1. 首頁
  2. 問答
  3. 將選定的日期值傳遞給查詢

將選定的日期值傳遞給查詢

2016-11-08 34 views
0

我在這裏發現了類似的問題,但大多數解決方案對我無效。我有一個'jQuery UI日期選擇器'的表單,我想在給定的日期獲取搜索結果。我試過更改日期格式,但它不返回任何結果。將選定的日期值傳遞給查詢

搜索形式 -

<div class="form-group row"> 
    <label for="duration" class="col-sm-4 col-form-label"> 
    <input type="checkbox" name="search2" value="checkbox" id="duration" class="search2"> Duration</label> 
    <div class="col-sm-4"> 
    <input type="date" class="form-control input-sm data2" name="data1" id="startdate" placeholder="Start Date" disabled="disabled"> 
    </div> 
    <div class="col-sm-4"> 
    <input type="date" class="form-control input-sm data2" name="data2" id="enddate" placeholder="End Date" disabled="disabled"> 
    </div> 
    </div>

搜索查詢 -

$sql = "SELECT * FROM reservation 
    INNER JOIN package ON reservation.tid = package.tid 
    INNER JOIN reservation_type ON reservation.type = reservation_type.id 
    INNER JOIN customer ON reservation.cid = customer.cid 
    INNER JOIN reservation_status ON reservation.status = reservation_status.id  
    WHERE " ; 
    if(isset($_POST['search2'])){ $start_date = date('Y-m-d', strtotime($_POST['data1'])); $sql .= " start_date = $start_date AND" ; } 
    if(isset($_POST['search2'])){ $end_date = date('Y-m-d', strtotime($_POST['data2'])); $sql .= " end_date = $end_date AND" ; } 
    if(isset($_POST['search'])){ $rid = mysqli_real_escape_string($db, $_POST['data']); $sql .= " rid = $rid AND" ; } 
    if(isset($_POST['search3'])){ $cid = mysqli_real_escape_string($db, $_POST['data3']); $sql .= " reservation.cid = $cid AND" ; } 
    if(isset($_POST['search5'])){ $tid = mysqli_real_escape_string($db, $_POST['data5']); $sql .= " reservation.tid = $tid AND" ; } 
    if(isset($_POST['search6'])){ $type = mysqli_real_escape_string($db, $_POST['data6']); $sql .= " reservation.type = $type AND" ; } 
    if(isset($_POST['search4'])){ $status = mysqli_real_escape_string($db, $_POST['data4']); $sql .= " status = $status AND" ; }  

    $sql = rtrim($sql, "AND") ; 


    $result = mysqli_query($db, $sql)or die("Error: ".mysqli_error($db)); 
    $num_rows = mysqli_num_rows($result); 
    if($num_rows >0){ 
    while ($row = mysqli_fetch_assoc($result)) { 
    ?> 
<tr align="center"> 
<td><?php echo $row["start_date"]; ?></td> 
<td><?php echo $row["end_date"]; ?></td>

複選框選擇 -

$(".search2").on('click', function() { 
if($(this).is(':checked')){ 
    $(".data2").prop('disabled',false); 
} else { 
    $(".data2").prop('disabled',true); 
} 
})

JqueryUI-

$(function() { 
          var dateFormat = "yy-mm-dd", 
           startdate = $("#startdate") 
           .datepicker({defaultDate: "+1w",changeMonth: true, numberOfMonths: 1}) 
           .on("change", function() {enddate.datepicker("option", "minDate", getDate(this));}), 
           enddate = $("#enddate") 
           .datepicker({defaultDate: "+1w",changeMonth: true,numberOfMonths: 1}) 
           .on("change", function() {startdate.datepicker("option", "maxDate", getDate(this));}); 

          function getDate(element) { 
           var date; 
           try { 
           date = $.datepicker.parseDate(dateFormat, element.value); 
           } catch(error) { 
           date = null; 
           } 
           return date; 
          } 
          }); 

       $('#startdate').datepicker({dateFormat: 'yy-mm-dd'}); 
       $('#enddate').datepicker({dateFormat: 'yy-mm-dd'});

查詢正常工作與其他ckeckings(如下所述圖像); Search Result 1

但不適合的日期, Search Result 2

我是一名學生,新的編碼。任何幫助表示讚賞!謝謝。

來源

2016-11-08 Nimesha Dewapriya

+0

只是一個關於代碼改進的說明。您可以在最後一個'isset()'命令中添加'AND',然後在下一行使用'rtrim'功能刪除它。看看如何使用'implode'將數組轉換爲字符串,它會讓你的生活更輕鬆。 – RST

+0

處理你說的話..非常感謝你的建議。 –

回答

0

在您的查詢,把單引號值: 如:

$sql .= " start_date = '$start_date' AND" ;

來源

2016-11-08 09:08:31 Rijin

+0

哦,我很傻,它工作。非常感謝。 –

0

由於日進已經回答了,你缺少的日期的報價。然而,既然你表示你是編程新手,我強烈建議你已經熟悉使用準備好的語句,而不是你正在構建SQL查詢的方式。這是更好地建立這樣的代碼:

$sql = "SELECT * FROM reservation 
    INNER JOIN package ON reservation.tid = package.tid 
    INNER JOIN reservation_type ON reservation.type = reservation_type.id 
    INNER JOIN customer ON reservation.cid = customer.cid 
    INNER JOIN reservation_status ON reservation.status = reservation_status.id"; 

$where = []; 

if(isset($_POST['search2'])){ 
    $start_date = date('Y-m-d', strtotime($_POST['data1'])); 
    $where["start_date = ?"] = $start_date; 

    $end_date = date('Y-m-d', strtotime($_POST['data2'])); 
    $where["end_date = ?"] = $end_date; 
} 
if(isset($_POST['search'])){ 
    $rid = mysqli_real_escape_string($db, $_POST['data']); 
    $where["rid = ?"] = $rid; 
} 

if(!empty($where)) { 
    $sql .= ' WHERE ' . implode(' AND ',array_keys($where)); 
} 


$stmt = $db->prepare($sql); 
if(!$stmt) { 
    trigger_error('An error occured: (' . $db->errno . ', ' . $db->error . '), sql: ' . $sql, E_USER_ERROR); 
} 

foreach($where as $value) { 
    /* Bind parameters. Types: s = string, i = integer, d = double, b = blob */ 
    $stmt->bind_param('s', $value); 
} 

$stmt->execute();

關於爲什麼以及如何陳述準備應該用更多信息,請參閱How can I prevent SQL injection in PHP?

來源

2016-11-08 09:46:25

+0

非常感謝。我非常感謝你的建議。 –

相關問題

 相關問題