Reputation:
mySQL INSERT to multiple tables using PHP statments
I am struggling to insert mySQL data into multiple tables using PHP statements.
I have two tables:
user
user_ID (PK)
first_name
last_name
password
profile
profile_ID (PK)
user_ID (FK)
profile_image
profile_image_name
I update the user table like so:
$sql = "INSERT INTO user (first_name, last_name, email, password)
VALUES
('$_POST[first_name]', '$_POST[last_name]', '$_POST[email]', '$_POST[password]')";
The user_ID is set to auto increment in the database, so when this code is executed the inserted data is automatically assigned to a unique PK, and stored in a session. At this same point though (creating the account) I need to insert the user_ID into the profile table as the FK. That way when the user uploads their profile image, it will be assigned to they will have a record in the profile table.
For example, on the image upload page I'm using this code:
$user_ID = $_SESSION['login'];
$ins1 = mysqli_query($db, "UPDATE profile SET `profile_image_name`='" . $profile_image_name . "' WHERE `user_ID`='$user_ID'");
$ins2 = mysqli_query($db, "UPDATE profile SET `profile_image`='" . $profile_image . "' WHERE `user_ID`='$user_ID'");
This code only works if the user_ID FK is already present in the profile table so how do I insert it using php statements like the one I did earlier? I tried using the first approach again but it doesn't seem to be working...
Upvotes: 0
Views: 114
Answers (3)
Reputation: 2882
Try this:
INSERT INTO
`profile`(`user_ID`,`profile_image`,`profile_image_name`)
VALUES
('$user_ID','$profile_image','$profile_image_name')
ON DUPLICATE KEY UPDATE
`profile_image`='$profile_image',`profile_image_name`='$profile_image_name'
user_ID must be unique
Upvotes: 0
Reputation: 48357
Insert creates a new record, update changes an existing record. With your current scheme you need to INSERT into profile. Obviously this would mean that you can't use the same code to create a profile as you use to change a profile. But there is a further option REPLACE has the same syntax as INSERT, but will overwrite an existing record.
However if each user only has a single profile, the details should be held in a single table, not two.
Comment: Storing passwords as plain text is a very bad idea, go read up on password hashing. You should also have a Google for SQL injection; your authentication is trivial to bypass and easy to destroy.
Upvotes: 0
Reputation: 535
You can use insert_id for get last PK auto increment that you insert on Mysql
http://php.net/manual/mysqli.insert-id.php
Upvotes: 4
Related Questions
- How can I get the sizes of the tables of a MySQL database?
- How to import an SQL file using the command line in MySQL?
- How can I get a list of user accounts using the command line in MySQL?
- How can I do 'insert if not exists' in MySQL?
- How do I specify unique constraint for multiple columns in MySQL?
- Insert into a MySQL table or update if exists
- Can I concatenate multiple MySQL rows into one field?
- How can I find all the tables in MySQL with specific column names in them?
- How to take MySQL database backup using MySQL Workbench?