PHPfrance

la communauté d'entraide francophone dédiée au PHP

php/mysql formulaire et conditions non respectée.

8 messages   •   Page 1 sur 1
   Outils de sujet
piotrowski-s
Mammouth du PHP | 702 Messages

19 mars 2012, 10:25

Bonjour à tous, je souhaites faire un formulaire d'édition des données de ma base mysql, j'ai donc générer mais formulaires qui s'affichent selon les informations qu'ils reçoivent, à savoir on affiche que les données qui nous intéressent grâce aux conditions if, elseif,.. etc... Jusque la, je n'ai pas de soucis, car les formulaires s'affichent bien en fonction des paramètres qu'ils reçoivent. Le soucis est lors de la sauvegarde. j'ai fait cette requête ci. Logiquement, il devrait pas y avoir d'erreur car lorsque les conditions ne sont pas vérifiées, alors il devrait passer a la suivante. et lui me teste tout et renvoit plein d'erreur, logique vu que certains champs sont vide ou même pas passée en Post puisque ne faisant pas partie des données éditables.

voici le code de la requête.
<meta name="generator" content="Namo WebEditor(Trial)">
<?php
session_start();  
// on vérifie toujours qu'il s'agit d'un membre qui est connecté
if (!isset($_SESSION['login'])) { 
   // si ce n'est pas le cas, on le redirige vers l'accueil
   header ('Location: ../index.php'); 
   exit();  
}  
?>

<?php require_once('Connections/localhost.php'); ?>
<?php
if (!function_exists("GetSQLValueString")) {
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "") 
{
  if (PHP_VERSION < 6) {
    $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
  }

  $theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);

  switch ($theType) {
    case "text":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;    
    case "long":
    case "int":
      $theValue = ($theValue != "") ? intval($theValue) : "NULL";
      break;
    case "double":
      $theValue = ($theValue != "") ? doubleval($theValue) : "NULL";
      break;
    case "date":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "defined":
      $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
      break;
  }
  return $theValue;
}
}

mysql_select_db($database_localhost, $localhost);
$query_rs_results = "SELECT * FROM creance";
$rs_results = mysql_query($query_rs_results, $localhost) or die(mysql_error());
$row_rs_results = mysql_fetch_assoc($rs_results);
$totalRows_rs_results = mysql_num_rows($rs_results);
?>

<?php
if (!function_exists("GetSQLValueString")) {
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "") 
{
  if (PHP_VERSION < 6) {
    $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
  }

  $theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);

  switch ($theType) {
    case "text":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;    
    case "long":
    case "int":
      $theValue = ($theValue != "") ? intval($theValue) : "NULL";
      break;
    case "double":
      $theValue = ($theValue != "") ? doubleval($theValue) : "NULL";
      break;
    case "date":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "defined":
      $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
      break;
  }
  return $theValue;
}
}

$maxRows_Recordset1 = 25;
$pageNum_Recordset1 = 0;
if (isset($_GET['pageNum_Recordset1'])) {
  $pageNum_Recordset1 = $_GET['pageNum_Recordset1'];
}
$startRow_Recordset1 = $pageNum_Recordset1 * $maxRows_Recordset1;

$colname_Recordset1 = "-1";
if (isset($_GET['n_doss'])) {
  $colname_Recordset1 = $_GET['n_doss'];
}
mysql_select_db($database_localhost, $localhost);
$query_Recordset1 = sprintf("SELECT * FROM creance WHERE code_client LIKE %s OR id LIKE %s OR n_doss LIKE %s OR ref_client  LIKE %s OR raison_sociale  LIKE %s OR siret  LIKE %s OR nom  LIKE %s OR prenom  LIKE %s OR principal  LIKE %s OR solde_restant_du  LIKE %s", GetSQLValueString($colname_Recordset1, "text"),GetSQLValueString($colname_Recordset1, "text"),GetSQLValueString($colname_Recordset1, "text"),GetSQLValueString($colname_Recordset1, "text"),GetSQLValueString($colname_Recordset1, "text"),GetSQLValueString($colname_Recordset1,
"text"),GetSQLValueString($colname_Recordset1, "text"),GetSQLValueString($colname_Recordset1, "text"),GetSQLValueString($colname_Recordset1, "text"),GetSQLValueString($colname_Recordset1, "text"));
$query_limit_Recordset1 = sprintf("%s LIMIT %d, %d", $query_Recordset1, $startRow_Recordset1, $maxRows_Recordset1);
$Recordset1 = mysql_query($query_limit_Recordset1, $localhost) or die(mysql_error());

$row_Recordset1 = mysql_fetch_assoc($Recordset1);

if (isset($_GET['totalRows_Recordset1'])) {
  $totalRows_Recordset1 = $_GET['totalRows_Recordset1'];
} else {
  $all_Recordset1 = mysql_query($query_Recordset1);
  $totalRows_Recordset1 = mysql_num_rows($all_Recordset1);
}
$totalPages_Recordset1 = ceil($totalRows_Recordset1/$maxRows_Recordset1)-1;


?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"[]>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US" xml:lang="en">
<head>
    <!--
    Created by Artisteer v3.1.0.48375
    Base template (without user's data) checked by http://validator.w3.org : "This page is valid XHTML 1.0 Transitional"
    -->
    <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
    <title>Les d&eacute;biteurs</title>
    <meta name="description" content="Logiciel professionel pour le recouvrement de créance. Getcash est une marque déposée par le groupe Progeris auprès de l'INPI" />



    <link rel="stylesheet" href="style.css" type="text/css" media="screen" />
    <!--[if IE 6]><link rel="stylesheet" href="style.ie6.css" type="text/css" media="screen" /><![endif]-->
    <!--[if IE 7]><link rel="stylesheet" href="style.ie7.css" type="text/css" media="screen" /><![endif]-->
<link rel="shortcut icon" href="favicon.ico" type="image/x-icon" />
<script language="JavaScript">
<!--
function na_open_window(name, url, left, top, width, height, toolbar, menubar, statusbar, scrollbar, resizable)
{
  toolbar_str = toolbar ? 'yes' : 'no';
  menubar_str = menubar ? 'yes' : 'no';
  statusbar_str = statusbar ? 'yes' : 'no';
  scrollbar_str = scrollbar ? 'yes' : 'no';
  resizable_str = resizable ? 'yes' : 'no';

  cookie_str = document.cookie;
  cookie_str.toString();

  pos_start  = cookie_str.indexOf(name);
  pos_end    = cookie_str.indexOf('=', pos_start);

  cookie_name = cookie_str.substring(pos_start, pos_end);

  pos_start  = cookie_str.indexOf(name);
  pos_start  = cookie_str.indexOf('=', pos_start);
  pos_end    = cookie_str.indexOf(';', pos_start);
  
  if (pos_end <= 0) pos_end = cookie_str.length;
  cookie_val = cookie_str.substring(pos_start + 1, pos_end);
  if (cookie_name == name && cookie_val  == "done")
    return;
  var left_adj, top_adj;
  left_adj = left;
  top_adj = top;  
  if (left_adj == 0) {
    left_adj = (screen.width / 2) - (width / 2);
  }
  if (top_adj == 0) {
    top_adj = (screen.height / 2)-(height / 2);
  }
  window.open(url, name, 'left='+left_adj+',top='+top_adj+',width='+width+',height='+height+',toolbar='+toolbar_str+',menubar='+menubar_str+',status='+statusbar_str+',scrollbars='+scrollbar_str+',resizable='+resizable_str);

//  window.open(url, name, 'left='+left+',top='+top+',width='+width+',height='+height+',toolbar='+toolbar_str+',menubar='+menubar_str+',status='+statusbar_str+',scrollbars='+scrollbar_str+',resizable='+resizable_str);
}

// -->
</script>
<script src="javascripts/jquery-1.4.4.min.js?1298243815" type="text/javascript"></script>
<script src="javascripts/rails.js?1298243815" type="text/javascript"></script>
<script src="javascripts/jquery.purr.js?1298243815" type="text/javascript"></script>
<script src="javascripts/best_in_place.js?1298243815" type="text/javascript"></script>
<script src="javascripts/application.js?1298243815" type="text/javascript"></script>
    <script type="text/javascript" src="script.js"></script>

  
    <style type="text/css">
       
        .on-bord
        {
               
              padding:0; 
              border: none; 
               
        }
		.left{
float:left;
width:120px;}

#ajax{
float:left;
width:300px;
padding-top:5px;
font-weight:700;
}

.clear{clear:both;}

.cash-post .layout-item-0 { color: #000000; background:url(images/65d66.png) repeat; }
.cash-post .layout-item-1 { color: #000000; padding-right: 10px;padding-left: 10px; }
.cash-post .layout-item-2 { color: #000000; background:repeat #FFFFFF; }
   .ie7 .cash-post .cash-layout-cell {border:none !important; padding:0 !important; }
   .ie6 .cash-post .cash-layout-cell {border:none !important; padding:0 !important; }
   </style>

</head>

<body link="#029281" vlink="#029281" alink="#FF0000" bgcolor="white" text="black" link="blue" vlink="purple" alink="red" background="images\seyesjpg.jpg">
<p align="center"><?php 
$sql = 'SELECT * FROM creance where n_doss='.$_POST['n_doss'].'';
$result = mysql_query($sql) or die(__LINE__.mysql_error().$sql); 
?>
                  <?php
      $user = mysql_fetch_assoc($result)
      
        ?><?php if ($_POST['qualite']==$user['qualite'] AND  $user['type']='commerciale')  { ?><?php
$sql = 'UPDATE  creance SET  qualite = "'.mysql_real_escape_string($_POST['qualite']).'", raison_sociale = "'.mysql_real_escape_string($_POST['raison_sociale']).'", siret = "'.mysql_real_escape_string($_POST['siret']).'", nom="'.mysql_real_escape_string($_POST['nom']).'" , prenom ="'.mysql_real_escape_string($_POST['prenom']).'" , date_naissance ="'.mysql_real_escape_string($_POST['date_naissance']).'" , lieue_naissance  ="'.mysql_real_escape_string($_POST['lieue_naissance']).'" , profession  ="'.mysql_real_escape_string($_POST['profession']).'" , adresse  ="'.mysql_real_escape_string($_POST['adresse']).'" , adresse2  ="'.mysql_real_escape_string($_POST['adresse2']).'" , ville  ="'.mysql_real_escape_string($_POST['ville']).'" , code_postal  ="'.mysql_real_escape_string($_POST['code_postal']).'" , pays  ="'.mysql_real_escape_string($_POST['pays']).'" , tel  ="'.mysql_real_escape_string($_POST['tel']).'" , fax  ="'.mysql_real_escape_string($_POST['fax']).'" , `e-mail`  ="'.mysql_real_escape_string($_POST['e-mail']).'" , nature  ="'.mysql_real_escape_string($_POST['nature']).'" , etat  ="'.mysql_real_escape_string($_POST['etat']).'", iban1  ="'.mysql_real_escape_string($_POST['iban1']).'", iban2  ="'.mysql_real_escape_string($_POST['iban2']).'", iban3  ="'.mysql_real_escape_string($_POST['iban3']).'", bic1  ="'.mysql_real_escape_string($_POST['bic1']).'", bic2  ="'.mysql_real_escape_string($_POST['bic2']).'", bic3  ="'.mysql_real_escape_string($_POST['bic3']).'"  WHERE  n_doss="'.mysql_real_escape_string($_POST['n_doss']).'"' ;
                    


mysql_query($sql) or die(__LINE__.mysql_error().$sql);

echo "<h2><p align='center' />données insérées avec succès </h2><br /> <br /> <br /> <br / ><br /><A href=\"javascript:window.close('_blank');\">Vous pouvez fermer cette fenêtre <img src='images/close.png' /></A> </p> ";
?>
</p>

<?php } elseif ($_POST['qualite']==$user['qualite'] AND  $user['type']='civile')  { ?><?php
$sql = 'UPDATE  creance SET  qualite = "'.mysql_real_escape_string($_POST['qualite']).'", nom="'.mysql_real_escape_string($_POST['nom']).'" , prenom ="'.mysql_real_escape_string($_POST['prenom']).'" , date_naissance ="'.mysql_real_escape_string($_POST['date_naissance']).'" , lieue_naissance  ="'.mysql_real_escape_string($_POST['lieue_naissance']).'" , profession  ="'.mysql_real_escape_string($_POST['profession']).'" , adresse  ="'.mysql_real_escape_string($_POST['adresse']).'" , adresse2  ="'.mysql_real_escape_string($_POST['adresse2']).'" , ville  ="'.mysql_real_escape_string($_POST['ville']).'" , code_postal  ="'.mysql_real_escape_string($_POST['code_postal']).'" , pays  ="'.mysql_real_escape_string($_POST['pays']).'" , tel  ="'.mysql_real_escape_string($_POST['tel']).'" , fax  ="'.mysql_real_escape_string($_POST['fax']).'" , `e-mail`  ="'.mysql_real_escape_string($_POST['e-mail']).'" , nature  ="'.mysql_real_escape_string($_POST['nature']).'" , etat  ="'.mysql_real_escape_string($_POST['etat']).'", iban1  ="'.mysql_real_escape_string($_POST['iban1']).'", iban2  ="'.mysql_real_escape_string($_POST['iban2']).'", iban3  ="'.mysql_real_escape_string($_POST['iban3']).'", bic1  ="'.mysql_real_escape_string($_POST['bic1']).'", bic2  ="'.mysql_real_escape_string($_POST['bic2']).'", bic3  ="'.mysql_real_escape_string($_POST['bic3']).'"  WHERE  n_doss="'.mysql_real_escape_string($_POST['n_doss']).'"' ;
                    


mysql_query($sql) or die(__LINE__.mysql_error().$sql);

echo "<h2><p align='center' />données insérées avec succès </h2><br /> <br /> <br /> <br / ><br /><A href=\"javascript:window.close('_blank');\">Vous pouvez fermer cette fenêtre <img src='images/close.png' /></A> </p> ";
?>
</p><?php } elseif ($_POST['qualite2']==$user['qualite2'] AND  $user['type']='commerciale')  { ?><?php
$sql = 'UPDATE  creance SET  `qualite2` = "'.mysql_real_escape_string($_POST['qualite2']).'", `raison_sociale2` = "'.mysql_real_escape_string($_POST['raison_sociale2']).'", `siret2` = "'.mysql_real_escape_string($_POST['siret2']).'", `nom2`="'.mysql_real_escape_string($_POST['nom2']).'" , `prenom2` ="'.mysql_real_escape_string($_POST['prenom2']).'" , `date_naissance2` ="'.mysql_real_escape_string($_POST['date_naissance2']).'" , `lieue_naissance2`  ="'.mysql_real_escape_string($_POST['lieue_naissance2']).'" , `profession2`  ="'.mysql_real_escape_string($_POST['profession2']).'" , `adresse-2`  ="'.mysql_real_escape_string($_POST['adresse-2']).'" , `adresse2-2`  ="'.mysql_real_escape_string($_POST['adresse2-2']).'" , `ville2`  ="'.mysql_real_escape_string($_POST['ville2']).'" , `code_postal2`  ="'.mysql_real_escape_string($_POST['code_postal2']).'" , `pays2`  ="'.mysql_real_escape_string($_POST['pays2']).'" , `tel2`  ="'.mysql_real_escape_string($_POST['tel2']).'" , `fax2`  ="'.mysql_real_escape_string($_POST['fax2']).'" , `e-mail2`  ="'.mysql_real_escape_string($_POST['e-mail2']).'" , `nature`  ="'.mysql_real_escape_string($_POST['nature']).'" , `etat2`  ="'.mysql_real_escape_string($_POST['etat2']).'", `iban1-2`  ="'.mysql_real_escape_string($_POST['iban1-2']).'", `iban2-2`  ="'.mysql_real_escape_string($_POST['iban2-2']).'", `iban3-2`  ="'.mysql_real_escape_string($_POST['iban3-2']).'", `bic1-2`  ="'.mysql_real_escape_string($_POST['bic1-2']).'", `bic2-2`  ="'.mysql_real_escape_string($_POST['bic2-2']).'", `bic3-2`  ="'.mysql_real_escape_string($_POST['bic3-2']).'"  WHERE  n_doss="'.mysql_real_escape_string($_POST['n_doss']).'"' ;
                    


mysql_query($sql) or die(__LINE__.mysql_error().$sql);

echo "<h2><p align='center' />données insérées avec succès </h2><br /> <br /> <br /> <br / ><br /><A href=\"javascript:window.close('_blank');\">Vous pouvez fermer cette fenêtre <img src='images/close.png' /></A> </p> ";
?>
</p>

<?php }elseif ($_POST['qualite2']==$user['qualite2'] AND  $user['type']='civile')  { ?><?php
$sql = 'UPDATE  creance SET  `qualite2` = "'.mysql_real_escape_string($_POST['qualite2']).'", `nom2`="'.mysql_real_escape_string($_POST['nom2']).'" , `prenom2` ="'.mysql_real_escape_string($_POST['prenom2']).'" , `date_naissance2` ="'.mysql_real_escape_string($_POST['date_naissance2']).'" , `lieue_naissance2`  ="'.mysql_real_escape_string($_POST['lieue_naissance2']).'" , `profession2`  ="'.mysql_real_escape_string($_POST['profession2']).'" , `adresse-2`  ="'.mysql_real_escape_string($_POST['adresse-2']).'" , `adresse2-2`  ="'.mysql_real_escape_string($_POST['adresse2-2']).'" , `ville2`  ="'.mysql_real_escape_string($_POST['ville2']).'" , `code_postal2`  ="'.mysql_real_escape_string($_POST['code_postal2']).'" , `pays2`  ="'.mysql_real_escape_string($_POST['pays2']).'" , `tel2`  ="'.mysql_real_escape_string($_POST['tel2']).'" , `fax2`  ="'.mysql_real_escape_string($_POST['fax2']).'" , `e-mail2`  ="'.mysql_real_escape_string($_POST['e-mail2']).'" , `nature`  ="'.mysql_real_escape_string($_POST['nature']).'" , `etat2`  ="'.mysql_real_escape_string($_POST['etat2']).'", `iban1-2`  ="'.mysql_real_escape_string($_POST['iban1-2']).'", `iban2-2`  ="'.mysql_real_escape_string($_POST['iban2-2']).'", `iban3-2`  ="'.mysql_real_escape_string($_POST['iban3-2']).'", `bic1-2`  ="'.mysql_real_escape_string($_POST['bic1-2']).'", `bic2-2`  ="'.mysql_real_escape_string($_POST['bic2-2']).'", `bic3-2`  ="'.mysql_real_escape_string($_POST['bic3-2']).'"  WHERE  n_doss="'.mysql_real_escape_string($_POST['n_doss']).'"' ;
                    


mysql_query($sql) or die(__LINE__.mysql_error().$sql);

echo "<h2><p align='center' />données insérées avec succès </h2><br /> <br /> <br /> <br / ><br /><A href=\"javascript:window.close('_blank');\">Vous pouvez fermer cette fenêtre <img src='images/close.png' /></A> </p> ";
?><?php } elseif ($_POST['qualite3']==$user['qualite3'] AND  $user['type']='commerciale')  { ?><?php
$sql = 'UPDATE  creance SET  `qualite3` = "'.mysql_real_escape_string($_POST['qualite3']).'", `raison_sociale3` = "'.mysql_real_escape_string($_POST['raison_sociale3']).'", `siret3` = "'.mysql_real_escape_string($_POST['siret3']).'", `nom3`="'.mysql_real_escape_string($_POST['nom3']).'" , `prenom3` ="'.mysql_real_escape_string($_POST['prenom3']).'" , `date_naissance3` ="'.mysql_real_escape_string($_POST['date_naissance3']).'" , `lieue_naissance3`  ="'.mysql_real_escape_string($_POST['lieue_naissance3']).'" , `profession3`  ="'.mysql_real_escape_string($_POST['profession3']).'" , `adresse-3`  ="'.mysql_real_escape_string($_POST['adresse-3']).'" , `adresse2-3`  ="'.mysql_real_escape_string($_POST['adresse2-3']).'" , `ville3`  ="'.mysql_real_escape_string($_POST['ville3']).'" , `code_postal3`  ="'.mysql_real_escape_string($_POST['code_postal3']).'" , `pays3`  ="'.mysql_real_escape_string($_POST['pays3']).'" , `tel3`  ="'.mysql_real_escape_string($_POST['tel3']).'" , `fax3`  ="'.mysql_real_escape_string($_POST['fax3']).'" , `e-mail3`  ="'.mysql_real_escape_string($_POST['e-mail3']).'" , `nature`  ="'.mysql_real_escape_string($_POST['nature']).'" , `etat3`  ="'.mysql_real_escape_string($_POST['etat3']).'", `iban1-3`  ="'.mysql_real_escape_string($_POST['iban1-3']).'", `iban2-3`  ="'.mysql_real_escape_string($_POST['iban2-3']).'", `iban3-3`  ="'.mysql_real_escape_string($_POST['iban3-3']).'", `bic1-3`  ="'.mysql_real_escape_string($_POST['bic1-3']).'", `bic2-3`  ="'.mysql_real_escape_string($_POST['bic2-3']).'", `bic3-3`  ="'.mysql_real_escape_string($_POST['bic3-3']).'"  WHERE  n_doss="'.mysql_real_escape_string($_POST['n_doss']).'"' ;
                    


mysql_query($sql) or die(__LINE__.mysql_error().$sql);

echo "<h2><p align='center' />données insérées avec succès </h2><br /> <br /> <br /> <br / ><br /><A href=\"javascript:window.close('_blank');\">Vous pouvez fermer cette fenêtre <img src='images/close.png' /></A> </p> ";
?>
</p>

<?php }elseif ($_POST['qualite3']==$user['qualite3'] AND  $user['type']='civile')  { ?><?php
$sql = 'UPDATE  creance SET  `qualite3` = "'.mysql_real_escape_string($_POST['qualite3']).'", `nom3`="'.mysql_real_escape_string($_POST['nom3']).'" , `prenom3` ="'.mysql_real_escape_string($_POST['prenom3']).'" , `date_naissance3` ="'.mysql_real_escape_string($_POST['date_naissance3']).'" , `lieue_naissance3`  ="'.mysql_real_escape_string($_POST['lieue_naissance3']).'" , `profession3`  ="'.mysql_real_escape_string($_POST['profession3']).'" , `adresse-3`  ="'.mysql_real_escape_string($_POST['adresse-3']).'" , `adresse2-3`  ="'.mysql_real_escape_string($_POST['adresse2-3']).'" , `ville3`  ="'.mysql_real_escape_string($_POST['ville3']).'" , `code_postal3`  ="'.mysql_real_escape_string($_POST['code_postal3']).'" , `pays3`  ="'.mysql_real_escape_string($_POST['pays3']).'" , `tel3`  ="'.mysql_real_escape_string($_POST['tel3']).'" , `fax3`  ="'.mysql_real_escape_string($_POST['fax3']).'" , `e-mail3`  ="'.mysql_real_escape_string($_POST['e-mail3']).'" , `nature`  ="'.mysql_real_escape_string($_POST['nature']).'" , `etat3`  ="'.mysql_real_escape_string($_POST['etat3']).'", `iban1-3`  ="'.mysql_real_escape_string($_POST['iban1-3']).'", `iban2-3`  ="'.mysql_real_escape_string($_POST['iban2-3']).'", `iban3-3`  ="'.mysql_real_escape_string($_POST['iban3-3']).'", `bic1-3`  ="'.mysql_real_escape_string($_POST['bic1-3']).'", `bic2-3`  ="'.mysql_real_escape_string($_POST['bic2-3']).'", `bic3-3`  ="'.mysql_real_escape_string($_POST['bic3-3']).'"  WHERE  n_doss="'.mysql_real_escape_string($_POST['n_doss']).'"' ;
                    


mysql_query($sql) or die(__LINE__.mysql_error().$sql);

echo "<h2><p align='center' />données insérées avec succès </h2><br /> <br /> <br /> <br / ><br /><A href=\"javascript:window.close('_blank');\">Vous pouvez fermer cette fenêtre <img src='images/close.png' /></A> </p> ";
?>


<?php } elseif ($_POST['qualite4']==$user['qualite4'] AND  $user['type']='commerciale')  { ?><?php
$sql = 'UPDATE  creance SET  `qualite4` = "'.mysql_real_escape_string($_POST['qualite4']).'", `raison_sociale4` = "'.mysql_real_escape_string($_POST['raison_sociale4']).'", `siret4` = "'.mysql_real_escape_string($_POST['siret4']).'", `nom4`="'.mysql_real_escape_string($_POST['nom4']).'" , `prenom4` ="'.mysql_real_escape_string($_POST['prenom4']).'" , `date_naissance4` ="'.mysql_real_escape_string($_POST['date_naissance4']).'" , `lieue_naissance4`  ="'.mysql_real_escape_string($_POST['lieue_naissance4']).'" , `profession4`  ="'.mysql_real_escape_string($_POST['profession4']).'" , `adresse-4`  ="'.mysql_real_escape_string($_POST['adresse-4']).'" , `adresse2-4`  ="'.mysql_real_escape_string($_POST['adresse2-4']).'" , `ville4`  ="'.mysql_real_escape_string($_POST['ville4']).'" , `code_postal4`  ="'.mysql_real_escape_string($_POST['code_postal4']).'" , `pays4`  ="'.mysql_real_escape_string($_POST['pays4']).'" , `tel4`  ="'.mysql_real_escape_string($_POST['tel4']).'" , `fax4`  ="'.mysql_real_escape_string($_POST['fax4']).'" , `e-mail4`  ="'.mysql_real_escape_string($_POST['e-mail4']).'" , `nature`  ="'.mysql_real_escape_string($_POST['nature']).'" , `etat4`  ="'.mysql_real_escape_string($_POST['etat4']).'", `iban1-4`  ="'.mysql_real_escape_string($_POST['iban1-4']).'", `iban2-4`  ="'.mysql_real_escape_string($_POST['iban2-4']).'", `iban3-4`  ="'.mysql_real_escape_string($_POST['iban3-4']).'", `bic1-4`  ="'.mysql_real_escape_string($_POST['bic1-4']).'", `bic2-4`  ="'.mysql_real_escape_string($_POST['bic2-4']).'", `bic3-4`  ="'.mysql_real_escape_string($_POST['bic3-4']).'"  WHERE  n_doss="'.mysql_real_escape_string($_POST['n_doss']).'"' ;
                    


mysql_query($sql) or die(__LINE__.mysql_error().$sql);

echo "<h2><p align='center' />données insérées avec succès </h2><br /> <br /> <br /> <br / ><br /><A href=\"javascript:window.close('_blank');\">Vous pouvez fermer cette fenêtre <img src='images/close.png' /></A> </p> ";
?>
</p>

<?php }elseif ($_POST['qualite4']==$user['qualite4'] AND  $user['type']='civile')  { ?><?php
$sql = 'UPDATE  creance SET  `qualite4` = "'.mysql_real_escape_string($_POST['qualite4']).'", `nom4`="'.mysql_real_escape_string($_POST['nom4']).'" , `prenom4` ="'.mysql_real_escape_string($_POST['prenom4']).'" , `date_naissance4` ="'.mysql_real_escape_string($_POST['date_naissance4']).'" , `lieue_naissance4`  ="'.mysql_real_escape_string($_POST['lieue_naissance4']).'" , `profession4`  ="'.mysql_real_escape_string($_POST['profession4']).'" , `adresse-4`  ="'.mysql_real_escape_string($_POST['adresse-4']).'" , `adresse2-4`  ="'.mysql_real_escape_string($_POST['adresse2-4']).'" , `ville4`  ="'.mysql_real_escape_string($_POST['ville4']).'" , `code_postal4`  ="'.mysql_real_escape_string($_POST['code_postal4']).'" , `pays4`  ="'.mysql_real_escape_string($_POST['pays4']).'" , `tel4`  ="'.mysql_real_escape_string($_POST['tel4']).'" , `fax4`  ="'.mysql_real_escape_string($_POST['fax4']).'" , `e-mail4`  ="'.mysql_real_escape_string($_POST['e-mail4']).'" , `nature`  ="'.mysql_real_escape_string($_POST['nature']).'" , `etat4`  ="'.mysql_real_escape_string($_POST['etat4']).'", `iban1-4`  ="'.mysql_real_escape_string($_POST['iban1-4']).'", `iban2-4`  ="'.mysql_real_escape_string($_POST['iban2-4']).'", `iban3-4`  ="'.mysql_real_escape_string($_POST['iban3-4']).'", `bic1-4`  ="'.mysql_real_escape_string($_POST['bic1-4']).'", `bic2-4`  ="'.mysql_real_escape_string($_POST['bic2-4']).'", `bic3-4`  ="'.mysql_real_escape_string($_POST['bic3-4']).'"  WHERE  n_doss="'.mysql_real_escape_string($_POST['n_doss']).'"' ;
                    


mysql_query($sql) or die(__LINE__.mysql_error().$sql);

echo "<h2><p align='center' />données insérées avec succès </h2><br /> <br /> <br /> <br / ><br /><A href=\"javascript:window.close('_blank');\">Vous pouvez fermer cette fenêtre <img src='images/close.png' /></A> </p> ";
?>




<?php } elseif ($_POST['qualite5']==$user['qualite5'] AND  $user['type']='commerciale')  { ?><?php
$sql = 'UPDATE  creance SET  `qualite5` = "'.mysql_real_escape_string($_POST['qualite5']).'", `raison_sociale5` = "'.mysql_real_escape_string($_POST['raison_sociale5']).'", `siret5` = "'.mysql_real_escape_string($_POST['siret5']).'", `nom5`="'.mysql_real_escape_string($_POST['nom5']).'" , `prenom5` ="'.mysql_real_escape_string($_POST['prenom5']).'" , `date_naissance5` ="'.mysql_real_escape_string($_POST['date_naissance5']).'" , `lieue_naissance5`  ="'.mysql_real_escape_string($_POST['lieue_naissance5']).'" , `profession5`  ="'.mysql_real_escape_string($_POST['profession5']).'" , `adresse-5`  ="'.mysql_real_escape_string($_POST['adresse-5']).'" , `adresse2-5`  ="'.mysql_real_escape_string($_POST['adresse2-5']).'" , `ville5`  ="'.mysql_real_escape_string($_POST['ville5']).'" , `code_postal5`  ="'.mysql_real_escape_string($_POST['code_postal5']).'" , `pays5`  ="'.mysql_real_escape_string($_POST['pays5']).'" , `tel5`  ="'.mysql_real_escape_string($_POST['tel5']).'" , `fax5`  ="'.mysql_real_escape_string($_POST['fax5']).'" , `e-mail5`  ="'.mysql_real_escape_string($_POST['e-mail5']).'" , `nature`  ="'.mysql_real_escape_string($_POST['nature']).'" , `etat5`  ="'.mysql_real_escape_string($_POST['etat5']).'", `iban1-5`  ="'.mysql_real_escape_string($_POST['iban1-5']).'", `iban2-5`  ="'.mysql_real_escape_string($_POST['iban2-5']).'", `iban3-5`  ="'.mysql_real_escape_string($_POST['iban3-5']).'", `bic1-5`  ="'.mysql_real_escape_string($_POST['bic1-5']).'", `bic2-5`  ="'.mysql_real_escape_string($_POST['bic2-5']).'", `bic3-5`  ="'.mysql_real_escape_string($_POST['bic3-5']).'"  WHERE  n_doss="'.mysql_real_escape_string($_POST['n_doss']).'"' ;
                    


mysql_query($sql) or die(__LINE__.mysql_error().$sql);

echo "<h2><p align='center' />données insérées avec succès </h2><br /> <br /> <br /> <br / ><br /><A href=\"javascript:window.close('_blank');\">Vous pouvez fermer cette fenêtre <img src='images/close.png' /></A> </p> ";
?>
</p>

<?php }elseif ($_POST['qualite5']==$user['qualite5'] AND  $user['type']='civile')  { ?><?php
$sql = 'UPDATE  creance SET  `qualite5` = "'.mysql_real_escape_string($_POST['qualite5']).'", `nom5`="'.mysql_real_escape_string($_POST['nom5']).'" , `prenom5` ="'.mysql_real_escape_string($_POST['prenom5']).'" , `date_naissance5` ="'.mysql_real_escape_string($_POST['date_naissance5']).'" , `lieue_naissance5`  ="'.mysql_real_escape_string($_POST['lieue_naissance5']).'" , `profession5`  ="'.mysql_real_escape_string($_POST['profession5']).'" , `adresse-5`  ="'.mysql_real_escape_string($_POST['adresse-5']).'" , `adresse2-5`  ="'.mysql_real_escape_string($_POST['adresse2-5']).'" , `ville5`  ="'.mysql_real_escape_string($_POST['ville5']).'" , `code_postal5`  ="'.mysql_real_escape_string($_POST['code_postal5']).'" , `pays5`  ="'.mysql_real_escape_string($_POST['pays5']).'" , `tel5`  ="'.mysql_real_escape_string($_POST['tel5']).'" , `fax5`  ="'.mysql_real_escape_string($_POST['fax5']).'" , `e-mail5`  ="'.mysql_real_escape_string($_POST['e-mail5']).'" , `nature`  ="'.mysql_real_escape_string($_POST['nature']).'" , `etat5`  ="'.mysql_real_escape_string($_POST['etat5']).'", `iban1-5`  ="'.mysql_real_escape_string($_POST['iban1-5']).'", `iban2-5`  ="'.mysql_real_escape_string($_POST['iban2-5']).'", `iban3-5`  ="'.mysql_real_escape_string($_POST['iban3-5']).'", `bic1-5`  ="'.mysql_real_escape_string($_POST['bic1-5']).'", `bic2-5`  ="'.mysql_real_escape_string($_POST['bic2-5']).'", `bic3-5`  ="'.mysql_real_escape_string($_POST['bic3-5']).'"  WHERE  n_doss="'.mysql_real_escape_string($_POST['n_doss']).'"' ;
                    


mysql_query($sql) or die(__LINE__.mysql_error().$sql);

echo "<h2><p align='center' />données insérées avec succès </h2><br /> <br /> <br /> <br / ><br /><A href=\"javascript:window.close('_blank');\">Vous pouvez fermer cette fenêtre <img src='images/close.png' /></A> </p> ";
?>
<?php } ?>
</body>

</html>
cela me renvoit plein d'erreurs.
ViPHP
xTG
ViPHP | 7331 Messages

19 mars 2012, 11:14

Oui tu utilises directement les valeurs de $_POST sans même vérifier qu'elles existent.
Regardes du côté de la fonction isSet() pour faire ce test. ;)
Mammouth du PHP | 702 Messages

19 mars 2012, 11:23

j'ai tout remplacé par le modèle standard ci dessous (adapté à chaque ligne), en dépit de cela il me renvoi toujours des erreurs:
elseif (isset($_POST['qualite2'])==$user['qualite2'] AND  $user['type']='civile')
ViPHP
ViPHP | 2577 Messages

19 mars 2012, 11:35

Mais quelle erreur ?
Il est plus facile de trouver l'erreur lorsque l'on a un message et la ligne qui pose problème.
Mammouth du PHP | 702 Messages

19 mars 2012, 11:36

bien il me dit que toutes mes variables sont indéfinies c'est normal car comme j'ai divers formulaires avec diverses variables. lorsque les conditions sont remplies, normalement le traitement afférant à ce formulaire doit être exécuté. lui exécute tous les traitements.
Mammouth du PHP | 702 Messages

19 mars 2012, 11:47

je sais pourquoi, mais je ne sais pas comment le résoudre. normalement, j'ai deux type de requêtes. à savoir: 
elseif (isset($_POST['qualite5'])==$user['qualite5'] AND  $user['type']='civile'
elseif (isset($_POST['qualite5'])==$user['qualite5'] AND  $user['type']='commerciale'
.

Lui ne lit pas le AND et comme dans commerciale, j'ai deux champs en plus, à savoir la raison_sociale et le numero siret, lui me dit qure ces variables ne sont pas définies. Or elles n'ont pas lieue d'être. la est la différence.
ViPHP
ViPHP | 2577 Messages

19 mars 2012, 12:07

elseif (isset($_POST['qualite2'])==$user['qualite2'] AND $user['type']='civile')
=>
elseif (isset($_POST['qualite2']) AND $_POST['qualite2'] ==$user['qualite2'] AND $user['type']=='civile')

L'erreur = vs == ne semble déjà une solution.
Le isset indique juste que la variable est définie
Mammouth du PHP | 702 Messages

19 mars 2012, 12:19

ça marche niquel, merci :)
   Répondre
8 messages   •   Page 1 sur 1
   Outils de sujet