MySQL date insert error

Question

I am trying to insert a date that is formatted like 12-Aug-2012 but when I check with database set after insert, I can only see 00-00-0000 on the date field?

Here is the query I use:

$query= "INSERT INTO ambition_opportunities SET

 opp_deadline='".strtotime($_POST['deadline'])."'"; // date field come with date picker** 

 $sql = mysql_query($query) or die(mysql_error());

Thanks

Answer 1

As stated in Date and Time Literals:

MySQL recognizes DATE values in these formats:

• As a string in either 'YYYY-MM-DD' or 'YY-MM-DD' format. A “relaxed” syntax is permitted: Any punctuation character may be used as the delimiter between date parts. For example, '2012-12-31', '2012/12/31', '2012^12^31', and '2012@12@31' are equivalent.

• As a string with no delimiters in either 'YYYYMMDD' or 'YYMMDD' format, provided that the string makes sense as a date. For example, '20070523' and '070523' are interpreted as '2007-05-23', but '071332' is illegal (it has nonsensical month and day parts) and becomes '0000-00-00'.

• As a number in either YYYYMMDD or YYMMDD format, provided that the number makes sense as a date. For example, 19830905 and 830905 are interpreted as '1983-09-05'.

Therefore, the string '12-Aug-2012' is not a valid MySQL date literal. You have three options (in some vague order of preference, without any further information of your requirements):

1. Configure Datepicker to provide dates in a supported format using its dateFormat option:

   $( ".selector" ).datepicker({ dateFormat: "yyyy-mm-dd" });
   

2. Use MySQL's STR_TO_DATE() function to convert the string:

   opp_deadline=STR_TO_DATE('$_POST[deadline]', '%d-%b-%Y')
   

   NB: see the warning below regarding SQL injection.

3. Convert the string received into a PHP timestamp—e.g. using strtotime() as you currently are:

   $timestamp = strtotime($_POST['deadline']);
   

   and then either:

   • format the timestamp using date():

     $date = date('Y-m-d', $timestamp);
     

   • pass the timestamp directly to MySQL using FROM_UNIXTIME():

     opp_deadline=FROM_UNIXTIME('$timestamp')
     

---

Warning

1. Your code is vulnerable to SQL injection. You really should be using prepared statements, into which you pass your variables as parameters that do not get evaluated for SQL. If you don't know what I'm talking about, or how to fix it, read the story of Bobby Tables.

2. Also, as stated in the introduction to the PHP manual chapter on the mysql_* functions:

   This extension is not recommended for writing new code. Instead, either the mysqli or PDO_MySQL extension should be used. See also the MySQL API Overview for further help while choosing a MySQL API.

Answer 2

As you've mentioned , the field's type in the database is 00-00-0000. You insert a value in the format of: 12-Aug-2012.

You should convert your month's value from "month name" to "number", For instance:

Jan -> 01,
Feb -> 02 ...

You got the point.

After that, it should work.

Answer 3

You must make sure that on your input the date format is YYYY-MM-DD. 12-Aug-2012 is not the valid MySQL date format and this is why it returns an error.

Besides, your code is vulnerable for SQL Injection. I would strongly recommend using mysql_real_escape_string as you insert data into your database to prevent SQL injections, as a quick solution or better use PDO or MySQLi.

Your insert query should rather look like this:

  SET
 opp_provider='".mysql_real_escape_string($_POST['provider'])."'";

Answer 4

I am trying to insert date in the textbox 2013-12-24. The date in the database show 1970-01-01

$date=$year & $month & $day; $date= Date("Y-m-d", strtotime($date));

    $query = "INSERT INTO `book` VALUES('$id', '$title', '$author_name', '$publisher', '$date' )";