php实现图书
使用PHP实现图书管理系统
PHP可以用于构建一个功能完善的图书管理系统,涵盖图书的增删改查、用户管理、借阅归还等功能。以下是实现的关键要点:
数据库设计
创建MySQL数据库表结构是系统的核心基础:
CREATE TABLE books (
id INT AUTO_INCREMENT PRIMARY KEY,
title VARCHAR(255) NOT NULL,
author VARCHAR(255) NOT NULL,
isbn VARCHAR(20) UNIQUE,
quantity INT DEFAULT 1,
category VARCHAR(100)
);
CREATE TABLE users (
id INT AUTO_INCREMENT PRIMARY KEY,
username VARCHAR(50) UNIQUE NOT NULL,
password VARCHAR(255) NOT NULL,
role ENUM('admin','user') DEFAULT 'user'
);
CREATE TABLE borrow_records (
id INT AUTO_INCREMENT PRIMARY KEY,
book_id INT,
user_id INT,
borrow_date DATE,
return_date DATE,
status ENUM('borrowed','returned'),
FOREIGN KEY (book_id) REFERENCES books(id),
FOREIGN KEY (user_id) REFERENCES users(id)
);核心功能实现
数据库连接 使用PDO建立数据库连接:
$dsn = 'mysql:host=localhost;dbname=library';
$username = 'root';
$password = '';
try {
$pdo = new PDO($dsn, $username, $password);
$pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
} catch (PDOException $e) {
die("Connection failed: " . $e->getMessage());
}图书添加功能
function addBook($pdo, $title, $author, $isbn, $quantity, $category) {
$sql = "INSERT INTO books (title, author, isbn, quantity, category)
VALUES (:title, :author, :isbn, :quantity, :category)";
$stmt = $pdo->prepare($sql);
$stmt->bindParam(':title', $title);
$stmt->bindParam(':author', $author);
$stmt->bindParam(':isbn', $isbn);
$stmt->bindParam(':quantity', $quantity);
$stmt->bindParam(':category', $category);
return $stmt->execute();
}图书查询功能
function searchBooks($pdo, $keyword) {
$sql = "SELECT * FROM books
WHERE title LIKE :keyword
OR author LIKE :keyword
OR isbn LIKE :keyword";
$stmt = $pdo->prepare($sql);
$keyword = "%$keyword%";
$stmt->bindParam(':keyword', $keyword);
$stmt->execute();
return $stmt->fetchAll(PDO::FETCH_ASSOC);
}用户认证系统
用户登录验证
function authenticateUser($pdo, $username, $password) {
$sql = "SELECT * FROM users WHERE username = :username";
$stmt = $pdo->prepare($sql);
$stmt->bindParam(':username', $username);
$stmt->execute();
$user = $stmt->fetch(PDO::FETCH_ASSOC);
if ($user && password_verify($password, $user['password'])) {
$_SESSION['user_id'] = $user['id'];
$_SESSION['username'] = $user['username'];
$_SESSION['role'] = $user['role'];
return true;
}
return false;
}借阅管理功能
处理借书请求
function borrowBook($pdo, $bookId, $userId) {
// 检查图书可用性
$checkSql = "SELECT quantity FROM books WHERE id = :bookId";
$stmt = $pdo->prepare($checkSql);
$stmt->bindParam(':bookId', $bookId);
$stmt->execute();
$book = $stmt->fetch(PDO::FETCH_ASSOC);
if ($book['quantity'] > 0) {
// 减少库存
$updateSql = "UPDATE books SET quantity = quantity - 1 WHERE id = :bookId";
$stmt = $pdo->prepare($updateSql);
$stmt->bindParam(':bookId', $bookId);
$stmt->execute();
// 创建借阅记录
$insertSql = "INSERT INTO borrow_records
(book_id, user_id, borrow_date, status)
VALUES (:bookId, :userId, CURDATE(), 'borrowed')";
$stmt = $pdo->prepare($insertSql);
$stmt->bindParam(':bookId', $bookId);
$stmt->bindParam(':userId', $userId);
return $stmt->execute();
}
return false;
}安全注意事项
密码存储必须使用哈希加密:
$hashedPassword = password_hash($plainPassword, PASSWORD_BCRYPT);所有用户输入必须进行预处理防止SQL注入:
$stmt = $pdo->prepare("SELECT * FROM books WHERE id = :id");
$stmt->bindParam(':id', $bookId, PDO::PARAM_INT);前端界面整合
简单的HTML表单示例(添加图书):
<form action="add_book.php" method="post">
<label>书名: <input type="text" name="title" required></label>
<label>作者: <input type="text" name="author" required></label>
<label>ISBN: <input type="text" name="isbn" required></label>
<label>数量: <input type="number" name="quantity" min="1" required></label>
<label>分类: <input type="text" name="category"></label>
<button type="submit">添加图书</button>
</form>以上代码框架可以扩展为完整的图书管理系统,建议使用MVC架构组织代码,并考虑添加分页、搜索过滤、报表生成等高级功能。对于生产环境,还应实现更完善的安全措施和错误处理机制。
