Show unique primary key from record just submitted 1

[DrDan1]

Hi. The answer to this is probably so simple I'll end up cracking my head on the keyboard later.

Using a very simple example, I have a table with just 2 fields. A primary key consisting of a unique auto-number and a name field. A user would submit their name in a form and the ctahing page will say thanks and show them their unique number. Of course I can't find the unique number by querying against the name, as name's are hardly unique themselves.

Here is my example code. How do I get the $reference variable to be the relevent primary key?

<?php
    if (isset($_POST['submit'])) {
    	$query = 'INSERT INTO table VALUES(default,' .$_POST['name']. ')';
    	mysql_query($query);
    	
		$reference = 'XXXX';     //Where XXXX is the primary key of the record just submitted (i.e. 'id')
		echo 'Thank you ' .$_POST['name']. '. Your reference is ' .$reference;
		
    }else{
		echo '<p>Submit your name </p>';
		echo '
			<form action="thispage.php" method="post">
				Name: <input type="text" name="name" /><br />
				<input type="submit" name="submit" value="Submit your name" />
			</form>';
    }
?>

----------------------------------------
Knowing is not enough, we must apply. Willing is not enough, we must do.
--So said the ever wise Bruce Lee
Memorize and live by it!

 

[feherke]

Hi

$reference = [red]mysql_insert_id()[/red];     [gray]//Where XXXX is the primary key of the record just submitted (i.e. 'id')[/gray]

See [tt]mysql_insert_id()[/tt], in PHP documentation and/or [tt]last_insert_id()[/tt] in MySQL documentation.

Feherke.

http://rootshell.be/~feherke/

 

[DrDan1]

Now I'm going to have to buy a new keyboard

Thanks. I knew it's be something simple!

----------------------------------------
Knowing is not enough, we must apply. Willing is not enough, we must do.
--So said the ever wise Bruce Lee
Memorize and live by it!

 

[Olavxxx]

Hi, remember to also wrap that inside a mysql_affected_rows.

ref.:

http://no.php.net/manual/en/function.mysql-affected-rows.php

I usually do like so:

PSUEDOCODE

If (mysql_affected_rows() > 0) {
  ;
  printf ("\n\t<p>The data was stored with ID <strong>%s</strong></p>\n", mysql_insert_id());
  }
else {
  echo "\n\t<p>Failed to insert data, please try again.</p>\n";
}

I would also like to point out that your script is very open to SQL Injection.

Read here:

http://no2.php.net/mysql_real_escape_string

I recommend you to use the -Example #3 A "Best Practice" query-.

You can also leave out the php file from the action in the <form>, as it then will submit to self.

Maybe also have a dropdown list which asks something like "are you human?" or it might ask: 1+1= and the user has to choose 2 in the list. It might prevent spambots-registrations, if you care about such issues.

However, secure your SQL data..
Also look on

http://www.php.net,

search about functions:
trim
strip_tags
strtolower
ucfirst
htmlentities

If you make some coffe and read up on those functions, I'm sure you will make many great additions to your script

Olav Alexander Mjelde