (templated.co/license)
-->
<html lang="en">
<head>
<meta charset="UTF-8">
<title>TarneitCricketClub</title>
<meta http-equiv="content-type" content="text/html; charset=utf-8" />
<meta name="description" content="" />
<meta name="keywords" content="" />
<!--[if lte IE 8]><script src="js/html5shiv.js"></script><![endif]-->
<script src="js/jquery.min.js"></script>
<script src="js/skel.min.js"></script>
<script src="js/skel-layers.min.js"></script>
<script src="js/init.js"></script>
<noscript>
<link rel="stylesheet" href="css/skel.css" />
<link rel="stylesheet" href="css/style.css" />
<link rel="stylesheet" href="css/style-xlarge.css" />
</noscript>
</head>
<body>
<body>
<?php include 'nav.php'; ?>
<?php
function sanitise($data) //eliminating unwanted characters using sanitise function
{
$data = trim($data);
$data = stripslashes($data);
$data = htmlspecialchars($data);
return $data;
}
require_once ("settings.php"); //connection info
$conn = @mysqli_connect($host,
$user,
$pwd,
$sql_db
);
if (!$conn)
{
echo "<p>Database connection failure</p>"; // not in production script
}
else
{
$sql_table="match_team_player_details";
$query = "INSERT INTO $sql_table (MatchId, TeamId, PlayerId, BattingPosition, RunScored, BallsFaced, WicketsTaken, OversBowled) ";
//check whether the form fields in the register form are set
if(isset($_POST["player_one_id"]))
{
$player= sanitise($_POST["player_one_id"]);
$match= sanitise($_POST["match_id"]);
$team= sanitise($_POST["team_id"]);
$position= sanitise($_POST["pos1"]);
$score= sanitise($_POST["player_one_score"]);
$balls= sanitise($_POST["player_one_balls"]);
$overs= sanitise($_POST["player_one_overs"]);
$wickets= sanitise($_POST["player_one_bowled"]);
$query .= "VALUES ('$match', '$team','$player', '$position', '$score', '$balls', '$wickets', '$overs')";
$result = mysqli_query($conn, $query);
if (!$result)
{
echo"<section id='main' class='wrapper'>";
echo"<div class='container'>";
echo"<header class='major'>";
echo"<h4>Oops! seems like you did not enter something right!</h4>";
echo"</header>";
echo"<div class='container 25%'>";
echo"<a class='button fit' href='matches_player_details.php'>Go Back</a>";
echo"</div>";
//header("location:index.php");
}
else
{
header("location:scorecardd_successful.php");
}
}
mysqli_close($conn);
}
?>
</section>
<footer>
</br>
</br>
<?php include 'footer.php'; ?>
</footer>
</body>
</html>