<?php //students.php

require_once 'login.php';

$db_server = mysql_connect($db_hostname, $db_username, $db_password);
if (!$db_server) die("Unable to connect to MySQL: " . mysql_error());

mysql_select_db($db_database) or die("Unable to select database: " . mysql_error());

//
// Debug Statements uncomment to use.
//
// echo $_POST['firstname'] . " \r";
// echo $_POST['lastname'] . " \r";
// echo $_POST['school'] . " \r";
// echo $_POST['studentclass'] . " \r";

if (isset($_POST['firstname']) &&
   isset($_POST['lastname']) &&
   isset($_POST['school']) &&
   isset($_POST['studentclass']))
{
	$firstname = get_post('firstname');
	$lastname = get_post('lastname');
	$school = get_post('school');
	$class = get_post('studentclass');
	$address1 = get_post('addressone');
	$address2 = get_post('addresstwo');
	$city = get_post('city');
	$state = get_post('state');
	$zip = get_post('zipcode');
	$parentname = get_post('parentname');
	$parentphone = get_post('parentphone');
	$email = get_post('email');
	$query = "INSERT INTO students VALUES" .
		"(NULL,'$firstname','$lastname','$school','$class','$address1','$address2','$city','$state','$zip','$parentname','$parentphone','$email',0,0,0,0,0,0,'')";
	
	if (!mysql_query($query,$db_server))
		echo "Insert failed: $query<br />" . mysql_error() . "<br /><br />";
}
else
{
echo "Fields not set. Please enter data and re-try.";
}

mysql_close($db_server);
		
function get_post($var)
{
	$form_var = mysql_real_escape_string($_POST[$var]);
	// echo "Form value:" . $form_var . "\r";  Debug statement
	return $form_var;
}
?>