1

I'm currently building my first database in MySQL with an interface written in PHP and am using the 'learn-by-doing' approach. The figure below illustrates my database. Table names are at the top, and the attribute names are as they appear in the real database. I am attempting to query the values of each of these attributes using the code seen below the table. I think there is something wrong with my mysql_query() function since I am able to observe the expected behaviour when my form is successfully submitted, but no search results are returned. Can anyone see where I'm going wrong here?

enter image description here

<form name = "search" action = "<?=$PHP_SELF?>" method = "get">
    Search for <input type = "text" name = "find" /> in
    <select name = "field">
        <option value = "Title">Title</option>
        <option value = "Description">Description</option>
        <option value = "City">Location</option>
        <option value = "Company_name">Employer</option>
    </select>
    <input type = "submit" name = "search" value = "Search" />
</form>

$query = "SELECT Title, Descrition, Company_name, City, Date_posted, Application_deadline 
                     FROM job, employer, address
                     WHERE Title = $find 
                     OR Company_name = $find 
                     OR Date_posted = $find 
                     OR Application_deadline = $find
                     AND job.employer_id_job = employer.employer_id
                     AND job.address_id_job = address.address_id";
Improve this question
2
  • Where is the code that inserts the form data into mysql table? you seem to be only querying, but never inserting Commented Mar 12, 2011 at 22:47
  • There is test data already inserted using MySQL Workbench. My goal right now is simply to extract data from the database. Commented Mar 12, 2011 at 23:05

6 Answers 6

Reset to default
2

There seems to be at least four problems:

  • You don't have quotes around $find, i.e. WHERE Title = '$find'.
  • You don't seem to be using mysql_real_escape_string (or did you just omit that code in your question for brevity?)
  • You spelled Description incorrectly.

  • AND has higher precedence than OR so you probably want parentheses in your expression:

    WHERE (Title = '$find' 
OR Company_name = '$find' 
OR Date_posted = '$find' 
OR Application_deadline = '$find')
AND job.employer_id_job = employer.employer_id
AND job.address_id_job = address.address_id"

I suspect that one or more of these are the reason why it's not working. However to be sure you should post more of your code and your table structure.

Another point is that you are using the old ANSI-89 join syntax. I would recommend using the newer syntax added in SQL-92 (FROM a JOIN b ON ...). This would have prevented you from making the fourth error, as well as having numerous other advantages over the older syntax.

Also try using mysql_error to find out what the exact error message is. And please include the message in your question.

Improve this answer
Sign up to request clarification or add additional context in comments.

Comments

1

If you like to learn by doing then learn by doing it in PDO and bind the parameters. This is the safe and correct way to do it these days.

Improve this answer

Comments

0

Use single quotes for values in where clause.

Improve this answer

Comments

0

Try this one:

$fields= array('Title','Company_name', 'Date_posted','Application_deadline');
if(!in_array($_GET['field'],$fields)) die(); // do some error handling here

$query = "SELECT Title, Descrition, Company_name, City, Date_posted, Application_deadline 
                     FROM job, employer, address
                     WHERE 
                     $field = '".mysql_real_escape_string($_GET['find']) ."'
                     AND job.employer_id_job = employer.employer_id
                     AND job.address_id_job = address.address_id";
Improve this answer

Comments

0

If single quotes isn't your only problem (it is certainly part of it), check the return of mysql_error().

Check the code samples here: http://www.php.net/manual/en/function.mysql-query.php

Improve this answer

Comments

0

I would suggest also using ezSQL to do all your query handling, it's easy to drop into your code and makes all the processing easy, just include the db info in a config file, include the classes for ezSQL in the config file, setup a global call to the class like 

$db = new ez_SQL();

then in your referencin php files, just do this

global $db;
$results = $db->query("SELECT statment", ARRAY_A);

you can get ezsql from: http://justinvincent.com/ezsql

Improve this answer

Comments

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.