-
Notifications
You must be signed in to change notification settings - Fork 0
/
submitreview.php
84 lines (72 loc) · 2.19 KB
/
submitreview.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
<?php include 'pullasession.php';?>
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Review</title>
<link rel="stylesheet" href="pulla.css">
</head>
<header id="review-header">
<nav>
<h1>Submit a review</h1>
<div id="links">
<a href="pulla.php">Back to homepage</a>
<?php
if ($logged_in == false) {
echo "<a href='login.php'>Login to submit a review</a>";
} else {
echo "<a href='logout.php'> Log out </a>";
};
?>
</div>
</nav>
</header>
<body>
<?php
$name=$partoftown=$address=$date=$review="";
function test_inputs($data) {
$data = trim($data);
$data = stripslashes($data);
$data = htmlspecialchars($data);
return $data;
}
if($_SERVER['REQUEST_METHOD']=='POST') {
$name = test_inputs($_POST["bakeryname"]);
$partoftown = test_inputs($_POST["partoftown"]);
$address = test_inputs($_POST["address"]);
$date = test_inputs($_POST["date"]);
$review = test_inputs($_POST["review"]);
include "pullaconnect.php";
$query = "INSERT INTO reviews(bakeryname,partoftown,address,review,datereviewed)";
$query .= "VALUES ('$name', '$partoftown','$address','$review','$date')";
$result = mysqli_query($connection, $query);
if (!$result) {
die('Query insertion failed');
}
}
?>
<?php
if ($_SERVER['REQUEST_METHOD'] == "POST") {
echo 'Thank you for your review!';
} else {
?>
<form id="review-form" method="post">
<label for="bakery">Bakery</label>
<input type="text" id="bakery" name="bakeryname" maxlength="60" required>
<label for="address">Address</label>
<input type="text" id="address" name="address" maxlength="200"required>
<label for="partoftown">Part of town</label>
<input type="text" id="partoftown" name="partoftown" maxlength="120" required>
<label for="date">Date</label>
<input type="date" id="date" name="date" required>
<label for="review">Review</label>
<input type="text" id="review" name="review" maxlength="600"required>
<input type="submit" name="submit" value="Submit Review">
</form>
<?php
}
?>
</body>
</html>