Mercurial > hg > ywww
view php/read/getAllSavedBooks.php @ 29:f024f2f08994
a few more undef var fixes
| author | Robert Boland <robert@markup.co.uk> |
|---|---|
| date | Fri, 04 Jan 2019 08:49:25 -0500 |
| parents | d606320ec331 |
| children | a67bf725e87b |
line wrap: on
line source
<?PHP if(isset($ret)) { include "../../private/db.php"; } else { include "../../../private/db.php"; } $savedBooks = 0; //$UserID = $_GET['User']; if(isset($_GET['User'])){ $UserID = $_GET['User']; } else{ $UserID = 0; //default user is Bestseller } $query = "CALL b_getAllSavedBooksByUser($UserID)"; // $output .= $query; $results = mysqli_query($link, $query) or exit( mysqli_error( $link )); $output = ""; $output .= "<?xml version=\"1.0\"?>"; $output .= "<results>"; $output .= "<UserID>" . htmlspecialchars(trim($UserID)) . "</UserID>"; $prevListName = ""; if ($results) { while($line = mysqli_fetch_assoc($results)) { $listName = htmlspecialchars(trim($line["SavedListName"])); if($listName != $prevListName) { if($savedBooks != 0) { $output .= "</ListDetails>"; $output .= "</List>"; } $output .= "<List>"; $output .= "<SavedListName>" . $listName . "</SavedListName>"; $output .= "<ListDetails>"; $prevListName = $listName; } $output .= "<Book>"; $output .= "<ISBN>" . htmlspecialchars(trim($line["ISBN"])) . "</ISBN>"; $output .= "<PictureURL>" . htmlspecialchars(trim($line["PictureURL"])) . "</PictureURL>"; $output .= "<BookTitle>" . htmlspecialchars(trim($line["BookTitle"])) . "</BookTitle>"; $output .= "<SaveID>" . htmlspecialchars(trim($line["SaveID"])) . "</SaveID>"; $output .= "</Book>"; $savedBooks++; } $results->free(); } mysqli_close($link); if($savedBooks != 0) { $output .= "</ListDetails>"; $output .= "</List>"; } $output .= "</results>"; if(isset($ret)) return $output; else echo $output; ?>