PHP - Generate Pdf File Problem

Hi, can someone help me to understand this? What i want to do is to write some information in a form and after i submit the form that data will be in a new php page.

Thanks in advance

hi, im trying to create a website and only now started thinking about the security part(noob mistake). say for example i have home.php page and an index.php page. index.php is where users would sign up/log in. the login and sign up processes are all done but i was thinking of creating a unique id of some sort for when the user logs in. or something like this site (forum.phpfreaks) when we sign in, you are signed but the url stays the same = forums.phpfreaks.com. like if we were signed out we will be permanantly signed out and typing in forums.phpfreaks.com would just land us at the main page where we need to sign in.  right now ,my home.php can be accessed with or without logging in even with sessions.   hope im making sense, thanks in advanced!    **haha that rhymed.    i tried adding:   <?php echo $_SERVER[PHP_SELF] . '?name=' . $userData['name'];?> in the index.php:

<?php
ob_start();
session_start();
 
if(isset($_POST['login']))
{
	$email = $_POST['email'];
	$password = $_POST['pass'];
	 
	 require "connection.php";
	 
	$emails = mysqli_real_escape_string($con, $email);
	$query = "SELECT id, name, email, password, salt FROM users WHERE email = '$emails';";
	 
	$result = mysqli_query($con, $query);
	 
	if(mysqli_num_rows($result) == 0) // User not found. So, redirect to login_form again.
	{
		echo "<script>alert(\"User does not exist!\")</script>";
	}
	 
	$userData = mysqli_fetch_array($result, MYSQLI_ASSOC);
	$hash = hash('sha256', $userData['salt'] . hash('sha256', $password) );
	 
	if($hash != $userData['password'])
	{
		echo "<script>alert(\"Incorrect Password!\")</script>";
	}else{ 
		session_regenerate_id();
		$_SESSION['sess_user_id'] = $userData['id'];
		$_SESSION['sess_name'] = $userData['name'];
		session_write_close();
		header('Location: home.php?user=');
	}
}
ob_flush();
?>
<!DOCTYPE html>
<form name="login" method="post" action="<?php echo $_SERVER[PHP_SELF] . '?name=' . $userData['name'];?>">

but i got access forbidden!     
Edited by noobdood, 19 May 2014 - 10:05 PM.

I have tried sitemap.org and a few others but have not found anything that will give the results I am after.

I have a blog site that has a URL and a Description for the URL and wish to have the description show as the anchor text which is linked to the URL, all data is taken from MySQL.

Does anyone have a code that will generate something like this ?

Hi guys, so i have this file upload script. When i upload a file it gets stored in /uploads and keeps the same file name. So if i upload a file "test.exe" the file will be available at uploads/test.exe What i want is that it generates a new file name like: "9daln292os.exe" so upload/9daln292os.exe   This is my code:

<?php

// Where the file is going to be placed
$target_path = "uploads/";

/* Add the original filename to our target path.
Result is "uploads/filename.extension" */
$target_path = $target_path . basename( $_FILES['uploadedfile']['name']);
$_FILES['uploadedfile']['tmp_name'];

?>


<?php


$file_type = $_FILES['userfile']['type'];
$file_name = $_FILES['userfile']['name'];
$file_ext = strtolower(substr($file_name,strrpos($file_name,".")));

if (!in_array($file_type, $FILE_MIMES) && !in_array($file_ext, $FILE_EXTS) )
$message = "Sorry, $file_name($file_type) is not allowed to be uploaded.";
else
$message = do_upload_function_here($upload_path_here, $upload_ur_upload_url_herel);
?>
<?php



$target_path = "uploads/";

$target_path = $target_path . basename( $_FILES['uploadedfile']['name']);

if(move_uploaded_file($_FILES['uploadedfile']['tmp_name'], $target_path)) {
echo "The file ". basename( $_FILES['uploadedfile']['name']).
" has been uploaded. Here is the link to your file: <a href=uploads/". basename( $_FILES['uploadedfile']['name']). ">". basename( $_FILES['uploadedfile']['name'])."</a>";

} else{
echo "There was an error uploading the file, please try again!";
}

?>

I don't know any basic php i really need someone to give me the code ready please. Thanks much appreciated.
Edited by darox, 21 July 2014 - 01:07 PM.

<?php
if(isset($_POST['submit'])){

	//collect form data
	$location = $_POST['location'];
	$ID = $_POST['ID'];
        $section = $_POST['section'];

	//check name is set
	if($location ==''){
		$error[] = 'Name is required';
	}

    //if no errors carry on
    if(!isset($error)){

		# Title of the CSV
		$Content = "location, ID, section\n";

		//set the data of the CSV
		$Content .= "$location, $ID, $section\n";

    # set the file name and create CSV file
    $my_file = ("$location$ID$section.cvs");
    $handle = fopen("$my_file", "w") or die('Cannot open file:  '.$my_file);
    header('Content-Type: application/csv'); 
    header('Content-Disposition: attachment; filename="' . $FileName . '"'); 
    echo $Content;
    exit();
	}
}

//if their are errors display them
if(isset($error)){
	foreach($error as $error){
		echo "<p style='color:#ff0000'>$error</p>";
	}
}
?> 

<form action='' method='post'>
<p><label>Location:</label><br><input type='text' name='location' value=''></p> 
<p><label>ID:</label><br><input type='text' name='ID' value=''></p> 
<p><label>Section:</label><br><input type='text' name='section' value=''></p>
<p><input type='submit' name='submit' value='Submit'></p> 
</form>

I have wrote a .php file which is a form with 3 different fields, in these fields I want to write entries which lateron will be submitted into a .csv generating a csv file on my server with the name of the entries.   The issue is that the file is not being generated on my server. With the current code the entries are being recognized and being placed in the filename of the csv.   The point is not to make it downloadable sinds I want to have it on my webserver and keep editing information in it.   My code is top of this post.   My .php file replies that: Cannot open file: BOD10Buffer.csv   Pardon my sloppy code everyone, I am not really a person that codes but this "form" may save me a lot of time in the longrun, just difficult and I am asking for help on this. Is there anyone that may be kind enough to help me? and as to what I might be doing wrong?   All help is much appreciated!    

Hi, so i kinda planned to code a new project. But i'm not quite sure about this.   I could imagine you could pull the pages out.     So let me explain.       So i believe google is generating these numbers automatically and automatically linking it to a page. Is there a way to do that easily? Would help me alot.  30b3096a003f946c870b24e6f93538d7.png   4.72KB   0 downloads   So if i have 50 result per page. Thats the thing i want!   If 50 result = > then new page! And then it should create a new number down there.    =) Any questions? ASK ME!

Hi, I have a script to add images to my tabel and and upload them to my server, I have managed to get the upload script to rename the image with a 5 digit random number on the end to prevent overwriting, the only problem I can't seem to be able to add the same name to my tabel. Any ideas? Thanks in advance.

Code: [Select]
<?php

 $idir = "uploads/";   // Path To Images Directory


if (isset ($_FILES['fupload'])){

//upload the image to tmp directory
$url = $_FILES['fupload']['name'];   // Set $url To Equal The Filename For Later Use 
if ($_FILES['fupload']['type'] == "image/jpg" || $_FILES['fupload']['type'] == "image/jpeg" || $_FILES['fupload']['type'] == "image/pjpeg") { 
$file_ext = strrchr($_FILES['fupload']['name'], '.');   // Get The File Extention In The Format Of , For Instance, .jpg, .gif or .php 
$copy = copy($_FILES['fupload']['tmp_name'], $idir. basename($_FILES['fupload']['name'], $file_ext).rand(10000 , 99999).$file_ext);   // Move Image From Temporary Location To Perm 
}
}
if (isset ($_FILES['fupload2'])){

//upload the image to tmp directory
$url = $_FILES['fupload2']['name'];   // Set $url To Equal The Filename For Later Use 
if ($_FILES['fupload2']['type'] == "image/jpg" || $_FILES['fupload2']['type'] == "image/jpeg" || $_FILES['fupload2']['type'] == "image/pjpeg") { 
$file_ext = strrchr($_FILES['fupload2']['name'], '.');   // Get The File Extention In The Format Of , For Instance, .jpg, .gif or .php 
$copy = copy($_FILES['fupload2']['tmp_name'], "$idir" . $_FILES['fupload2']['name'] $file_ext).rand(10000 , 99999).$file_ext);    // Move Image From Temporary Location To Permanent Location 
}
}
if (isset ($_FILES['fupload3'])){

//upload the image to tmp directory
$url = $_FILES['fupload3']['name'];   // Set $url To Equal The Filename For Later Use 
if ($_FILES['fupload3']['type'] == "image/jpg" || $_FILES['fupload3']['type'] == "image/jpeg" || $_FILES['fupload3']['type'] == "image/pjpeg") { 
$file_ext = strrchr($_FILES['fupload3']['name'], '.');   // Get The File Extention In The Format Of , For Instance, .jpg, .gif or .php 
$copy = copy($_FILES['fupload3']['tmp_name'], "$idir" . $_FILES['fupload3']['name'] $file_ext).rand(10000 , 99999).$file_ext);      // Move Image From Temporary Location To Permanent Location 
}
}
if (isset ($_FILES['fupload4'])){

//upload the image to tmp directory
$url = $_FILES['fupload4']['name'];   // Set $url To Equal The Filename For Later Use 
if ($_FILES['fupload4']['type'] == "image/jpg" || $_FILES['fupload4']['type'] == "image/jpeg" || $_FILES['fupload4']['type'] == "image/pjpeg") { 
$file_ext = strrchr($_FILES['fupload4']['name'], '.');   // Get The File Extention In The Format Of , For Instance, .jpg, .gif or .php 
$copy = copy($_FILES['fupload4']['tmp_name'], "$idir" . $_FILES['fupload4']['name'] $file_ext).rand(10000 , 99999).$file_ext);      // Move Image From Temporary Location To Permanent Location 
}
}

 $usr = "user";
    $pwd = "pass";
    $db = "db";
    $host = "host";

    # connect to database
    $cid = mysql_connect($host,$usr,$pwd);
    if (!$cid) { echo("ERROR: " . mysql_error() . "\n");    }

    if ($_POST['submit']) {
$logo = mysql_real_escape_string("$idir" . $_FILES['fupload']['name']);
$image1 = mysql_real_escape_string("$idir" . $_FILES['fupload2']['name']);
$image2 = mysql_real_escape_string("$idir" . $_FILES['fupload3']['name']);
$image3 = mysql_real_escape_string("$idir" . $_FILES['fupload4']['name']);

$SQL = " INSERT INTO mhhire ";
        $SQL .= "  image1, image2, image3, logo) VALUES ";
        $SQL .= " ('$image1', '$image2', '$image3', '$logo') ";

$result = mysql_db_query($db,$SQL,$cid);
      $last=mysql_insert_id();

        if (!$result) { echo("ERROR: " . mysql_error() . "\n$SQL\n");    }

header("location:thanks.php");
exit();

    }
?>

Hello   I am using fpdf to generate pdf files based on certain csv files. Now the client wants certain fields of the generated pdf file to be 'interactive' . Is this possible ? Googling about editable (interactive pdf's) only confused me . any help ?    btw by interactive I mean fields that can be typed into directly by the client and then saved into the pdf .

Hi, I would like to generate a constant value that change from a website to website but have an identical value for a single website. For example 

$_SERVER['SERVER_ADDR']

doesn't change for a single website, but easy to guess. an other idea is 

realpath(dirname(__FILE__))

but this can change if the web application execute scripts located in sub directories of the main script that use this variable. So what other possibilities to get a constant value that doesn't change ?   Thank you.

Hi..

I have code for auto generate but I got encountered problem that the SR number did not generate they still 120330001 even though I already save that SR number in my database.

I want to happen is after I click the save button the SR number will be 120330002.

here is my code:

Code: [Select]
<?php                                                                          
   error_reporting(0);
   date_default_timezone_set("Asia/Singapore"); //set the time zone  
$con = mysql_connect('localhost', 'root','');

if (!$con) {
    echo 'failed';
    die();
}

mysql_select_db("mes", $con);
$sr_date =date('Y-m-d H:i:s');

 $sql = "SELECT sr_number FROM receiving_materials ORDER BY sr_date DESC LIMIT 1"; 
        $result = mysql_query($sql, $con);
        if (!$result) {
            echo 'failed'; 
            die();
        }
        $total = mysql_num_rows($result);
        if ($total <= 0) {
            $currentSRNum = 1;
        } 
        else {
//------------------------------------------------------------------------------------------------------------------
            // Stock Number iteration.... 
            $row = mysql_fetch_assoc($result);
            
            $currentSRNum = (int)(substr($row['sr_num'],0,3));
            
            $currentSRYear  = (int)(substr($row['sr_num'],2,2));
            $currentSRMonth = (int)(substr($row['sr_num'],0,2));
            
            $currentYear  = (int)(date('y'));
            $currentMonth = (int)(date('m'));
            $currentDay = (int)(date('d'));
            
            
            if ($currentYear == $currentSRYear) {
                if ($currentMonth == $currentSRMonth) {
                    $currentSRNum = $currentSRNum + 1;
                }
                if ($currentMonth > $currentSRMonth) {
                    $currentSRNum = 1;
                }
                if ($currentDay > $currentSRDay) {
                    $currentSRNum = 1;
                }
            }  
            if ($currentYear > $currentRefYear) {      
                $currentSRNum = 1;                    
            }                                          
        }
//------------------------------------------------------------------------------------------------------------------         
        $yearMonth = date('ymd');    
        $currentSR = $yearMonth . sprintf("%04d", $currentSRNum); 
        
        
$sr_date = $_GET['sr_date'];
$sr_number = $_GET['sr_number'];
$si_num = $_GET['si_num'];
$s_name = $_GET['s_name'];
$po_num = $_GET['po_num'];
$qty = $_GET['qty'];
$mat_code = $_GET['mat_code'];
$mat_desc = $_GET['mat_desc'];
$wh_code = $_GET['wh_code'];
$bin_loc = $_GET['bin_loc'];        
?>
<html>
<title>Stock Requisition</title>
<head>
<style type="text/css">
#ddcolortabs{
margin-left: 2px;
padding: 0;
width: 100%;
background: transparent;
voice-family: "\"}\"";
voice-family: inherit;
padding-left: 2px;
}

#ddcolortabs ul{
font: bold 12px Arial, Verdana, sans-serif;
margin:0;
padding:0;
list-style:none;
}

#ddcolortabs li{
display:inline;
margin:0 2px 0 0;
padding:0;
text-transform:uppercase;
}


#ddcolortabs a{
float:left;
color: white;
background: #8cb85c url(layout_image/color_tabs_left.gif) no-repeat left top;
margin:2px 2px 0 0;
padding:0px 0 1px 3px;
text-decoration:none;
letter-spacing: 1px;
}

#ddcolortabs a span{
float:right;
display:block;
/*background: transparent url(layout_image/color_tabs_right.gif) no-repeat right top;*/
padding:6px 9px 2px 6px;
}

#ddcolortabs a span{
float:none;
}


#ddcolortabs a:hover{
background-color: #678b3f;
}

#ddcolortabs a:hover span{
background-color: #678b3f ;
}

#ddcolortabs #current a, #ddcolortabs #current span{ /*currently selected tab*/
background-color: #678b3f;
}
</style>
<style>
#SR_date{
    position: relative;
    font-family: Arial, Helvetica, sans-serif;
    font-size: .9em;
    margin-left: 10px;
    width: auto;
    height: auto;
    float: left;
    top : 10px;
   
}
#SR_number{
    position: relative;
    font-family: Arial, Helvetica, sans-serif;
    font-size: .9em;
    margin-left: 410px;
    top : 10px;
   
}
table {         
    margin: 10px;
    font-family: Arial, Helvetica, sans-serif; 
    font-size: .9em;
    border: 1px solid #DDD;
}

th {
    font-family: Arial, Helvetica, sans-serif;
    font-size: .7em;
    background: #694;
    color: #FFF;
    padding: 2px 6px;
    border-collapse: separate;
    border: 1px solid #000;
}   

td {
    font-family: Arial, Helvetica, sans-serif;
    font-size: .7em;
    border: 1px solid #DDD;
    text-align: left;
}

#RequestedBy{
    position: relative;
    font-family: Arial, Helvetica, sans-serif;
    font-size: .8em;
    margin-left: 10px;
    width: auto;
    height: auto;
    float: left;
    top : 10px;
}

#ApprovedBy{
    position: relative;
    font-family: Arial, Helvetica, sans-serif;
    font-size: .8em;
    margin-left: 15px;
    width: auto;
    height: auto;
    float: left;
    top : 10px;
}

#ReceivedBy{
    position: relative;
    font-family: Arial, Helvetica, sans-serif;
    font-size: .8em;
    margin-left: 15px;
    width: auto;
    height: auto;
    float: left;
    top : 10px;
}

#SI_number{
    position: relative;
    font-family: Arial, Helvetica, sans-serif;
    font-size: .9em;
    margin-left: 10px;
    width: auto;
    height: auto;
    float: left;
    top : 20px;
   
}
.LLabelRM {
display: block;
float: left;
width: 7em;
margin-right: 10px;
}

.LLabelSecRM {
display: block;
float: left;
width: 7.7em;
margin-left : 0px;
}

.LFieldRM {
float: left;
margin-right: 595px;   
}

.LFieldSecRM {
float: left;
margin-right: 15px;   
}
.LFieldSec1RM {
float: left;
margin-right: 350px;   
}
#save_btn {
    position: relative;
    top: 25px;
    margin-left: 7px;
}

</style>

<script type="text/javascript">
function save_rm(){
    var sr_date = document.getElementById("sr_date").value;
    var sr_number = document.getElementById("sr_number").value;
    var si_num = document.getElementById("si_num").value;
    var s_name = document.getElementById("s_name").value;
    var po_num = document.getElementById("po_num").value;
    var qty = document.getElementById("qty").value;
    var mat_code = document.getElementById("mat_code").value;
    var mat_desc = document.getElementById("mat_desc").value;
    var wh_code = document.getElementById("wh_code").value;
    var bin_loc = document.getElementById("bin_loc").value;

    document.receiving_form.action="ReceivingMaterialsSave.php?sr_date="+sr_date+"&sr_number="+sr_number+"&si_num="+si_num+
    "&s_name="+s_name+"&po_num="+po_num+"&qty="+qty+"&mat_code="+mat_code+"&mat_desc="+mat_desc+"&wh_code="+wh_code+
    "&bin_loc="+bin_loc;
    document.receiving_form.submit();
}
</script>
</head>
<body>
<form name="receiving_form">
<div id="ddcolortabs">
<ul>
<li> <a href="ParameterSettings.php" title="Parameter Settings"><span>Parameter Settings</span></a></li>
<li id="current"><a href="ReceivingMaterials.php" title="Receiving Materials"><span>Receiving Materials</span></a></li>
<li><a href="StockRequisition.php" title="Stock Requisition"><span>Stock Requisition</span></a></li>
<li style="margin-left: 1px"><a href="kanban_report.php" title="WIP Report"><span>Wip Report</span></a></li>
</ul>
</div>
<div id="SR_date">
<label>Date :</label>
<input type="text" name="sr_date" value="<?php echo $sr_date; ?>" size="16" readonly="readonly" style="border: none;">   
</div>
<div id="SR_number">
<label>RM# :</label>
<input type="text" name="sr_number" value="<?php echo $currentSR; ?>" size="9" readonly="readonly" style="font-weight: bold; border: none;">
</div>
<div id="SI_number">
 <label class="LLabelRM">SI/DR# :</label>
<input type="text" name="si_num" id="si_num" class="LFieldRM" value="" size="25">
<label class="LLabelRM">Supplier Name :</label>
<input type="text" name="s_name" id="s_name" class="LFieldRM" value="" size="25">
<label class="LLabelSecRM">PO # :</label>
<input type="text" name="po_num" id="po_num" class="LFieldSecRM" value="" size="25">
<label class="LLabelSecRM">Quantity :</label>
<input type="text" name="qty" id="qty" class="LFieldSec1RM" value="" size="25">
<label class="LLabelSecRM">Material Code :</label>
<input type="text" name="mat_code" id="mat_code" class="LFieldSecRM" value="" size="25">
<label class="LLabelSecRM">Material Desc. :</label>
<input type="text" name="mat_desc" id="mat_desc" class="LFieldSec1RM" value="" size="25">
<label class="LLabelSecRM">WH Code :</label>
<input type="text" name="wh_code" id="wh_code" class="LFieldSecRM" value="" size="25">
<label class="LLabelSecRM">BIN Location :</label>
<input type="text" name="bin_loc" id="bin_loc" class="LFieldSec1RM" value="" size="25">
</div>
<div id="save_btn">
<input type="button" name="save" value="save" onclick="save_rm()">
</div>
</form>
</body>
</html>

<?php

    $sql = "INSERT INTO receiving_materials
    (sr_date, sr_number, si_num, s_name, po_num, qty, mat_code, mat_desc, wh_code, bin_loc)
    VALUES
    ('$sr_date', '$sr_number', '$si_num', '$s_name', '$po_num', '$qty', '$mat_code', '$mat_desc', '$wh_code', '$bin_loc')
    ON DUPLICATE KEY UPDATE
    sr_date = '$sr_date', sr_number = '$sr_number', si_num = '$si_num', s_name = '$s_name', po_num = '$po_num',
    qty = '$qty', mat_code = '$mat_code', mat_desc = '$mat_desc', wh_code = 'wh_code', bin_loc = '$bin_loc'";
    $res_receiving = mysql_query($sql, $con) or die(mysql_error());
?>


any help is highly appreciated.

Thank you

Hi there. I need a function that can generate 15 random numbers between (1,10) and then converts those numbers to Roman numbers. Anyone can help me?

Hi

Already looked around, and although I've found some solution I simply don't understand them (not skilled at all).

I'm getting 10 random results using this, which works fine and list 10 random results.

$sql = "SELECT name FROM db ORDER BY RAND() LIMIT 10;";
$result = mysqli_query($con,$sql);
 while ($row=mysqli_fetch_array($result,MYSQLI_ASSOC))
  { 
echo $row['name']."<br>";
  }

How can I make 10 new variables for each result?

When a User changes his/her Email Address, should I generate a new Salt and Hash?

(I am re-using the code I used for a Password Reset, and during that I generated a new Salt and Hash for security.  I guess it can't hurt...)

Thanks,


Debbie

How do you generate a random number like say, 0 through 10?

I want to select random sites from my database that have IDs 0 through 10.