PHP - Limited Access To File?

I have a weird kind of problem.
I uploaded all upload-directories through FTP which have 777 permissions and owner name 'abc'
This means I can access all of them through the codes.
But while creating files inside those full permitted directories, the compiler complains for access denied.
Meanwhile, a different directory is created with same name whose owner is 'apache' itself and the previous directory is lost.
Then I cannot change the permissions of that directory through FTP.
I don't if it is apache server's problem itself or not.
Or is it a way to define user while creating/editing/deleting files and directories through php code itself?

RewriteCond %{HTTP_HOST} !^www.example.com.au$ [NC] 
RewriteCond %{HTTP_HOST} !^https://www.example.com.au$ [NC]
RewriteRule ^(.*)$ http://www.example.com.au/$1 [R,L]

Hi All   I have my website 90% working on https, fully working on http and I have managed to redirect from none www to www     What I am looking to do it if the user happens to enter https then make them go to my www version     I have manage to get them to go to my www version if they do not put in www but I am lost in how to redirect them from https to http   here is what I have so far and I just cannot figure it out     thanks Alan

A shipping vendor (like Stamps.Com) provides me a Printable Shipping Label to display on my website for Visitors to print.

When Visitors come to my page, my PHP code:
1.) connects to Shipping Vendor via an API,
2.) downloads and converts the base64 data to image
3.) names the image to Customer Order Number.png
4.) saves image in directory
5.) then displays image to Visitor.

$Shipping_Label_Data = $LabelVendor->data[0]->contents; // vendor's API
file_put_contents('Label-Directory/'.$Order_Number.'.png',base64_decode($Shipping_Label_Data));

echo '<img src="/Label-Directory/'.$Order_Number.'.png" />';

Later I realized the security flaw: any snooper can fish for other Visitor's labels in my Label directory.

What is the best way to prevent the display of other people's labels?

Thank you!!

I have a MS Access database file hosted on my Godaddy server.
I would like a simple php script to be able to access it and return values from it when I enter info from drop down boxes.

Eg column one is item name
Column two is price
Column three is items remaining

I want to pick an item from column one and have the appropriate values from columns two and three returned.

I have done many searches but most reveal php scripts that interrogate SQL databases.
Excuse my ignorance but are these what I want?

If not can anyone please get me going on a php script?
Ideally I don't want to change the format of the MS access database - I have it in xls and simply export and save it to access. If there is a simple way of reading directly from a specific tab in Excel that would be a better solution.

Thank you.

I've got a question, I thought I'd be able to do this fairly easily. I don't want to do an .htaccess solution also.

I tried this,

define('ACCESS', TRUE);


// then on other page 
 if(!defined('ACCESS'){die('Direct access not allowed.');}


Need some assistance, appreciated.

Hi!

I am trying to use the View Model Design Pattern in my application

The problem is that it is the first time I use it and I am a beginner.

So, I have the logic in the Model and the "front end" in View. I am talking about a sign up page.

In the current Html file I am trying to access an error array from the model file and display it to the user above the input field.

 

Here is the a snippet from the Model (Signup.php)

$account = new Account($con); //the account which takes as param the db connection
$error = null; //the array

// anything the user writes gets inside this array
if (isset($_POST["submitButton"])) {

 $firstName = UnifyFormInput::unifyUserFLName($_POST["firstName"]);
 $lastName = UnifyFormInput::unifyUserFLName($_POST["lastName"]);
 $username = UnifyFormInput::unifyFormUserName($_POST["username"]);
 $email = UnifyFormInput::unifyFormEmail($_POST["email"]);
 $password = UnifyFormInput::unifyFormPassword($_POST["password"]);

 //contain true or false based on the query being successful or not
 $success = $account->register($firstName, $lastName, $username, $email, $password);
 if ($success) {
  $_SESSION["userLoggedIn"] = $username;
     header("Location:index.php");
 }else{
    $error = $account->getError(Constants::$registerFailed);

 }
}
//compact — creates array containing variables and their values
//call render function from View file to show the register page content
View::render('register', compact('error'));

And here is the view:

 <?php                 
        if (!empty($error)) {
          echo  $account->getError(Constants::$loginFailed);
       }                        
?>
<input type="text" class="form-control" name="firstName" placeholder= "First Name" value="<?php getInputValue("firstName"); ?>" required>

 

Hello first time poster here .

Soni have been in the proccess of designing a website that would give images to users . But only owner of an image will get thier own image .

And some people may not access thier image whom are invalid untill i make them valid users.

Si.my problem is i want to stop people from accessing these images by typing thier mysite.com/path and these files only be accessable via a php that is in my website .

How do i go about doing that .

Is it iam my new to this or there is not a convenient way to do this .

Thanks in advance

I use jQuery when adding messages. However, the file can be called directly. For example: includes/add_comment.php?id=2

So, I can make a form and call this file directly to add a message. ID is user id and form can be submited with HTML form wherever are located.

How to prevent direct access to the file when called through a Ajax?

please it is very important!!
I have a script (main file is index.php) that is called into an iframe src via an url reference... http://www.xxxx.com/folder/userfolder/folderwithemailname/index.php
works perfectly!!..

How can i prevent someone getting direct url access to the file?
if someone were to take the url:    http://www.xxxx.com/folder/userfolder/folderwithemailname/index.php and place it into the address bar, they have access to the file...

points to note:
-i have no database for this script,
-the iframe is called directly into a html file,
- i dont know the userfolder or the emailfolder names,
- and the index.php is linked to several other .php and .js and .html files in different folders.... // i can add something like this to these file:(i found this on the net).
Add this to the page that you want to only be included

<?php
if(!defined('MyConst'){die('Direct access not premitted');}
?>

then on the pages that include it add

<?php
define('MyConst', TRUE);
?>

this will prevent the files being accessed, but then i cant access the file via the iframe url..

please any ideas???
best regards
Tony

Hello,

I'm new! I am trying to populate a list of locations based on ratings. I can populate the list just fine but it's displaying every record in the table. Is there a way of only looping 4 times so as to just display the top 4 records?

Here's the code:

Code: [Select]
$result = mysql_query("SELECT * FROM locations ORDER BY rating DESC");

while($row = mysql_fetch_array($result))
 
  {
 
  echo $row['name'];
  echo "<br>;
 
  }

Thankyou in advance for any help 

I run a dev site locally on Windows and the real site on a hosting provider on LINUX. PHP5, XAMP, etc.

Locally my fopen works.
On the web server it throws an error: "Warning: fopen() [function.fopen]: Unable to access" filepath/name

The file exists on both servers; upper/lower case is correct; so are access rights.

I noticed the error only today; this was working for the last 7 months; the function serves a range of content-types; just tested XLS and it works.

Now I am stuck 

This line throws the error:
$handle = fopen($strPathFileName, 'rb');

$strPathFileName uses / only

Any pointers appreciated... thanks.

Im looking to update the way my merchandise page lists items.

Im trying to make it so the query will list items in a table and have it query 6 items in one row before it makes a second table row.

heres my code i have now, but it lists them all horizontally down the page cuz of how i have it. but i'd like to change it to my explanation above
i know i will have to change it all into a table query but how to get it to list 6 items before it makes next row is what i dont know how to do.
Code: [Select]
<?php
                         if('/merch.php'==$_SERVER['PHP_SELF'])
{
$catquery = mysql_query('SELECT * FROM merch GROUP BY merch_cat')
or die('mySQL Query Failed: '.mysql_error());
$num_rows = mysql_num_rows($catquery);
if($num_rows==0){
echo 'Nothing Here';
break;
}
echo '<center><font size="6">';
while($row = mysql_fetch_array($catquery)){
list($id, $merch_name, $merch_image, $merch_cat, $merch_info, $buy, $price) = $row;
echo ': <font class="myFont"><a href="merch.php?list=false&merch_cat='.$merch_cat.'">'.$merch_cat.'</a></font> ';
}
echo ':</font><br />';
echo '<center>Select a Category</center>';
echo '<br /><br />';
echo '<div><font class="myFont" size="6">New Items</font></div>';
$newquery = mysql_query('SELECT * FROM merch ORDER BY id DESC LIMIT 4')  //Obviously im going to change the limit when i get this working
or die('New Query Failed: '.mysql_error());
while($rows = mysql_fetch_array($newquery)){
list($id, $merch_name, $merch_image, $merch_cat, $merch_info, $buy, $price) = $rows;
echo '<a href="merch.php?list=true&merch_cat='.$merch_cat.'&id='.$id.'">'.$merch_name.'<br />';
echo '<img src="media/merch/'.$merch_image.'-thumb.png" border="0"></a>';
echo '<br /><br />';
}

}
break;
?>

Hi I'm after a solution to a problem I have. I'm building a small site for charity which the the client wants to email(with a url link) to say 1000 selected companies but only wants them to be able to view the site and register interest and not anyone else or if they forward the mail to a non prefered client? Any help to point me in the right direction would be good thank-you.

Array
(
    [game] => Array
        (
            [id] => 2011012593950636050
            [name] => Array
                (
                    [us] => Castlevania II: Belmont's Revenge
                    [uk] => Castlevania II: Belmont's Revenge
                )


echo print_r($this->game[0]['name']) but undefined offset error.

I don't want to loop through the first array either.

Thanks

I'm currently learning PHP and I think I have a decent grasp of procedural programming so I'm trying to set it up a little bit and get a hang of OOP. I'm finding it a little tough going but I am making progress, the syntax and coding of it is fine but I don't quite get some theory and the best way to use it yet. It's only my third day in but I have a question relating to access modifiers.

It's a simple one, but what is the point?

That may sound a bit narky but I keep hearing and reading that it's good programming convention but it's never really explained why. What am I missing?

I get how they work but I don't really get why to use them. I've even read that private should only be rarely used, if at all as it makes testing harder and it stops you from being able to extend your classes. I'm not against using them - I want to learn to program to the very best of my ability but I'm eager to learn what benefits it actually has. Is there a technical reason, for example?