Sākums Izpētīt Palīdzība
Pierakstīties
sebastian
/
PackIt
1
0
Atdalīts 0
Faili Problēmas 0 Izmaiņu pieprasījumi 0 Vikivietne
Koks: 2c9d74bf68
Atzari Tagi
PackIt
/
submit_activities.php

submit_activities.php 1.8 KB
Vēsture Neapstrādāts

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 
  1. <?php
    2. 

  2. 

  3. // Database configuration
    4. 

  4. require_once '../config.php';
    5. 

  5. 

  6. try {
    7. 

  7.     // Establish a database connection using PDO
    8. 

  8.     $pdo = new PDO("mysql:host=$host;dbname=$dbname;charset=utf8", $username, $password, [
    9. 

  9.         PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION,
    10. 

  10.         PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC
    11. 

  11.     ]);
    12. 

  12. } catch (PDOException $e) {
    13. 

  13.     die("Database connection failed: " . $e->getMessage());
    14. 

  14. }
    15. 

  15. 

  16. // Retrieve and sanitize GET parameters
    17. 

  17. $activityIds = isset($_GET['activity_ids']) ? $_GET['activity_ids'] : '';
    18. 

  18. $activityIds = explode(',', $activityIds);
    19. 

  19. $sanitizedIds = [];
    20. 

  20. 

  21. foreach ($activityIds as $id) {
    22. 

  22.     if (ctype_digit($id) && (int)$id >= 0 && (int)$id <= 256) {
    23. 

  23.         $sanitizedIds[] = (int)$id;
    24. 

  24.     }
    25. 

  25. }
    26. 

  26. 

  27. if (empty($sanitizedIds)) {
    28. 

  28.     die("No valid activity IDs provided.");
    29. 

  29. }
    30. 

  30. 

  31. // Create a query to get itemIDs
    32. 

  32. $placeholders = implode(',', array_fill(0, count($sanitizedIds), '?'));
    33. 

  33. $sql = "SELECT itemID FROM item_activity_map WHERE activityID IN ($placeholders)";
    34. 

  34. $stmt = $pdo->prepare($sql);
    35. 

  35. $stmt->execute($sanitizedIds);
    36. 

  36. $itemIDs = $stmt->fetchAll(PDO::FETCH_COLUMN);
    37. 

  37. 

  38. if (empty($itemIDs)) {
    39. 

  39.     die("No matching item IDs found.");
    40. 

  40. }
    41. 

  41. 

  42. // Retrieve item names based on itemIDs
    43. 

  43. $placeholders = implode(',', array_fill(0, count($itemIDs), '?'));
    44. 

  44. $sql = "SELECT itemID, itemName FROM item_names WHERE itemID IN ($placeholders)";
    45. 

  45. $stmt = $pdo->prepare($sql);
    46. 

  46. $stmt->execute($itemIDs);
    47. 

  47. $items = $stmt->fetchAll();
    48. 

  48. 

  49. // Display results as HTML with checkboxes
    50. 

  50. echo "<form method='post' action='process_selection.php'>";
    51. 

  51. echo "<ul>";
    52. 

  52. foreach ($items as $item) {
    53. 

  53.     echo "<li><input type='checkbox' name='selected_items[]' value='" . htmlspecialchars($item['itemID']) . "'> " . htmlspecialchars($item['itemName']) . "</li>";
    54. 

  54. }
    55. 

  55. echo "</ul>";
    56. 

  56. echo "<button type='submit'>Submit</button>";
    57. 

  57. echo "</form>";
    58. 

  58. 

  59. ?>
    60.