What are some best practices for using PHP to handle form submissions and database interactions in an online survey tool?

Issue: When handling form submissions and database interactions in an online survey tool using PHP, it is important to sanitize user input to prevent SQL injection attacks, validate form data to ensure it meets the required format, and securely store sensitive information in the database. PHP Code Snippet:

&lt;?php
// Connect to the database
$servername = &quot;localhost&quot;;
$username = &quot;username&quot;;
$password = &quot;password&quot;;
$dbname = &quot;survey_db&quot;;

$conn = new mysqli($servername, $username, $password, $dbname);

// Check connection
if ($conn-&gt;connect_error) {
    die(&quot;Connection failed: &quot; . $conn-&gt;connect_error);
}

// Sanitize user input
$name = mysqli_real_escape_string($conn, $_POST[&#039;name&#039;]);
$email = mysqli_real_escape_string($conn, $_POST[&#039;email&#039;]);
$age = mysqli_real_escape_string($conn, $_POST[&#039;age&#039;]);

// Validate form data
if (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
    die(&quot;Invalid email format&quot;);
}

// Insert data into the database
$sql = &quot;INSERT INTO survey_responses (name, email, age) VALUES (&#039;$name&#039;, &#039;$email&#039;, &#039;$age&#039;)&quot;;

if ($conn-&gt;query($sql) === TRUE) {
    echo &quot;New record created successfully&quot;;
} else {
    echo &quot;Error: &quot; . $sql . &quot;&lt;br&gt;&quot; . $conn-&gt;error;
}

$conn-&gt;close();
?&gt;

Keywords

PHP form submissions database interactions online survey tool error handling

What are some best practices for using PHP to handle form submissions and database interactions in an online survey tool?

Keywords

Related Questions