vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   passing the $post[userid] (https://vborg.vbsupport.ru/showthread.php?t=95601)

harmor19 09-04-2005 01:37 AM
passing the $post[userid]
 
I am making a custom mod for someone and I'm stuck.

I made a link "battle_stats.php?bs=$post[userid]" in the postbit_legacy template and the userid shows up.

In the battle_stats.php file what do I put in the query to receive that userid from the userfield?

I am trying to make a pop-up window with certain profile fields.

Guest190829 09-04-2005 01:45 AM
I think you have to use $_GET to access a variable in a url. Also make sure you sanitize it before doing anything with it. (Globalize for 3.0 or $vbulletin->input->clean_array_gpc() for 3.5)

harmor19 09-04-2005 02:02 AM
This is for version 3.0.8
I have tried these three but they don't work

Code:
$getstats = $DB_site->query("SELECT * FROM userfield WHERE userid='$post[userid]'")or die(mysql_error());
  $stats = mysql_fetch_array($getstats);
Code:
$getstats = $DB_site->query("SELECT * FROM userfield WHERE userid='$_GET[userid]'")or die(mysql_error());
  $stats = mysql_fetch_array($getstats);
Code:
$getstats = $DB_site->query("SELECT * FROM userfield WHERE userid='$userid'")or die(mysql_error());
  $stats = mysql_fetch_array($getstats);
can you explain "sanitize" and "globalize"?

Guest190829 09-04-2005 02:34 AM
Your using some functions that have specific vbulletin functions

like mysql_fetch array equals
PHP Code:
$DB_site->fetch_array($foo
..

I suggest reading Brad's excellant tutorial located here

You can also use
PHP Code:
$DB_site->query_first 
instead of just query, since your only retrieving one row.

Globalize santizes variables to make sure they are holding the correct data types, this helps greatly with security.

harmor19 09-04-2005 03:10 AM
I have tried the following but it gave me a blank white screen.
Code:
$DB_site->query_first

Guest190829 09-04-2005 03:23 AM
Here's an example of using it:

PHP Code:
 $query $DB_site->query_first("SELECT * FROM userfield WHERE userid='" .$userid "'"); 

harmor19 09-04-2005 03:39 AM
Oh!! I see.

I tried it with
Code:
$getstats = $DB_site->query_first("SELECT * FROM userfield WHERE userid='".$userid."'"); 
  $stats = $DB_site->fetch_array($getstats);
But "$stats = $DB_site->fetch_array($getstats);" isn't needed.

Maybe I have to join tables together because the variable isn't being passed.


All times are GMT. The time now is 01:02 PM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01105 seconds
  • Memory Usage 1,730KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (5)bbcode_code_printable
  • (3)bbcode_php_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (7)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete