izgled koda forme je sledeci:
<form id="form1" name="form1" method="post" action="<?=$_SERVER['PHP_SELF']?>">
<strong>Upišite vaš komentar </strong><br />
<br />
Vaše korisničko ime <br />
<label>
<input name="ime" type="text" size="20" />
</label>
<br />
<br />
Tekst komentara<br />
<label>
<textarea name="tekst" rows="5"></textarea>
</label>
<br />
<br />
<label>
<input type="submit" name="komentari" value="Posalji komentar" />
</label>
</form>
Izlged koda sa pocetka strane:
<?php require_once('../Connections/conn1.php'); ?>
<?php
$currentPage = $_SERVER['PHP_SELF'];
session_start();
//Komentar (ako je korisnik pokusao da ga postavi)
if ($_POST['komentari'] == "Posalji komentar") {
$ime=$HTTP_POST_VARS['ime'];
$tekst=$HTTP_POST_VARS['tekst'];
$ime = addslashes($ime);
$tekst = addslashes($tekst);
mysql_select_db('NAZIV BAZE');
$query = "insert into komentari1 (ime, tekst) values
('".$ime."', '".$tekst."')";
$result = mysql_query($query);
}
if (isset($HTTP_POST_VARS['userid']) && isset($HTTP_POST_VARS['password']))
{
// Ukoliko pokusavate da se ulogujete
$userid = $HTTP_POST_VARS['userid'];
$password = $HTTP_POST_VARS['password'];
mysql_select_db($database_conn1, $conn1);
$query = "select * from TABELA where name='$userid' and pass='$password'";
$result = mysql_query($query, $conn1);
if (mysql_num_rows($result) >0 )
{
// Ukoliko ste ulogovani
$HTTP_SESSION_VARS['valid_user'] = $userid;
}
}
?>
<?php
$id = $HTTP_GET_VARS['id'];
mysql_select_db($database_conn1, $conn1);
$query_video = "SELECT * FROM tabela WHERE imeid='$id' ORDER BY klipid desc";
$video = mysql_query($query_video, $conn1) or die(mysql_error());
$row_video = mysql_fetch_assoc($video);
$totalRows_video = mysql_num_rows($video);
$queryString_video = "";
if (!empty($_SERVER['QUERY_STRING'])) {
$params = explode("&", $_SERVER['QUERY_STRING']);
$newParams = array();
foreach ($params as $param) {
if (stristr($param, "pageNum_video") == false &&
stristr($param, "totalRows_video") == false) {
array_push($newParams, $param);
}
}
if (count($newParams) != 0) {
$queryString_video = "&" . htmlentities(implode("&", $newParams));
}
}
$queryString_video = sprintf("&totalRows_video=%d%s", $totalRows_video, $queryString_video);
?>