{source}
<h2>Insert Person Data</h2>
<form action="" method="post">
<label for="first_name">First Name:</label>
<input type="text" name="first_name" required>
<label for="last_name">Last Name:</label>
<input type="text" name="last_name" required>
<button type="submit" name="submit">Submit</button>
</form>
{/source}
{source}
<?php
//Extra
if (isset($_POST['submit'])) {
$uri = "mysql://avnadmin:This email address is being protected from spambots. You need JavaScript enabled to view it. :26203/defaultdb?ssl-mode=REQUIRED";
$fields = parse_url($uri);
// build the DSN including SSL settings
$dsn = "mysql:";
$dsn .= "host=" . $fields["host"];
$dsn .= ";port=" . $fields["port"];
$dsn .= ";dbname=defaultdb";
$dsn .= ";sslmode=verify-ca;sslrootcert=ca.pem";
try {
$db = new PDO($dsn, $fields["user"], $fields["pass"]);
$db->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
// Get data from the HTML form
$first_name = isset($_POST['first_name']) ? $_POST['first_name'] : '';
$last_name = isset($_POST['last_name']) ? $_POST['last_name'] : '';
// Check for empty fields
if (empty($first_name) || empty($last_name)) {
echo "Error: Please fill in all required fields.";
} else {
// Use prepared statements to prevent SQL injection
$sql = "INSERT INTO Person (first_name, last_name) VALUES (:first_name, :last_name)";
$stmt = $db->prepare($sql);
$stmt->bindParam(':first_name', $first_name);
$stmt->bindParam(':last_name', $last_name);
if ($stmt->execute()) {
echo "Data inserted successfully";
header("Location: https://sandbox.lawrencevillechurch.org/");
exit();
} else {
echo "Error: " . implode(" ", $stmt->errorInfo());
}
}
} catch (Exception $e) {
echo "Error: " . $e->getMessage();
}
}
?>
//Extra
if (isset($_POST['submit'])) {
$uri = "mysql://avnadmin:
$fields = parse_url($uri);
// build the DSN including SSL settings
$dsn = "mysql:";
$dsn .= "host=" . $fields["host"];
$dsn .= ";port=" . $fields["port"];
$dsn .= ";dbname=defaultdb";
$dsn .= ";sslmode=verify-ca;sslrootcert=ca.pem";
try {
$db = new PDO($dsn, $fields["user"], $fields["pass"]);
$db->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
// Get data from the HTML form
$first_name = isset($_POST['first_name']) ? $_POST['first_name'] : '';
$last_name = isset($_POST['last_name']) ? $_POST['last_name'] : '';
// Check for empty fields
if (empty($first_name) || empty($last_name)) {
echo "Error: Please fill in all required fields.";
} else {
// Use prepared statements to prevent SQL injection
$sql = "INSERT INTO Person (first_name, last_name) VALUES (:first_name, :last_name)";
$stmt = $db->prepare($sql);
$stmt->bindParam(':first_name', $first_name);
$stmt->bindParam(':last_name', $last_name);
if ($stmt->execute()) {
echo "Data inserted successfully";
header("Location: https://sandbox.lawrencevillechurch.org/");
exit();
} else {
echo "Error: " . implode(" ", $stmt->errorInfo());
}
}
} catch (Exception $e) {
echo "Error: " . $e->getMessage();
}
}
?>
{/source}