php学习手记

<?php require_once('../Connections/db.php'); ?><br />
<?php<br />
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "") <br />
{<br />
$theValue = (!get_magic_quotes_gpc()) ? addslashes($theValue) : $theValue;<br />
<br />
switch ($theType) {<br />
case "text":<br />
$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";<br />
break; <br />
case "long":<br />
case "int":<br />
$theValue = ($theValue != "") ? intval($theValue) : "0";<br />
break;<br />
case "double":<br />
$theValue = ($theValue != "") ? "'" . doubleval($theValue) . "'" : "NULL";<br />
break;<br />
case "date":<br />
$theValue = ($theValue != "") ? "'" . $theValue . "'" : "now()";<br />
break;<br />
case "defined":<br />
$theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;<br />
break;<br />
}<br />
return $theValue;<br />
}<br />
<br />
/*下面是留言本数据库操作的版块<br />
edit为修改留言<br />
re为回复留言<br />
del为删除留言*/<br />
<br />
if ($_GET["edit"] == "book") {<br />
//echo $_POST['title'];<br />
//修改留言<br />
$updateSQL = sprintf("Update book SET title=%s, content=%s Where id=%s",<br />
GetSQLValueString($_POST['title'], "text"),<br />
GetSQLValueString($_POST['content'], "text"),<br />
GetSQLValueString($_POST['id'], "int"));<br />
mysql_select_db($database_db, $db);<br />
$Result1 = mysql_query($updateSQL, $db) or die(mysql_error());<br />
$updateGoTo = "adminbook.php";<br />
header(sprintf("Location: %s", $updateGoTo));<br />
}<br />
<br />
<br />
//回复留言<br />
if ($_GET['re']=="book"){<br />
$updateSQL = sprintf("Update book SET recon=%s Where id=%s",<br />
GetSQLValueString($_POST['recon'], "text"),<br />
GetSQLValueString($_POST['id'], "int"));<br />
mysql_select_db($database_db, $db);<br />
$Result1 = mysql_query($updateSQL, $db) or die(mysql_error());<br />
$updateGoTo = "adminbook.php";<br />
header(sprintf("Location: %s", $updateGoTo));<br />
}//回复留言结束了！<br />
<br />
<br />
//删除留言<br />
if ($_GET['del']=="book"){<br />
$deleteSQL = sprintf("Delete from book Where id=%s",<br />
GetSQLValueString($_GET['id'],"int"));<br />
mysql_select_db($database_db,$db);<br />
$Result = mysql_query($deleteSQL,$db) or die(mysql_error());<br />
$deleteGoTo="adminbook.php";<br />
header(sprintf("Location:%s",$deleteGoTo));<br />
}//删除留言结束<br />
<br />
<br />
<br />
/*下面是文章分类的数据库操作<br />
save是添加新记录<br />
edit是修改记录<br />
del是删除记录<br />
传递方法$_GET,$_POST*/<br />
<br />
if ($_GET['cat']=="save"){<br />
$insertSQL = sprintf("Insert INTO artcat (catname, list, pid, view, catcon, menu, ruby) VALUES (%s, %s, %s, %s, %s, %s, %s)",<br />
GetSQLValueString(htmlspecialchars($_POST['catname']), "text"), //分类名称<br />
GetSQLValueString($_POST['list'], "int"), //顺序<br />
GetSQLValueString($_POST['pid'], "int"), //父级分类<br />
GetSQLValueString($_POST['view'], "int"), //可视<br />
GetSQLValueString($_POST['catcon'], "text"), //分类说明<br />
GetSQLValueString($_POST['menu'],"int"), //前台导航显示<br />
GetSQLValueString($_POST['ruby'],"int")); //前台版块<br />
mysql_select_db($database_db,$db);<br />
$Result = mysql_query($insertSQL,$db) or die(mysql_error());<br />
$insertGoTo="adminartcat.php";<br />
header(sprintf("Location:%s",$insertGoTo));<br />
}//添加记录结束<br />
<br />
//修改保存记录开始<br />
if ($_GET['cat']=="edit"){<br />
$updateSQL = sprintf("Update artcat SET catname=%s, list=%s, pid=%s, view=%s, catcon=%s, menu=%s, ruby=%s Where id=%s",//view是关键字<br />
GetSQLValueString(htmlspecialchars($_POST['catname']), "text"),<br />
GetSQLValueString($_POST['list'], "int"),<br />
GetSQLValueString($_POST['pid'], "int"),<br />
GetSQLValueString(isset($_POST['view']) ? "true" : "", "defined","1","0"),<br />
GetSQLValueString($_POST['catcon'], "text"),<br />
GetSQLValueString(isset($_POST['menu']) ? "true" : "", "defined","1","0"),<br />
GetSQLValueString(isset($_POST['ruby']) ? "true" : "", "defined","1","0"),<br />
GetSQLValueString($_POST['id'], "int"));<br />
<br />
mysql_select_db($database_db, $db);<br />
$Result1 = mysql_query($updateSQL, $db) or die(mysql_error());<br />
$updateGoTo="adminartcat.php";<br />
header(sprintf("Location:%s",$updateGoTo));<br />
<br />
}//修改记录结束<br />
<br />
//删除分类<br />
if ($_GET['cat']=="del"){<br />
$deleteSQL = sprintf("Delete from artcat Where id=%s",<br />
GetSQLValueString($_GET['id'],"int"));<br />
mysql_select_db($database_db,$db);<br />
$Result = mysql_query($deleteSQL,$db) or die(mysql_error());<br />
$deleteGoTo="adminartcat.php";<br />
header(sprintf("Location:%s",$deleteGoTo));<br />
}//删除分类结束<br />
<br />
<br />
//2006年的06月16日在学校美术系机房开始了文章添加，本来没有打算去吃饭，后来小琴来了，就回去吃饭了！<br />
//现在以是15:33了，听着小湖的MP3开始这了这相近又相远的程序<br />
<br />
//下面是文章添加<br />
//ruby=save<br />
if ($_GET['ruby']=="save"){<br />
$insertSQL = sprintf("Insert INTO ruby (title, content, author, keyword, view, uptop, copyfrom, type, catid, time, url, picnews, photo) VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s)",<br />
GetSQLValueString(htmlspecialchars($_POST['title']), "text"),<br />
GetSQLValueString($_POST['content'], "text"),<br />
GetSQLValueString($_POST['author'], "text"),<br />
GetSQLValueString($_POST['keyword'], "text"),<br />
GetSQLValueString(isset($_POST['view']) ? "true" : "", "defined","1","0"),<br />
GetSQLValueString(isset($_POST['uptop']) ? "true" : "", "defined","1","0"),<br />
GetSQLValueString($_POST['copyfrom'], "text"),<br />
GetSQLValueString($_POST['type'], "text"),<br />
GetSQLValueString($_POST['catid'], "int"),<br />
GetSQLValueString($_POST['time'], "date"),<br />
GetSQLValueString($_POST['url'], "text"),<br />
GetSQLValueString(isset($_POST['picnews']) ? "true" : "", "defined","1","0"),<br />
GetSQLValueString($_POST['photo'], "text"));<br />
<br />
mysql_select_db($database_db, $db);<br />
$Result1 = mysql_query($insertSQL, $db) or die(mysql_error());<br />
$insertGoTo="adminruby.php";<br />
header(sprintf("Location:%s",$insertGoTo));<br />
}<br />
<br />
if ($_GET['ruby']=="edit"){<br />
$updateSQL = sprintf("Update ruby SET title=%s, content=%s, author=%s, keyword=%s, view=%s, uptop=%s, copyfrom=%s, type=%s, catid=%s, url=%s, picnews=%s, photo=%s Where id=%s",<br />
GetSQLValueString(htmlspecialchars($_POST['title']), "text"),<br />
GetSQLValueString($_POST['content'], "text"),<br />
GetSQLValueString($_POST['author'], "text"),<br />
GetSQLValueString($_POST['keyword'], "text"),<br />
GetSQLValueString(isset($_POST['view']) ? "true" : "", "defined","1","0"),<br />
GetSQLValueString(isset($_POST['uptop']) ? "true" : "", "defined","1","0"),<br />
GetSQLValueString($_POST['copyfrom'], "text"),<br />
GetSQLValueString($_POST['type'], "text"),<br />
GetSQLValueString($_POST['catid'], "int"),<br />
GetSQLValueString($_POST['url'], "text"),<br />
GetSQLValueString(isset($_POST['picnews']) ? "true" : "", "defined","1","0"),<br />
GetSQLValueString($_POST['photo'], "text"),<br />
GetSQLValueString($_POST['id'], "int"));<br />
<br />
mysql_select_db($database_db, $db);<br />
$Result1 = mysql_query($updateSQL, $db) or die(mysql_error());<br />
$updateGoTo="adminruby.php";<br />
header(sprintf("Location:%s",$updateGoTo));<br />
}//修改结束<br />
<br />
<br />
//删除文章<br />
if ($_GET['ruby']=="del"){<br />
$deleteSQL = sprintf("Delete from ruby Where id=%s",<br />
GetSQLValueString($_GET['id'],"int"));<br />
mysql_select_db($database_db,$db);<br />
$Result = mysql_query($deleteSQL,$db) or die(mysql_error());<br />
$deleteGoTo="adminruby.php";<br />
header(sprintf("Location:%s",$deleteGoTo));<br />
}//删除文章结束<br />
<br />
<br />
?><br />
<br />
<?php //把这个段放在最后面吧!因为一直都要调用数据库了<br />
mysql_free_result($rs);<br />
<br />
//GetSQLValueString这个函数是dw 里面产生的，还真是好用!我自己在里面加了一个now()呵 mysql支持 这样的话，就可以定义我们的时间了<br />
//htmlspecialchars这个是php里面就有一的一个函数！<将特殊字符转成 HTML 格式>。<br />
?><br />