$server = "localhost"; $user = "munsing_karaoke"; $pass = "sp*tlight"; $songquery = $_GET["find"]; $searching = $_GET["searching"] ?>
//This is only displayed if they have submitted the form if ($searching == "yes") { //sort by artist, title, or song number - default us artist $sortby = $_GET["sortby"]; if ($sortby !== "") { $sqlExtra = "ORDER BY artist ASC"; } if ($sortby == "artist") { $sqlExtra = "ORDER BY artist ASC"; } if ($sortby == "title") { $sqlExtra = "ORDER BY title ASC"; } if ($sortby == "songnumber") { $sqlExtra = "ORDER BY songnumber ASC"; } //If they did not enter a search term we give them an error if ($songquery == "") { echo " You forgot to enter a search term"; exit; } // Otherwise we connect to our Database mysql_connect("localhost", "munsing_karaoke", $pass) or die(mysql_error()); mysql_select_db("munsing_songbooks") or die(mysql_error()); // We preform a bit of filtering $songquery = strtoupper($songquery); $songquery = strip_tags($songquery); $songquery = trim ($songquery); $songquery = addslashes($songquery); $keywords = explode(" ", $songquery); $keyCount = 0; foreach ($keywords as $keys) { if ($keyCount > 0){ $search_sql .= " AND"; } $search_sql .= " Name LIKE '%$keys%'"; ++$keyCount; } $sortby = $_GET["sortby"]; $sql = "SELECT * FROM karaoke WHERE artist LIKE '%$keys%' OR title LIKE '%$keys%' OR songnumber LIKE '%$keys%' ".$sqlExtra; //Now we search for our search term, in the field the user specified $data = mysql_query($sql); //And we display the results if ($songquery !== "") { echo "
Sorry, but we can not find an entry to match your query "; } mysql_close(); } } ?> | ||||||