PHP沒有寫入第一場SQL

Question

謝謝你們，算出來，原來它是在js一個詞是拼寫不正確，總有一些簡單的

這是我的腳本將數據寫入到我的數據庫在我的本地服務器上，它目前只寫入2個字段，而不是別名，我做錯了什麼？我已經三重檢查了html表單和數據庫字段中的名稱。

<?php 
    // 1. Create connection to database 

    mysql_connect('localhost','root','') or die('Could not connect to mysql: <hr>'.mysql_error()); 

    // 2. Select database 

    mysql_select_db("trialdb") or die('Could not connect to database:<hr>'.mysql_error()); 

    // 3. Assign variables (after connection as required by escape string) 

$alias = $_POST['alias']; 
$name = $_POST['name']; 
$email = $_POST['email']; 

    // 4. Insert data into table 

    mysql_query("INSERT INTO user_data (alias, name, email) VALUES ('$alias', '$name', '$email')"); 
    Echo 'Your information has been successfully added to the database.'; 
    print_r($_POST); 
    mysql_close() 
?> 

Answer 1

，首先你應該總是檢查POST變量都被正確發送：

if (
    !isset($_POST['alias']) or 
    !isset($_POST['name']) or 
    !isset($_POST['email']) 
) // something is wrong 

其次，你不想直接截獲用戶輸入的SQL查詢。您應該執行的第一部分逸出（甚至更好PDO或mysqli更換mysql_*過時的驅動程序，只需使用prepared statements）：

$alias = mysql_real_escape_string($_POST['alias']); 
$name = mysql_real_escape_string($_POST['name']); 
$email = mysql_real_escape_string($_POST['email']); 

第三，你如果查詢打印成功的消息之前進行正確要檢查：

$res = mysql_query("INSERT INTO user_data (alias, name, email) VALUES ('$alias', '$name', '$email')"); 

echo ($res) 
    ? 'Your information has been successfully added to the database.' 
    : 'Your information couldn't be added to the database'; 

Answer 2

你可以嘗試

<?php 

$conn = mysql_connect('localhost','root','') or die('Could not connect to mysql: '.mysql_error()); 

mysql_select_db("trialdb", $conn) or die('Could not connect to database:'.mysql_error()); 

$alias = $_POST['alias']; 
$name = $_POST['name']; 
$email = $_POST['email']; 

mysql_query("INSERT INTO user_data (`alias`, `name`, `email`) VALUES ('$alias', '$name', '$email')", $conn); 

echo 'Your information has been successfully added to the database.'; 

print_r($_POST); 

mysql_close(); 

?>