tags:

views:

37

answers:

4
+1  Q: 

Establishing a "post ID" value for a comment leaving system

I am trying to attach a numerical "post ID" value to comments so that they can be retrieved from the database and displayed in the proper place. How do I establish this numerical value within my html form as something that gets sent to the script that inserts it into the database? I assume I need to use GET or POST but I don't understand how to use those to send anything except text entered by the user.

This is the form I am using to send the "name" and "comment" inputs:

 <div class="comments">
 <form action="foxpost.php" method="post">

 <label for="name">Name</label><br>
 <input id="name" name="name" type="text" /><br>
 <label for="message">Comment</label><br>
 <textarea class="message" id="message" name="message"></textarea><br><br>

 <input type="Submit" value="Post Comment" />
 </form>
 </div>
A: 

Put the id in a hidden field in your form:

<input type="hidden" name="post_id" value="id_goes_here" />
mwittrock  2010-08-06 21:39:16
@Jimmy: Just keep in mind that, although the field is hidden, users *can* change the value of hidden fields using tools such as [Firebug](http://getfirebug.com/).
Niels van der Rest  2010-08-06 21:44:43
That is insecure. If you want to generate the id from php you should do it before sending the sql, when you parse the comment from $_POST and dinamically create a value, without exposing it to the browser.
vlad b.  2010-08-06 21:45:03
The OP wants to pass the ID of the post, that the user is commenting on, back to the server, so that the comment can be stored with a reference to the post.
mwittrock  2010-08-06 21:47:19
+1  A: 
vlad b.  2010-08-06 21:43:52
If you're using MySQL it would be the mysql_insert_id() function, called right after the INSERT statement as outlined by @vlad above...http://us.php.net/manual/en/function.mysql-insert-id.php
Don  2010-08-06 21:48:45
Thank you Don, forgot to mention that.
vlad b.  2010-08-06 22:12:04
A: 

I would suggest to not have the ID as part of the form and just use your databases AUTO_INCREMENT feature.

pferate  2010-08-06 21:48:03
+2  A: 

Since you tagged this question with PHP, I'm guessing thats the language your using for your back-end. Another assumption I'm making is that your actually formatting your request querystring with the postID, something like "http://example.com/posts.php?postID=1212", notice the postID in the querystring, you just pass that on, like this:

 <div class="comments">
 <form action="foxpost.php?postID=<%= $_GET['postID'] %>" method="post">

 <label for="name">Name</label><br>
 <input id="name" name="name" type="text" /><br>
 <label for="message">Comment</label><br>
 <textarea class="message" id="message" name="message"></textarea><br><br>

 <input type="Submit" value="Post Comment" />
 </form>
 </div>

Using 

<%= $_GET['postID'] %>

will simply echo the postID from the querystring straight into the HTML, or you could assign it to a variable.

Timbermar  2010-08-06 22:07:46

related questions

Autosizing Textarea
Regular expression for parsing links from a webpage?
What are good tools for creating compiled HTML help files (.chm)?
Looking for WYSIWYG HTML editor
Any reason not to start using the HTML 5 doctype?
HTML comments break down
HTML Comments Markup
Setting a div's height in HTML with CSS
Wrapping lists into columns
Is a "Confirm Email" input good practice when user changes email address?
<XMP> Tag
HTML version choice
Options for HTML scraping?
How do you disable browser Autocomplete on web form field / input tag?
How do I make a checkbox toggle from clicking on the text label as well?
Html CSS Editor
Wordpress theme development offline tools
How do I give my web sites an icon for iPhone?
In HTML, how to word-break on a dash?
Detecting font in JavaScript
How do you test layout design across multiple browsers/OSs?
How do I print an HTML document from a web service?
Multiple submit buttons on a HTML form
How can I determine a web user's time zone?
Why doesn't the percentage width child in absolutely positioned parent work in IE7?