0

I am trying to create a simple chat application. Below, you notice that my PHP code is inside a div, which is for the chat data, and that div is inside another div representing the chat box. Inside my PHP code, I wrote my PHP function. It connects to the myPHPadmin server and then it has a query to place the inputted data from the person's name into the database. I have an echo statement to write what the person wrote. As soon as I press the submit button, it will show what the person wrote, but if I type another message in, the message text gets replaced. How do I get my PHP code to dynamically create echo statements as if it were a chat conversation? It should create a new line each time I send a message.

<div id="chat_box">
    <div id="chat_data">
        <?php
             function sendMessage() 
             {
                //I hid my login credentials
                $servername = "";
                $username = "";
                $password = "";
                $dbname = "";

                // Create connection
                $dbc = new mysqli($servername, $username, $password, $dbname);


                // Check connection
                if ($dbc->connect_error)
                {
                    die("Connection failed: " . $dbc->connect_error);
                }



                $name = $_POST['name'];
                $msg = $_POST['log'];

                $query = "INSERT INTO `chatApp` (`name`, `pwd`, `message`) VALUES ('$name', NULL, '$msg')";
                $run = $dbc->query($query);



                echo "<p>" . $name . " : </p> ";
                echo "<p>" . $msg . "</p>";

              }

        ?> 

            </div>

          </div>
Austra Sharma
  • 3
  • 1
  • 4
    **Your code is vulnerable to SQL injection and will be hacked** even if [you are escaping inputs!](https://stackoverflow.com/a/5741264/2595450) Use [Prepared Statements](http://php.net/manual/en/mysqli.quickstart.prepared-statements.php) instead. Check: [How can I prevent SQL injection in PHP](https://stackoverflow.com/questions/60174/how-can-i-prevent-sql-injection-in-php) – Spoody Apr 16 '18 at 18:01
  • 1
    either you do it client side via javascript. Or you simply select and display the last messages (out of database) – Jeff Apr 16 '18 at 18:04
  • 1
    seperate the logic of saving the message and displaying the messages. – Jeff Apr 16 '18 at 18:05
  • also have a read about database normalization. (because now you save the user's name with the message) – Jeff Apr 16 '18 at 18:06

1 Answers1

0

Use Ajax (Asynchronous Javascript and XML) to fullfill your requirement. Since, PHP is a server side programming language, on clicking submit button the page need to contact with the server and should refresh for getting data.

Ajax will remove the headache of refreshing and get the data from the server on the way without refreshing your page. Learn the basics of Ajax and apply it in your project on your own.

Harish ST
  • 1,475
  • 9
  • 23
  • with all respect to the OP, I think ajax is some steps to early. – Jeff Apr 16 '18 at 18:08
  • @Jeff Ajax was required for my homework assignment anyways. Originally, I was going to test it like that then work on Ajax alter. I guess I would have to use the Ajax at this point in order to get the chat conversation. – Austra Sharma Apr 16 '18 at 22:03