Home/ Questions/Q 8462805
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-10T14:16:24+00:00

I created a function and it does not work. After staring at it for

  • 0

I created a function and it does not work. After staring at it for 15 minutes trying it different ways, I can’t get it to work. Can anyone tell me what is wrong with my syntax? The variable $user_id is a number and $input is a string. I’m aware that mysql is deprecated and it is something I’m working on. I just want to know what is wrong with the sql, because after all it is a sql issue. 

function insert_what_i_do( $user_id, $input) 
{
    if (mysql_result(mysql_query("SELECT `user_id` FROM `profile` WHERE `user_id` = $user_id"), 0) !== 1) 
    {
        mysql_query("INSERT INTO `profile` (user_id, what_i_do) VALUES ($user_id, '$input')");    
    } 
    else 
    {
        mysql_query("UPDATE `profile` SET `what_i_do` = '$input' WHERE `user_id` =  $user_id");
    }
};
Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    This is with plain MySQL, please take a good look on what I did there, and it’s not advisable to use mysql_* function anymore as they are deprecated. Note the quoted $input ?

    <?php
    function insert_what_i_do( $user_id, $input) {
        $input = mysql_real_escape_string($input);
        $query = mysql_query("SELECT `user_id` FROM `profile` WHERE `user_id` = '".(int)$user_id."'");
        $num = mysql_num_rows($query);
        if($num) {
            $query = mysql_query("UPDATE `profile` SET `what_i_do` = '".$input."' WHERE `user_id` =  '".(int)$user_id."'");
        } else {
            $query = mysql_query("INSERT INTO `profile` (`user_id`, `what_i_do`) VALUES ('".(int)$user_id."', '".$input."')");
        }
    }
?>

    You need to learn to use PDO:

    <?php
    $db = new PDO('mysql:host=localhost;dbname=testdb;charset=UTF-8', 'username', 'password', array(PDO::ATTR_EMULATE_PREPARES => false, PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION));
    function insert_what_i_do( $user_id, $input) {
        global $db;
        $stmt = $db->query("SELECT `user_id` FROM `profile` WHERE `user_id` = :user_id");
        $stmt->execute(array(':user_id' => $user_id));
        $num = $stmt->rowCount();
        if($num) {
            $stmt = $db->query("UPDATE `profile` SET `what_i_do` = :input WHERE `user_id` = :user_id");
            $stmt->execute(array(':user_id' => $user_id, ':input' => $input));
        } else {
            $stmt = $db->query("INSERT INTO `profile` (`user_id`, `what_i_do`) VALUES (:user_id, :input)");
            $stmt->execute(array(':user_id' => $user_id, ':input' => $input));
        }
    }
?>
    • 0