Add all files

chapagain · chapagain · commit d8fbea5e5fa8 · 2015-03-17T19:11:12.000+05:45
diff --git a/README.md b/README.md
@@ -1 +1,11 @@
-# crud-php-complete
+Complete Create, Read, Update, Delete (CRUD) in PHP & MySQL
+========
+
+A complete CRUD system to add, edit, delete and view using PHP and MySQL. Complete in a sense that this system has login and register feature as well. I have another repository with [Simple CRUD System](https://github.com/chapagain/crud-php-simple) which doesn't have login and register feature.
+
+Blog Article: [CRUD Create, Read, Update, Delete in PHP & MySQL with Login & Register: A simple & complete tutorial](http://blog.chapagain.com.np/crud-create-read-update-delete-php-mysql-login-register/)
+
+At first, users need to register and login. After successful login, users can add their product data. Users can see only those data that they have added.
+
+SQL script to create database and tables is present in **database.sql** file.
+
diff --git a/add.html b/add.html
@@ -0,0 +1,32 @@
+<html>
+<head>
+	<title>Add Data</title>
+</head>
+
+<body>
+	<a href="index.php">Home</a> | <a href="view.php">View Products</a> | <a href="logout.php">Logout</a>
+	<br/><br/>
+
+	<form action="add.php" method="post" name="form1">
+		<table width="25%" border="0">
+			<tr> 
+				<td>Name</td>
+				<td><input type="text" name="name"></td>
+			</tr>
+			<tr> 
+				<td>Quantity</td>
+				<td><input type="text" name="qty"></td>
+			</tr>
+			<tr> 
+				<td>Price</td>
+				<td><input type="text" name="price"></td>
+			</tr>
+			<tr> 
+				<td></td>
+				<td><input type="submit" name="Submit" value="Add"></td>
+			</tr>
+		</table>
+	</form>
+</body>
+</html>
+
diff --git a/add.php b/add.php
@@ -0,0 +1,55 @@
+<?php session_start(); ?>
+
+<?php
+if(!isset($_SESSION['valid'])) {
+	header('Location: login.php');
+}
+?>
+
+<html>
+<head>
+	<title>Add Data</title>
+</head>
+
+<body>
+<?php
+//including the database connection file
+include_once("connection.php");
+
+if(isset($_POST['Submit'])) {	
+	$name = $_POST['name'];
+	$qty = $_POST['qty'];
+	$price = $_POST['price'];
+	$loginId = $_SESSION['id'];
+		
+	// checking empty fields
+	if(empty($name) || empty($qty) || empty($price)) {
+				
+		if(empty($name)) {
+			echo "<font color='red'>Name field is empty.</font><br/>";
+		}
+		
+		if(empty($qty)) {
+			echo "<font color='red'>Quantity field is empty.</font><br/>";
+		}
+		
+		if(empty($price)) {
+			echo "<font color='red'>Price field is empty.</font><br/>";
+		}
+		
+		//link to the previous page
+		echo "<br/><a href='javascript:self.history.back();'>Go Back</a>";
+	} else { 
+		// if all the fields are filled (not empty) 
+			
+		//insert data to database	
+		$result = mysql_query("INSERT INTO products(name, qty, price, login_id) VALUES('$name','$qty','$price', '$loginId')");
+		
+		//display success message
+		echo "<font color='green'>Data added successfully.";
+		echo "<br/><a href='view.php'>View Result</a>";
+	}
+}
+?>
+</body>
+</html>
diff --git a/connection.php b/connection.php
@@ -0,0 +1,10 @@
+<?php
+
+// mysql_connect("database-host", "username", "password")
+$conn = mysql_connect("localhost","root","root") 
+			or die("cannot connected");
+
+// mysql_select_db("database-name", "connection-link-identifier")
+@mysql_select_db("test2",$conn);
+	
+?>
diff --git a/database.sql b/database.sql
@@ -0,0 +1,24 @@
+create database `test2`;
+
+use `test2`;
+
+CREATE TABLE `login` (
+  `id` int(9) NOT NULL auto_increment,
+  `name` varchar(100) NOT NULL,
+  `email` varchar(100) NOT NULL,
+  `username` varchar(100) NOT NULL,
+  `password` varchar(100) NOT NULL,  
+  PRIMARY KEY  (`id`)
+) ENGINE=InnoDB;
+
+CREATE TABLE `products` (
+  `id` int(11) NOT NULL auto_increment,
+  `name` varchar(100) NOT NULL,
+  `qty` int(5) NOT NULL,
+  `price` decimal(10,2) NOT NULL,
+  `login_id` int(11) NOT NULL,
+  PRIMARY KEY  (`id`),
+  CONSTRAINT FK_products_1
+  FOREIGN KEY (login_id) REFERENCES login(id)
+  ON UPDATE CASCADE ON DELETE CASCADE
+) ENGINE=InnoDB;
diff --git a/delete.php b/delete.php
@@ -0,0 +1,22 @@
+<?php session_start(); ?>
+
+<?php
+if(!isset($_SESSION['valid'])) {
+	header('Location: login.php');
+}
+?>
+
+<?php
+//including the database connection file
+include("connection.php");
+
+//getting id of the data from url
+$id = $_GET['id'];
+
+//deleting the row from table
+$result=mysql_query("DELETE FROM products WHERE id=$id");
+
+//redirecting to the display page (view.php in our case)
+header("Location:view.php");
+?>
+
diff --git a/edit.php b/edit.php
@@ -0,0 +1,88 @@
+<?php session_start(); ?>
+
+<?php
+if(!isset($_SESSION['valid'])) {
+	header('Location: login.php');
+}
+?>
+
+<?php
+// including the database connection file
+include_once("connection.php");
+
+if(isset($_POST['update']))
+{	
+	$id = $_POST['id'];
+	
+	$name = $_POST['name'];
+	$qty = $_POST['qty'];
+	$price = $_POST['price'];	
+	
+	// checking empty fields
+	if(empty($name) || empty($qty) || empty($price)) {
+				
+		if(empty($name)) {
+			echo "<font color='red'>Name field is empty.</font><br/>";
+		}
+		
+		if(empty($qty)) {
+			echo "<font color='red'>Quantity field is empty.</font><br/>";
+		}
+		
+		if(empty($price)) {
+			echo "<font color='red'>Price field is empty.</font><br/>";
+		}		
+	} else {	
+		//updating the table
+		$result = mysql_query("UPDATE products SET name='$name', qty='$qty', price='$price' WHERE id=$id");
+		
+		//redirectig to the display page. In our case, it is view.php
+		header("Location: view.php");
+	}
+}
+?>
+<?php
+//getting id from url
+$id = $_GET['id'];
+
+//selecting data associated with this particular id
+$result = mysql_query("SELECT * FROM products WHERE id=$id");
+
+while($res = mysql_fetch_array($result))
+{
+	$name = $res['name'];
+	$qty = $res['qty'];
+	$price = $res['price'];
+}
+?>
+<html>
+<head>	
+	<title>Edit Data</title>
+</head>
+
+<body>
+	<a href="index.php">Home</a> | <a href="view.php">View Products</a> | <a href="logout.php">Logout</a>
+	<br/><br/>
+	
+	<form name="form1" method="post" action="edit.php">
+		<table border="0">
+			<tr> 
+				<td>Name</td>
+				<td><input type="text" name="name" value=<?php echo $name;?>></td>
+			</tr>
+			<tr> 
+				<td>Quantity</td>
+				<td><input type="text" name="qty" value=<?php echo $qty;?>></td>
+			</tr>
+			<tr> 
+				<td>Price</td>
+				<td><input type="text" name="price" value=<?php echo $price;?>></td>
+			</tr>
+			<tr>
+				<td><input type="hidden" name="id" value=<?php echo $_GET['id'];?>></td>
+				<td><input type="submit" name="update" value="Update"></td>
+			</tr>
+		</table>
+	</form>
+</body>
+</html>
diff --git a/index.php b/index.php
@@ -0,0 +1,32 @@
+<?php session_start(); ?>
+<html>
+<head>
+	<title>Homepage</title>
+	<link href="style.css" rel="stylesheet" type="text/css">
+</head>
+
+<body>
+	<div id="header">
+		Welcome to my page!
+	</div>
+	<?php
+	if(isset($_SESSION['valid'])) {			
+		include("connection.php");					
+		$result = mysql_query("SELECT * FROM login", $conn);
+	?>
+				
+		Welcome <?php echo $_SESSION['name'] ?> ! <a href='logout.php'>Logout</a><br/>
+		<br/>
+		<a href='view.php'>View and Add Products</a>
+		<br/><br/>
+	<?php	
+	} else {
+		echo "You must be logged in to view this page.<br/><br/>";
+		echo "<a href='login.php'>Login</a> | <a href='register.php'>Register</a>";
+	}
+	?>
+	<div id="footer">
+		Created by <a href="http://blog.chapagain.com.np" title="Mukesh Chapagain">Mukesh Chapagain</a>
+	</div>
+</body>
+</html>
diff --git a/login.php b/login.php
@@ -0,0 +1,64 @@
+<?php session_start(); ?>
+<html>
+<head>
+	<title>Login</title>
+</head>
+
+<body>
+<a href="index.php">Home</a> <br />
+<?php
+include("connection.php");
+
+if(isset($_POST['submit'])) {
+	$user = mysql_real_escape_string($_POST['username']);
+	$pass = mysql_real_escape_string($_POST['password']);
+
+	if($user == "" || $pass == "") {
+		echo "Either username or password field is empty.";
+		echo "<br/>";
+		echo "<a href='login.php'>Go back</a>";
+	} else {
+		$result = mysql_query("SELECT * FROM login WHERE username='$user' AND password=md5('$pass')",$conn)
+					or die("Could not execute the select query.");
+		
+		$row = mysql_fetch_assoc($result);
+		
+		if(is_array($row) && !empty($row)) {
+			$validuser = $row['username'];
+			$_SESSION['valid'] = $validuser;
+			$_SESSION['name'] = $row['name'];
+			$_SESSION['id'] = $row['id'];
+		} else {
+			echo "Invalid username or password.";
+			echo "<br/>";
+			echo "<a href='login.php'>Go back</a>";
+		}
+
+		if(isset($_SESSION['valid'])) {
+			header('Location: index.php');			
+		}
+	}
+} else {
+?>
+	<p><font size="+2">Login</font></p>
+	<form name="form1" method="post" action="">
+		<table width="75%" border="0">
+			<tr> 
+				<td width="10%">Username</td>
+				<td><input type="text" name="username"></td>
+			</tr>
+			<tr> 
+				<td>Password</td>
+				<td><input type="password" name="password"></td>
+			</tr>
+			<tr> 
+				<td>&nbsp;</td>
+				<td><input type="submit" name="submit" value="Submit"></td>
+			</tr>
+		</table>
+	</form>
+<?php
+}
+?>
+</body>
+</html>
diff --git a/logout.php b/logout.php
@@ -0,0 +1,5 @@
+<?php
+session_start();
+session_destroy();
+header("Location:index.php");
+?>
diff --git a/register.php b/register.php
diff --git a/style.css b/style.css
diff --git a/view.php b/view.php
