Solved

Building sql select statement for results page using PHP

Posted on 2009-05-05
2
293 Views
Last Modified: 2013-12-12
I'm trying to concatenate a sql query string using PHP but not having much luck. I'm processing a form that has dropdown menus for minprice and maxprice (these will always have a value), minsqft and maxsqft dropdown menus (these will also always have a value). The PropertySubtype and Status are OK for this case.

I'm having the problem with the "optional" query terms: beds, waterview, and golf.  Beds is a dropdown menu with integer values BUT I would also like to make this field have some kind of a null value so that it won't affect the query results. Right now I have an empty value passed if the visitor picks "Select All."

For waterview, I'm looking for 'Yes' in the dB and the form's checkbox checked value is 'Yes'

For golf, the dB field contains comma separated values but the value I'm looking for is 'Golf Course Frontage' which is the checked value of the checkbox.
CASE "home":

$query = "SELECT * FROM Listings WHERE ListingPrice BETWEEN $minprice AND $maxprice AND SquareFootage BETWEEN $minsqft AND $maxsqft AND PropertySubtype1 = 'Site Bui' AND Status = 'Active' . "'";
 

if (!empty($beds))

{$query .= " AND Bedrooms = '" . $beds . "'";}
 

if (isset($waterview))

{$query .= " AND WATERVIEW LIKE '" . $waterview . "'";}
 

if (isset($golf))

{$query .= " AND PROPERTIES LIKE '" . $golf";}
 

break;

Open in new window

0
Comment
Question by:Benson_nc
2 Comments
 
LVL 7

Accepted Solution

by:
StraySod earned 500 total points
Comment Utility
what exactly is your problem? the source you've posted looks ok except of the 2nd and 11th line, which should end like this:
2nd: AND Status = 'Active'";
and
11th: {$query .= " AND PROPERTIES LIKE '" . $golf. "'";}


what is the problem with your if statements? doesn't it work the way you want? what are the results?
how does the form HTML look like?

I'm not exactly sure what should we help you with :)
0
 

Author Comment

by:Benson_nc
Comment Utility
Thanks for the correction. All is working now.  The only addition I had to make was to put %% around $golf since there was additional text in the dB field different from what I was looking for.
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Both Easy and Powerful How easy is PHP? http://lmgtfy.com?q=how+easy+is+php (http://lmgtfy.com?q=how+easy+is+php)  Very easy.  It has been described as "a programming language even my grandmother can use." How powerful is PHP?  http://en.wikiped…
Deprecated and Headed for the Dustbin By now, you have probably heard that some PHP features, while convenient, can also cause PHP security problems.  This article discusses one of those, called register_globals.  It is a thing you do not want.  …
Explain concepts important to validation of email addresses with regular expressions. Applies to most languages/tools that uses regular expressions. Consider email address RFCs: Look at HTML5 form input element (with type=email) regex pattern: T…
The viewer will learn how to look for a specific file type in a local or remote server directory using PHP.

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now