12 Replies Latest reply: Sep 12, 2014 12:25 PM by Max Resnikoff

SQL Error Help

Max Resnikoff Sep 9, 2014 6:45 AM

Hi,

I have been making forms to insert data into my database. I have had no trouble with the past 3, but this one keeps giving me an error. They are all exactly the same, and I have even retried remaking the page and table in the database, but no luck.

This is the error:

You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'condition, image, notes, location, tagnumber) VALUES ('sdf', 'sdf', 'Shirt', 'sd' at line 1

------------------------------------------------------------------------------------------ -----------------------------------------------

Here is my table code:

-- phpMyAdmin SQL Dump

-- version 3.5.5

-- Host: localhost

-- Generation Time: Sep 09, 2014 at 08:41 AM

-- Server version: 5.5.39-36.0

-- PHP Version: 5.4.23

SET SQL_MODE="NO_AUTO_VALUE_ON_ZERO";

SET time_zone = "+00:00";

/*!40101 SET @OLD_CHARACTER_SET_CLIENT=@@CHARACTER_SET_CLIENT */;

/*!40101 SET @OLD_CHARACTER_SET_RESULTS=@@CHARACTER_SET_RESULTS */;

/*!40101 SET @OLD_COLLATION_CONNECTION=@@COLLATION_CONNECTION */;

/*!40101 SET NAMES utf8 */;

-- Database: `mresnik_dramadatabase`

-- --------------------------------------------------------

-- Table structure for table `costume`

CREATE TABLE IF NOT EXISTS `costume` (

`id` int(11) NOT NULL AUTO_INCREMENT,

`name` text NOT NULL,

`description` text NOT NULL,

`type` text NOT NULL,

`material` text NOT NULL,

`size` text NOT NULL,

`gender` text NOT NULL,

`colour` text NOT NULL,

`timeperiod` text NOT NULL,

`accessories` text NOT NULL,

`value` text NOT NULL,

`condition` text NOT NULL,

`image` text NOT NULL,

`notes` text NOT NULL,

`location` text NOT NULL,

`tagnumber` int(50) NOT NULL,

`datecreated` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,

PRIMARY KEY (`id`)

) ENGINE=InnoDB DEFAULT CHARSET=utf8 AUTO_INCREMENT=1 ;

/*!40101 SET CHARACTER_SET_CLIENT=@OLD_CHARACTER_SET_CLIENT */;

/*!40101 SET CHARACTER_SET_RESULTS=@OLD_CHARACTER_SET_RESULTS */;

/*!40101 SET COLLATION_CONNECTION=@OLD_COLLATION_CONNECTION */;

------------------------------------------------------------------------------------------ -------------------------------------------------------------------------

And here is my page code where the form is:

<?php require_once('Connections/drama_database.php'); ?>

<?php

if (!function_exists("GetSQLValueString")) {

function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")

{

if (PHP_VERSION < 6) {

$theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;

}

$theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);

switch ($theType) {

case "text":

$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";

break;

case "long":

case "int":

$theValue = ($theValue != "") ? intval($theValue) : "NULL";

break;

case "double":

$theValue = ($theValue != "") ? doubleval($theValue) : "NULL";

break;

case "date":

$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";

break;

case "defined":

$theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;

break;

}

return $theValue;

}

$editFormAction = $_SERVER['PHP_SELF'];

if (isset($_SERVER['QUERY_STRING'])) {

$editFormAction .= "?" . htmlentities($_SERVER['QUERY_STRING']);

}

if ((isset($_POST["MM_insert"])) && ($_POST["MM_insert"] == "form1")) {

$insertSQL = sprintf("INSERT INTO costume (name, `description`, type, material, `size`, gender, colour, timeperiod, accessories, `value`, condition, image, notes, location, tagnumber) VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s)",

GetSQLValueString($_POST['name'], "text"),

GetSQLValueString($_POST['description'], "text"),

GetSQLValueString($_POST['type'], "text"),

GetSQLValueString($_POST['material'], "text"),

GetSQLValueString($_POST['size'], "text"),

GetSQLValueString($_POST['gender'], "text"),

GetSQLValueString($_POST['colour'], "text"),

GetSQLValueString($_POST['timeperiod'], "text"),

GetSQLValueString($_POST['accessories'], "text"),

GetSQLValueString($_POST['value'], "text"),

GetSQLValueString($_POST['condition'], "text"),

GetSQLValueString($_POST['image'], "text"),

GetSQLValueString($_POST['notes'], "text"),

GetSQLValueString($_POST['location'], "text"),

GetSQLValueString($_POST['tag'], "text"));

mysql_select_db($database_drama_database, $drama_database);

$Result1 = mysql_query($insertSQL, $drama_database) or die(mysql_error());

$insertGoTo = "costumeinventory.php";

if (isset($_SERVER['QUERY_STRING'])) {

$insertGoTo .= (strpos($insertGoTo, '?')) ? "&" : "?";

$insertGoTo .= $_SERVER['QUERY_STRING'];

}

header(sprintf("Location: %s", $insertGoTo));

}

mysql_select_db($database_drama_database, $drama_database);

$query_cosadd = "SELECT * FROM costume";

$cosadd = mysql_query($query_cosadd, $drama_database) or die(mysql_error());

$row_cosadd = mysql_fetch_assoc($cosadd);

$totalRows_cosadd = mysql_num_rows($cosadd);

<html>

<title>Add Costume</title>

</html>

<?php session_start(); ?>

<head>

</head>

</html>

body{ margin:0px; background:#FFF;}

.header {

height:165px;

background:#FFF;

border:1px solid#CCC;

position:fixed;

width:100%;

top:0px;

}

</style>

</head>

<br>

<h1>Add New Costume</h1>

</div>

<tr>

<span class="textfieldRequiredMsg">A value is required.</span></span></td>

</tr>

<tr>

<td class="formtag">Description</td>

<span class="textfieldRequiredMsg">A value is required.</span></span></td>

</tr>

<tr>

<option id="0">-- Select Type --</option>

<?php

require("Connections/drama_database.php");

$getallcostumetype = mysql_query("SELECT * FROM costumetype");

while($viewallcostumetype = mysql_fetch_array($getallcostumetype)){

<?php } ?>

</select></td>

</tr>

<tr>

<td class="formtag">Material/Fabric</td>

<span class="textfieldRequiredMsg">A value is required.</span></span></td>

</tr>

<tr>

<option id="0">-- Select Size --</option>

<?php

require("Connections/drama_database.php");

$getallcostumesize = mysql_query("SELECT * FROM costumesize");

while($viewallcostumesize = mysql_fetch_array($getallcostumesize)){

<?php } ?>

</select></td>

</tr>

<tr>

<td class="formtag">Gender</td>

<option id="0">-- Select Gender --</option>

<?php

require("Connections/drama_database.php");

$getallcostumegender = mysql_query("SELECT * FROM costumegender");

while($viewallcostumegender = mysql_fetch_array($getallcostumegender)){

<?php } ?>

</select></td>

</tr>

<tr>

<td class="formtag">Colour/Pattern</td>

<span class="textfieldRequiredMsg">A value is required.</span></span></td>

</tr>

<tr>

<td class="formtag">Timeperiod</td>

<span class="textfieldRequiredMsg">A value is required.</span></span></td>

</tr>

<tr>

<td class="formtag">Accessories</td>

<span class="textfieldRequiredMsg">A value is required.</span></span></td>

</tr>

<tr>

<td class="formtag">Value</td>

<option id="0">-- Select Value --</option>

<?php

require("Connections/drama_database.php");

$getallcostumevalue = mysql_query("SELECT * FROM costumevalue");

while($viewallcostumevalue = mysql_fetch_array($getallcostumevalue)){

<?php } ?>

</select></td>

</tr>

<tr>

<td class="formtag">Condition</td>

<option id="0">-- Select Condition --</option>

<?php

require("Connections/drama_database.php");

$getallcostumecondition = mysql_query("SELECT * FROM costumecondition");

while($viewallcostumecondition = mysql_fetch_array($getallcostumecondition)){

<?php } ?>

</select></td>

</tr>

<tr>

<td class="formtag">Image</td>

<span class="textfieldRequiredMsg">A value is required.</span></span></td>

</tr>

<tr>

<td class="formtag">Notes</td>

<span class="textfieldRequiredMsg">A value is required.</span></span></td>

</tr>

<tr>

<td class="formtag">Location</td>

<option id="0">-- Select Location --</option>

<?php

require("Connections/drama_database.php");

$getallcostumelocation = mysql_query("SELECT * FROM costumelocation");

while($viewallcostumelocation = mysql_fetch_array($getallcostumelocation)){

<?php } ?>

</select></td>

</tr>

<tr>

<td class="formtag">Tag Number</td>

<span class="textfieldRequiredMsg">A value is required.</span></span></td>

</tr>

<tr>

</tr>

<tr>

</tr>

</table>

</form>

</div>

<?php

mysql_free_result($cosadd);

var sprytextfield1 = new Spry.Widget.ValidationTextField("sprytextfield1");

var sprytextfield2 = new Spry.Widget.ValidationTextField("sprytextfield2");

var sprytextfield3 = new Spry.Widget.ValidationTextField("sprytextfield3");

var sprytextfield4 = new Spry.Widget.ValidationTextField("sprytextfield4");

var sprytextfield5 = new Spry.Widget.ValidationTextField("sprytextfield5");

var sprytextfield6 = new Spry.Widget.ValidationTextField("sprytextfield6");

var sprytextfield7 = new Spry.Widget.ValidationTextField("sprytextfield7");

var sprytextfield8 = new Spry.Widget.ValidationTextField("sprytextfield8");

var sprytextfield9 = new Spry.Widget.ValidationTextField("sprytextfield9");

</script>

1. Re: SQL Error Help

bregent Sep 9, 2014 11:19 AM (in response to Max Resnikoff)

Echo the value of $insertSQL after you populate it so you can check for syntax errors.
Like Show 0 Likes (0)

Actions
2. Re: SQL Error Help

Max Resnikoff Sep 9, 2014 11:26 AM (in response to bregent)

After I populate what?
Like Show 0 Likes (0)

Actions
3. Re: SQL Error Help

osgood_ Sep 9, 2014 11:47 AM (in response to Max Resnikoff)

Try changing this part of the code:

GetSQLValueString($_POST['tag'], "text"));

to int ( see below - as that is what your sql database column is assigned for - `tagnumber` int(50) NOT NULL,

GetSQLValueString($_POST['tag'], "int"));
Like Show 0 Likes (0)

Actions
4. Re: SQL Error Help

bregent Sep 9, 2014 12:32 PM (in response to Max Resnikoff)

>After I populate what?

After you have populated that variable. You want to see the value of the variable that contains the complete SQL statement. But osgood has a good point that your datatypes do not match - that is probably the cause of the problem.
Like Show 0 Likes (0)

Actions
5. Re: SQL Error Help

Max Resnikoff Sep 11, 2014 9:12 AM (in response to osgood_)

I am still getting the error, even with your suggestion.
Like Show 0 Likes (0)

Actions
6. Re: SQL Error Help

bregent Sep 11, 2014 10:35 AM (in response to Max Resnikoff)

So, did you try my suggestion? You can't effectively troubleshoot an error message if you don't know the SQL string your are submitting.
Like Show 0 Likes (0)

Actions
7. Re: SQL Error Help

Max Resnikoff Sep 11, 2014 10:51 AM (in response to bregent)

I still dont get where you are suggesting to put the debug code?

Sorry I am new to this (School project)

I put it at the top of the code, and it says this now:

Warning: mysql_pconnect(): MySQL server has gone away in C:\xampp\htdocs\dramadatabase\Connections\drama_database.php on line 9

Notice: Undefined variable: insertSQL in C:\xampp\htdocs\dramadatabase\costumeadd.php on line 2
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'condition, image, notes, location, code) VALUES ('asd', 'asd', '-- Select Type -' at line 1
Like Show 0 Likes (0)

Actions
8. Re: SQL Error Help

bregent Sep 11, 2014 1:33 PM (in response to Max Resnikoff)

Right, you need to put it AFTER you have assigned a value to the variable. See the code below. You'll also need to comment out any code that redirects to a new page. Post the results back here.

if ((isset($_POST["MM_insert"])) && ($_POST["MM_insert"] == "form1")) {
$insertSQL = sprintf("INSERT INTO costume (name, `description`, type, material, `size`, gender, colour, timeperiod, accessories, `value`, condition, image, notes, location, tagnumber) VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s)",
                       GetSQLValueString($_POST['name'], "text"),
                       GetSQLValueString($_POST['description'], "text"),
                       GetSQLValueString($_POST['type'], "text"),
                       GetSQLValueString($_POST['material'], "text"),
                       GetSQLValueString($_POST['size'], "text"),
                       GetSQLValueString($_POST['gender'], "text"),
                       GetSQLValueString($_POST['colour'], "text"),
                       GetSQLValueString($_POST['timeperiod'], "text"),
                       GetSQLValueString($_POST['accessories'], "text"),
                       GetSQLValueString($_POST['value'], "text"),
                       GetSQLValueString($_POST['condition'], "text"),
                       GetSQLValueString($_POST['image'], "text"),
                       GetSQLValueString($_POST['notes'], "text"),
                       GetSQLValueString($_POST['location'], "text"),
                       GetSQLValueString($_POST['tag'], "text"));

echo $insertSQL;

// mysql_select_db($database_drama_database, $drama_database);
// $Result1 = mysql_query($insertSQL, $drama_database) or die(mysql_error());

//$insertGoTo = "costumeinventory.php";
// if (isset($_SERVER['QUERY_STRING'])) {
//    $insertGoTo .= (strpos($insertGoTo, '?')) ? "&" : "?";
//    $insertGoTo .= $_SERVER['QUERY_STRING'];
// }
// header(sprintf("Location: %s", $insertGoTo));
}
//
//mysql_select_db($database_drama_database, $drama_database);
//$query_cosadd = "SELECT * FROM costume";
//$cosadd = mysql_query($query_cosadd, $drama_database) or die(mysql_error());
//$row_cosadd = mysql_fetch_assoc($cosadd);
//$totalRows_cosadd = mysql_num_rows($cosadd);
Like Show 0 Likes (0)

Actions
9. Re: SQL Error Help

Max Resnikoff Sep 12, 2014 11:10 AM (in response to bregent)

Warning: mysql_pconnect(): MySQL server has gone away in C:\xampp\htdocs\dramadatabase\Connections\drama_database.php on line 9

Notice: Undefined variable: insertSQL in C:\xampp\htdocs\dramadatabase\costumeadd.php on line 2
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'condition, image, notes, location, code) VALUES ('asd', 'asd', '-- Select Type -' at line 1
Like Show 0 Likes (0)

Actions
10. Re: SQL Error Help

osgood_ Sep 12, 2014 12:21 PM (in response to bregent)

'condition' must be a mysql 'reserved' word.

I deconstructed the query and this is what is causing the error:

GetSQLValueString($_POST['condition'], "text"),

Change it to something else like 'conditions':

GetSQLValueString($_POST['conditions'], "text"),

Dont forget to change it in your query string:

$insertSQL = sprintf("INSERT INTO costume (name, `description`, type, material, `size`, gender, colour, timeperiod, accessories, `value`, conditions, image, notes, location, tagnumber)

and your form select tag:

<select name="conditions" class="formfield" id="condition">

and your database column name
Like Show 0 Likes (0)

Actions
11. Re: SQL Error Help

bregent Sep 12, 2014 12:23 PM (in response to osgood_)

>'condition' must be a mysql 'reserved' word.

It certainly is...

MySQL :: MySQL 5.5 Reference Manual :: 9.3 Reserved Words

>Change it to something else like 'conditions':

I agree. You could use single quotes, but it's far better to avoid the use of reserved words. I would change all of the others too.
Like Show 0 Likes (0)

Actions
12. Re: SQL Error Help

Max Resnikoff Sep 12, 2014 12:25 PM (in response to osgood_)

DONE!!! Thank you very much for your help!
Very much appreciated!
Like Show 0 Likes (0)

Actions