|
PHP - Do I Have Function Filter_var()
What version of PHP does the function filter_var() come with??
How do I know if I have it installed on my web server? Thanks, Debbie Similar TutorialsIm working with php 5.1.6. With xampp 1.5.14.
Im also working on a stock application. If I want to say add stock product (add_stock.php) this error is generated on screen. It seems to refer to a function in ump.class.php
Here we go,
ump.class.php
<?php
/**
* GUMP - A fast, extensible PHP input validation class
*
* @author Sean Nieuwoudt (http://twitter.com/SeanNieuwoudt)
* @copyright Copyright (c) 2011 Wixel.net
* @link http://github.com/Wixel/GUMP
* @version 1.0
*/
class GUMP
{
// Validation rules for execution
protected $validation_rules = array();
// Filter rules for execution
protected $filter_rules = array();
// Instance attribute containing errors from last run
protected $errors = array();
// ** ------------------------- Validation Data ------------------------------- ** //
public static $basic_tags = "<br><p><a><strong><b><i><em><img><blockquote><code><dd><dl><hr><h1><h2><h3><h4><h5><h6><label><ul><li><span><sub><sup>";
public static $en_noise_words = "about,after,all,also,an,and,another,any,are,as,at,be,because,been,before,
being,between,both,but,by,came,can,come,could,did,do,each,for,from,get,
got,has,had,he,have,her,here,him,himself,his,how,if,in,into,is,it,its,it's,like,
make,many,me,might,more,most,much,must,my,never,now,of,on,only,or,other,
our,out,over,said,same,see,should,since,some,still,such,take,than,that,
the,their,them,then,there,these,they,this,those,through,to,too,under,up,
very,was,way,we,well,were,what,where,which,while,who,with,would,you,your,a,
b,c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t,u,v,w,x,y,z,$,1,2,3,4,5,6,7,8,9,0,_";
// ** ------------------------- Validation Helpers ---------------------------- ** //
/**
* Shorthand method for inline validation
*
* @param array $data The data to be validated
* @param array $validators The GUMP validators
* @return mixed True(boolean) or the array of error messages
*/
public static function is_valid(array $data, array $validators)
{
$gump = new Gump();
$gump->validation_rules($validators);
if($gump->run($data) === false) {
return $gump->get_readable_errors(false);
} else {
return true;
}
}
/**
* Magic method to generate the validation error messages
*
* @return string
*/
public function __toString()
{
return $this->get_readable_errors(true);
}
/**
* Perform XSS clean to prevent cross site scripting
*
* @static
* @access public
* @param array $data
* @return array
*/
public static function xss_clean(array $data)
{
foreach($data as $k => $v)
{
$data[$k] = filter_var($v, FILTER_SANITIZE_STRING);
}
return $data;
}
/**
* Getter/Setter for the validation rules
*
* @param array $rules
* @return array
*/
public function validation_rules(array $rules = array())
{
if(!empty($rules)) {
$this->validation_rules = $rules;
} else {
return $this->validation_rules;
}
}
/**
* Getter/Setter for the filter rules
*
* @param array $rules
* @return array
*/
public function filter_rules(array $rules = array())
{
if(!empty($rules)) {
$this->filter_rules = $rules;
} else {
return $this->filter_rules;
}
}
/**
* Run the filtering and validation after each other
*
* @param array $data
* @return array
* @return boolean
*/
public function run(array $data)
{
$data = $this->filter($data, $this->filter_rules());
$validated = $this->validate(
$data, $this->validation_rules()
);
if($validated !== true) {
return false;
} else {
return $data;
}
}
/**
* Sanitize the input data
*
* @access public
* @param array $data
* @return array
*/
public function sanitize(array $input, $fields = NULL, $utf8_encode = true)
{
$magic_quotes = (bool)get_magic_quotes_gpc();
if(is_null($fields))
{
$fields = array_keys($input);
}
foreach($fields as $field)
{
if(!isset($input[$field]))
{
continue;
}
else
{
$value = $input[$field];
if(is_string($value))
{
if($magic_quotes === TRUE)
{
$value = stripslashes($value);
}
if(strpos($value, "\r") !== FALSE)
{
$value = trim($value);
}
if(function_exists('iconv') && function_exists('mb_detect_encoding') && $utf8_encode)
{
$current_encoding = mb_detect_encoding($value);
if($current_encoding != 'UTF-8' && $current_encoding != 'UTF-16') {
$value = iconv($current_encoding, 'UTF-8', $value);
}
}
$value = filter_var($value, FILTER_SANITIZE_STRING);
}
$input[$field] = $value;
}
}
return $input;
}
/**
* Return the error array from the last validation run
*
* @return array
*/
public function errors()
{
return $this->errors;
}
/**
* Perform data validation against the provided ruleset
*
* @access public
* @param mixed $input
* @param array $ruleset
* @return mixed
*/
public function validate(array $input, array $ruleset)
{
$this->errors = array();
foreach($ruleset as $field => $rules)
{
#if(!array_key_exists($field, $input))
#{
# continue;
#}
$rules = explode('|', $rules);
foreach($rules as $rule)
{
$method = NULL;
$param = NULL;
if(strstr($rule, ',') !== FALSE) // has params
{
$rule = explode(',', $rule);
$method = 'validate_'.$rule[0];
$param = $rule[1];
}
else
{
$method = 'validate_'.$rule;
}
if(is_callable(array($this, $method)))
{
$result = $this->$method($field, $input, $param);
if(is_array($result)) // Validation Failed
{
$this->errors[] = $result;
}
}
else
{
throw new Exception("Validator method '$method' does not exist.");
}
}
}
return (count($this->errors) > 0)? $this->errors : TRUE;
}
/**
* Process the validation errors and return human readable error messages
*
* @param bool $convert_to_string = false
* @param string $field_class
* @param string $error_class
* @return array
* @return string
*/
public function get_readable_errors($convert_to_string = false, $field_class="field", $error_class="error-message")
{
if(empty($this->errors)) {
return ($convert_to_string)? null : array();
}
$resp = array();
foreach($this->errors as $e) {
$field = ucwords(str_replace(array('_','-'), chr(32), $e['field']));
$param = $e['param'];
switch($e['rule']) {
case 'validate_required':
$resp[] = "The <span class=\"$field_class\">$field</span> field is required";
break;
case 'validate_valid_email':
$resp[] = "The <span class=\"$field_class\">$field</span> field is required to be a valid email address";
break;
case 'validate_max_len':
if($param == 1) {
$resp[] = "The <span class=\"$field_class\">$field</span> field needs to be shorter than $param character";
} else {
$resp[] = "The <span class=\"$field_class\">$field</span> field needs to be shorter than $param characters";
}
break;
case 'validate_min_len':
if($param == 1) {
$resp[] = "The <span class=\"$field_class\">$field</span> field needs to be longer than $param character";
} else {
$resp[] = "The <span class=\"$field_class\">$field</span> field needs to be longer than $param characters";
}
break;
case 'validate_exact_len':
if($param == 1) {
$resp[] = "The <span class=\"$field_class\">$field</span> field needs to be exactly $param character in length";
} else {
$resp[] = "The <span class=\"$field_class\">$field</span> field needs to be exactly $param characters in length";
}
break;
case 'validate_alpha':
$resp[] = "The <span class=\"$field_class\">$field</span> field may only contain alpha characters(a-z)";
break;
case 'validate_alpha_numeric':
$resp[] = "The <span class=\"$field_class\">$field</span> field may only contain alpha-numeric characters";
break;
case 'validate_alpha_dash':
$resp[] = "The <span class=\"$field_class\">$field</span> field may only contain alpha characters & dashes";
break;
case 'validate_numeric':
$resp[] = "The <span class=\"$field_class\">$field</span> field may only contain numeric characters";
break;
case 'validate_integer':
$resp[] = "The <span class=\"$field_class\">$field</span> field may only contain a numeric value";
break;
case 'validate_boolean':
$resp[] = "The <span class=\"$field_class\">$field</span> field may only contain a true or false value";
break;
case 'validate_float':
$resp[] = "The <span class=\"$field_class\">$field</span> field may only contain a float value";
break;
case 'validate_valid_url':
$resp[] = "The <span class=\"$field_class\">$field</span> field is required to be a valid URL";
break;
case 'validate_url_exists':
$resp[] = "The <span class=\"$field_class\">$field</span> URL does not exist";
break;
case 'validate_valid_ip':
$resp[] = "The <span class=\"$field_class\">$field</span> field needs to contain a valid IP address";
break;
case 'validate_valid_cc':
$resp[] = "The <span class=\"$field_class\">$field</span> field needs to contain a valid credit card number";
break;
case 'validate_valid_name':
$resp[] = "The <span class=\"$field_class\">$field</span> field needs to contain a valid human name";
break;
case 'validate_contains':
$resp[] = "The <span class=\"$field_class\">$field</span> field needs contain one of these values: ".implode(', ', $param);
break;
case 'validate_street_address':
$resp[] = "The <span class=\"$field_class\">$field</span> field needs to be a valid street address";
break;
}
}
if(!$convert_to_string) {
return $resp;
} else {
$buffer = '';
foreach($resp as $s) {
$buffer .= "<span class=\"$error_class\">$s</span>";
}
return $buffer;
}
}
/**
* Filter the input data according to the specified filter set
*
* @access public
* @param mixed $input
* @param array $filterset
* @return mixed
*/
public function filter(array $input, array $filterset)
{
foreach($filterset as $field => $filters)
{
if(!array_key_exists($field, $input))
{
continue;
}
$filters = explode('|', $filters);
foreach($filters as $filter)
{
$params = NULL;
if(strstr($filter, ',') !== FALSE)
{
$filter = explode(',', $filter);
$params = array_slice($filter, 1, count($filter) - 1);
$filter = $filter[0];
}
if(is_callable(array($this, 'filter_'.$filter)))
{
$method = 'filter_'.$filter;
$input[$field] = $this->$method($input[$field], $params);
}
else if(function_exists($filter))
{
$input[$field] = $filter($input[$field]);
}
else
{
throw new Exception("Filter method '$filter' does not exist.");
}
}
}
return $input;
}
// ** ------------------------- Filters --------------------------------------- ** //
/**
* Replace noise words in a string (http://tax.cchgroup.com/help/Avoiding_noise_words_in_your_search.htm)
*
* Usage: '<index>' => 'noise_words'
*
* @access protected
* @param string $value
* @param array $params
* @return string
*/
protected function filter_noise_words($value, $params = NULL)
{
$value = preg_replace('/\s\s+/u', chr(32),$value);
$value = " $value ";
$words = explode(',', self::$en_noise_words);
foreach($words as $word)
{
$word = trim($word);
$word = " $word "; // Normalize
if(stripos($value, $word) !== FALSE)
{
$value = str_ireplace($word, chr(32), $value);
}
}
return trim($value);
}
/**
* Remove all known punctuation from a string
*
* Usage: '<index>' => 'rmpunctuataion'
*
* @access protected
* @param string $value
* @param array $params
* @return string
*/
protected function filter_rmpunctuation($value, $params = NULL)
{
return preg_replace("/(?![.=$'€%-])\p{P}/u", '', $value);
}
/**
* Translate an input string to a desired language [DEPRECIATED]
*
* Any ISO 639-1 2 character language code may be used
*
* See: http://www.science.co.il/language/Codes.asp?s=code2
*
* @access protected
* @param string $value
* @param array $params
* @return string
*/
/*
protected function filter_translate($value, $params = NULL)
{
$input_lang = 'en';
$output_lang = 'en';
if(is_null($params))
{
return $value;
}
switch(count($params))
{
case 1:
$input_lang = $params[0];
break;
case 2:
$input_lang = $params[0];
$output_lang = $params[1];
break;
}
$text = urlencode($value);
$translation = file_get_contents(
"http://ajax.googleapis.com/ajax/services/language/translate?v=1.0&q={$text}&langpair={$input_lang}|{$output_lang}"
);
$json = json_decode($translation, true);
if($json['responseStatus'] != 200)
{
return $value;
}
else
{
return $json['responseData']['translatedText'];
}
}
*/
/**
* Sanitize the string by removing any script tags
*
* Usage: '<index>' => 'sanitize_string'
*
* @access protected
* @param string $value
* @param array $params
* @return string
*/
protected function filter_sanitize_string($value, $params = NULL)
{
return filter_var($value, FILTER_SANITIZE_STRING);
}
/**
* Sanitize the string by urlencoding characters
*
* Usage: '<index>' => 'urlencode'
*
* @access protected
* @param string $value
* @param array $params
* @return string
*/
protected function filter_urlencode($value, $params = NULL)
{
return filter_var($value, FILTER_SANITIZE_ENCODED);
}
/**
* Sanitize the string by converting HTML characters to their HTML entities
*
* Usage: '<index>' => 'htmlencode'
*
* @access protected
* @param string $value
* @param array $params
* @return string
*/
protected function filter_htmlencode($value, $params = NULL)
{
return filter_var($value, FILTER_SANITIZE_SPECIAL_CHARS);
}
/**
* Sanitize the string by removing illegal characters from emails
*
* Usage: '<index>' => 'sanitize_email'
*
* @access protected
* @param string $value
* @param array $params
* @return string
*/
protected function filter_sanitize_email($value, $params = NULL)
{
return filter_var($value, FILTER_SANITIZE_EMAIL);
}
/**
* Sanitize the string by removing illegal characters from numbers
*
* @access protected
* @param string $value
* @param array $params
* @return string
*/
protected function filter_sanitize_numbers($value, $params = NULL)
{
return filter_var($value, FILTER_SANITIZE_NUMBER_INT);
}
/**
* Filter out all HTML tags except the defined basic tags
*
* @access protected
* @param string $value
* @param array $params
* @return string
*/
protected function filter_basic_tags($value, $params = NULL)
{
return strip_tags($value, self::$basic_tags);
}
/**
* Filter out all SQL Valnurablities
*
* @access protected
* @param string $value
* @param array $params
* @return string
*/
protected function filter_mysql_escape($value, $params = NULL)
{
return mysql_real_escape_string($value);
}
// ** ------------------------- Validators ------------------------------------ ** //
/**
* Verify that a value is contained within the pre-defined value set
*
* Usage: '<index>' => 'contains,value value value'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_contains($field, $input, $param = NULL)
{
$param = trim(strtolower($param));
$value = trim(strtolower($input[$field]));
if (preg_match_all('#\'(.+?)\'#', $param, $matches, PREG_PATTERN_ORDER)) {
$param = $matches[1];
} else {
$param = explode(chr(32), $param);
}
if(in_array($value, $param)) { // valid, return nothing
return;
} else {
return array(
'field' => $field,
'value' => $value,
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Check if the specified key is present and not empty
*
* Usage: '<index>' => 'required'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_required($field, $input, $param = NULL)
{
if(isset($input[$field]) && trim($input[$field]) != '')
{
return;
}
else
{
return array(
'field' => $field,
'value' => NULL,
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the provided email is valid
*
* Usage: '<index>' => 'valid_email'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_valid_email($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
if(!filter_var($input[$field], FILTER_VALIDATE_EMAIL))
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the provided value length is less or equal to a specific value
*
* Usage: '<index>' => 'max_len,240'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_max_len($field, $input, $param = NULL)
{
if(!isset($input[$field]))
{
return;
}
if(function_exists('mb_strlen'))
{
if(mb_strlen($input[$field]) <= (int)$param)
{
return;
}
}
else
{
if(strlen($input[$field]) <= (int)$param)
{
return;
}
}
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
/**
* Determine if the provided value length is more or equal to a specific value
*
* Usage: '<index>' => 'min_len,4'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_min_len($field, $input, $param = NULL)
{
if(!isset($input[$field]))
{
return;
}
if(function_exists('mb_strlen'))
{
if(mb_strlen($input[$field]) >= (int)$param)
{
return;
}
}
else
{
if(strlen($input[$field]) >= (int)$param)
{
return;
}
}
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
/**
* Determine if the provided value length matches a specific value
*
* Usage: '<index>' => 'exact_len,5'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_exact_len($field, $input, $param = NULL)
{
if(!isset($input[$field]))
{
return;
}
if(function_exists('mb_strlen'))
{
if(mb_strlen($input[$field]) == (int)$param)
{
return;
}
}
else
{
if(strlen($input[$field]) == (int)$param)
{
return;
}
}
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
/**
* Determine if the provided value contains only alpha characters
*
* Usage: '<index>' => 'alpha'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_alpha($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
if(!preg_match("/^([a-zÀÁÂÃÄÅÇÈÉÊËÌÍÎÏÒÓÔÕÖÙÚÛÜÝàáâãäåçèéêëìíîïðòóôõöùúûüýÿ])+$/i", $input[$field]) !== FALSE)
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the provided value contains only alpha-numeric characters
*
* Usage: '<index>' => 'alpha_numeric'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_alpha_numeric($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
if(!preg_match("/^([a-z0-9ÀÁÂÃÄÅÇÈÉÊËÌÍÎÏÒÓÔÕÖÙÚÛÜÝàáâãäåçèéêëìíîïðòóôõöùúûüýÿ])+$/i", $input[$field]) !== FALSE)
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the provided value contains only alpha characters with dashed and underscores
*
* Usage: '<index>' => 'alpha_dash'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_alpha_dash($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
if(!preg_match("/^([a-z0-9ÀÁÂÃÄÅÇÈÉÊËÌÍÎÏÒÓÔÕÖÙÚÛÜÝàáâãäåçèéêëìíîïðòóôõöùúûüýÿ_-])+$/i", $input[$field]) !== FALSE)
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the provided value is a valid number or numeric string
*
* Usage: '<index>' => 'numeric'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_numeric($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
if(!is_numeric($input[$field]))
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the provided value is a valid integer
*
* Usage: '<index>' => 'integer'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_integer($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
if(!filter_var($input[$field], FILTER_VALIDATE_INT))
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the provided value is a PHP accepted boolean
*
* Usage: '<index>' => 'boolean'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_boolean($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
$bool = filter_var($input[$field], FILTER_VALIDATE_BOOLEAN);
if(!is_bool($bool))
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the provided value is a valid float
*
* Usage: '<index>' => 'float'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_float($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
if(!filter_var($input[$field], FILTER_VALIDATE_FLOAT))
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the provided value is a valid URL
*
* Usage: '<index>' => 'valid_url'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_valid_url($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
if(!filter_var($input[$field], FILTER_VALIDATE_URL))
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if a URL exists & is accessible
*
* Usage: '<index>' => 'url_exists'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_url_exists($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
$url = str_replace(
array('http://', 'https://', 'ftp://'), '', strtolower($input[$field])
);
if(function_exists('checkdnsrr'))
{
if(!checkdnsrr($url))
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
else
{
if(gethostbyname($url) == $url)
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
}
/**
* Determine if the provided value is a valid IP address
*
* Usage: '<index>' => 'valid_ip'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_valid_ip($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
if(!filter_var($input[$field], FILTER_VALIDATE_IP) !== FALSE)
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the provided value is a valid IPv4 address
*
* Usage: '<index>' => 'valid_ipv4'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_valid_ipv4($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
if(!filter_var($input[$field], FILTER_VALIDATE_IP, FILTER_FLAG_IPV4) !== FALSE)
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the provided value is a valid IPv6 address
*
* Usage: '<index>' => 'valid_ipv6'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_valid_ipv6($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
if(!filter_var($input[$field], FILTER_VALIDATE_IP, FILTER_FLAG_IPV6) !== FALSE)
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the input is a valid credit card number
*
* See: http://stackoverflow.com/questions/174730/what-is-the-best-way-to-validate-a-credit-card-in-php
* Usage: '<index>' => 'valid_cc'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_valid_cc($field, $input, $param = NULL)
{
if(!isset($input[$field]) || empty($input[$field]))
{
return;
}
$number = preg_replace('/\D/', '', $input[$field]);
if(function_exists('mb_strlen'))
{
$number_length = mb_strlen($input[$field]);
}
else
{
$number_length = strlen($input[$field]);
}
$parity = $number_length % 2;
$total = 0;
for($i = 0; $i < $number_length; $i++)
{
$digit = $number[$i];
if ($i % 2 == $parity)
{
$digit *= 2;
if ($digit > 9)
{
$digit -= 9;
}
}
$total += $digit;
}
if($total % 10 == 0)
{
return; // Valid
}
else
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the input is a valid human name [Credits to http://github.com/ben-s]
*
* See: https://github.com/Wixel/GUMP/issues/5
* Usage: '<index>' => 'valid_name'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_valid_name($field, $input, $param = NULL)
{
if(!isset($input[$field])|| empty($input[$field]))
{
return;
}
if(!preg_match("/^([a-zÀÁÂÃÄÅÇÈÉÊËÌÍÎÏÒÓÔÕÖÙÚÛÜÝàáâãäåçèéêëìíîïñðòóôõöùúûüýÿ '-])+$/i", $input[$field]) !== FALSE)
{
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
/**
* Determine if the provided input is likely to be a street address using weak detection
*
* Usage: '<index>' => 'street_address'
*
* @access protected
* @param string $field
* @param array $input
* @return mixed
*/
protected function validate_street_address($field, $input, $param = NULL)
{
if(!isset($input[$field])|| empty($input[$field]))
{
return;
}
// Theory: 1 number, 1 or more spaces, 1 or more words
$hasLetter = preg_match('/[a-zA-Z]/', $input[$field]);
$hasDigit = preg_match('/\d/' , $input[$field]);
$hasSpace = preg_match('/\s/' , $input[$field]);
$passes = $hasLetter && $hasDigit && $hasSpace;
if(!$passes) {
return array(
'field' => $field,
'value' => $input[$field],
'rule' => __FUNCTION__,
'param' => $param
);
}
}
} // EOC
Here is add_stock.php
<?php
include_once("init.php");
?>
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>POSNIC - Add Stock Category</title>
<!-- Stylesheets -->
<link href='http://fonts.googleapis.com/css?family=Droid+Sans:400,700' rel='stylesheet'>
<link rel="stylesheet" href="css/style.css">
<link rel="stylesheet" href="js/date_pic/date_input.css">
<link rel="stylesheet" href="lib/auto/css/jquery.autocomplete.css">
<!-- Optimize for mobile devices -->
<meta name="viewport" content="width=device-width, initial-scale=1.0"/>
<!-- jQuery & JS files -->
<?php include_once("tpl/common_js.php"); ?>
<script src="js/script.js"></script>
<script src="js/date_pic/jquery.date_input.js"></script>
<script src="lib/auto/js/jquery.autocomplete.js "></script>
<script>
/*$.validator.setDefaults({
submitHandler: function() { alert("submitted!"); }
});*/
$(document).ready(function() {
$("#supplier").autocomplete("supplier1.php", {
width: 160,
autoFill: true,
selectFirst: true
});
$("#category").autocomplete("category.php", {
width: 160,
autoFill: true,
selectFirst: true
});
// validate signup form on keyup and submit
$("#form1").validate({
rules: {
name: {
required: true,
minlength: 3,
maxlength: 200
},
stockid: {
required: true,
minlength: 3,
maxlength: 200
},
cost: {
required: true,
},
sell: {
required: true,
}
},
messages: {
name: {
required: "Please Enter Stock Name",
minlength: "Category Name must consist of at least 3 characters"
},
stockid: {
required: "Please Enter Stock ID",
minlength: "Category Name must consist of at least 3 characters"
},
sell: {
required: "Please Enter Selling Price",
minlength: "Category Name must consist of at least 3 characters"
},
cost: {
required: "Please Enter Cost Price",
minlength: "Category Name must consist of at least 3 characters"
}
}
});
});
function numbersonly(e){
var unicode=e.charCode? e.charCode : e.keyCode
if (unicode!=8 && unicode!=46 && unicode!=37 && unicode!=38 && unicode!=39 && unicode!=40 && unicode!=9){ //if the key isn't the backspace key (which we should allow)
if (unicode<48||unicode>57)
return false
}
}
</script>
</script>
</head>
<body>
<!-- TOP BAR -->
<?php include_once("tpl/top_bar.php"); ?>
<!-- end top-bar -->
<!-- HEADER -->
<div id="header-with-tabs">
<div class="page-full-width cf">
<ul id="tabs" class="fl">
<li><a href="dashboard.php" class="dashboard-tab">Dashboard</a></li>
<li><a href="view_sales.php" class="sales-tab">Sales</a></li>
<li><a href="view_customers.php" class=" customers-tab">Customers</a></li>
<li><a href="view_purchase.php" class="purchase-tab">Purchase</a></li>
<li><a href="view_supplier.php" class=" supplier-tab">Supplier</a></li>
<li><a href="view_product.php" class="active-tab stock-tab">Stocks / Products</a></li>
<li><a href="view_payments.php" class="payment-tab">Payments / Outstandings</a></li>
<li><a href="view_report.php" class="report-tab">Reports</a></li>
</ul> <!-- end tabs -->
<!-- Change this image to your own company's logo -->
<!-- The logo will automatically be resized to 30px height. -->
<a href="#" id="company-branding-small" class="fr"><img src="<?php if(isset($_SESSION['logo'])) { echo "upload/".$_SESSION['logo'];}else{ echo "upload/posnic.png"; } ?>" alt="Point of Sale" /></a>
</div> <!-- end full-width -->
</div> <!-- end header -->
<!-- MAIN CONTENT -->
<div id="content">
<div class="page-full-width cf">
<div class="side-menu fl">
<h3>Stock Management</h3>
<ul>
<li><a href="add_stock.php">Add Stock/Product</a></li>
<li><a href="view_product.php">View Stock/Product</a></li>
<li><a href="add_category.php">Add Stock Category</a></li>
<li><a href="view_category.php">view Stock Category</a></li>
<li><a href="view_stock_availability.php">view Stock Available</a></li>
</ul>
</div> <!-- end side-menu -->
<div class="side-content fr">
<div class="content-module">
<div class="content-module-heading cf">
<h3 class="fl">Add Stock </h3>
<span class="fr expand-collapse-text">Click to collapse</span>
<div style="margin-top: 15px;margin-left: 150px"></div>
<span class="fr expand-collapse-text initial-expand">Click to expand</span>
</div> <!-- end content-module-heading -->
<div class="content-module-main cf">
<?php
//Gump is libarary for Validatoin
if(isset($_POST['name'])){
$_POST = $gump->sanitize($_POST);
$gump->validation_rules(array(
'name' => 'required|max_len,100|min_len,3',
'stockid' => 'required|max_len,200',
'sell' => 'required|max_len,200',
'cost' => 'required|max_len,200',
'supplier' => 'max_len,200',
'category' => 'max_len,200'
));
$gump->filter_rules(array(
'name' => 'trim|sanitize_string|mysql_escape',
'stockid' => 'trim|sanitize_string|mysql_escape',
'sell' => 'trim|sanitize_string|mysql_escape',
'cost' => 'trim|sanitize_string|mysql_escape',
'category' => 'trim|sanitize_string|mysql_escape',
'supplier' => 'trim|sanitize_string|mysql_escape'
));
$validated_data = $gump->run($_POST);
$name = "";
$stockid = "";
$sell = "";
$cost = "";
$supplier = "";
$category = "";
if($validated_data === false) {
echo $gump->get_readable_errors(true);
} else {
$name=mysql_real_escape_string($_POST['name']);
$stockid=mysql_real_escape_string($_POST['stockid']);
$sell=mysql_real_escape_string($_POST['sell']);
$cost=mysql_real_escape_string($_POST['cost']);
$supplier=mysql_real_escape_string($_POST['supplier']);
$category=mysql_real_escape_string($_POST['category']);
$count = $db->countOf("stock_details", "stock_name ='$name'");
if($count>1)
{
$data='Dublicat Entry. Please Verify';
$msg='<p style=color:red;font-family:gfont-family:Georgia, Times New Roman, Times, serif>'.$data.'</p>';//
?>
<script src="dist/js/jquery.ui.draggable.js"></script>
<script src="dist/js/jquery.alerts.js"></script>
<script src="dist/js/jquery.js"></script>
<link rel="stylesheet" href="dist/js/jquery.alerts.css" >
<script type="text/javascript">
jAlert('<?php echo $msg; ?>', 'POSNIC');
</script>
<?php
}
else
{
if($db->query("insert into stock_details(stock_id,stock_name,stock_quatity,supplier_id,company_price,selling_price,category) values('$stockid','$name',0,'$supplier',$cost,$sell,'$category')"))
{
$db->query("insert into stock_avail(name,quantity) values('$name',0)");
$msg=" $name Stock Details Added" ;
header("Location: add_stock.php?msg=$msg");
}else
echo "<br><font color=red size=+1 >Problem in Adding !</font>" ;
}
}
}
if(isset($_GET['msg'])){
$data=$_GET['msg'];
$msg='<p style=color:#153450;font-family:gfont-family:Georgia, Times New Roman, Times, serif>'.$data.'</p>';//
?>
<script src="dist/js/jquery.ui.draggable.js"></script>
<script src="dist/js/jquery.alerts.js"></script>
<script src="dist/js/jquery.js"></script>
<link rel="stylesheet" href="dist/js/jquery.alerts.css" >
<script type="text/javascript">
jAlert('<?php echo $msg; ?>', 'POSNIC');
</script>
<?php
}
?>
<form name="form1" method="post" id="form1" action="">
<table class="form" border="0" cellspacing="0" cellpadding="0">
<tr>
<?php
$max = $db->maxOfAll("id", "stock_details");
$max=$max+1;
$autoid="SD".$max."";
?>
<td><span class="man">*</span>Stock ID:</td>
<td><input name="stockid" type="text" id="stockid" readonly maxlength="200" class="round default-width-input" value="<?php echo $autoid; ?>" /></td>
<td><span class="man">*</span>Name:</td>
<td><input name="name"placeholder="ENTER CATEGORY NAME" type="text" id="name" maxlength="200" class="round default-width-input" value="<?php echo $name; ?>" /></td>
</tr>
<tr>
<td><span class="man">*</span>Cost:</td>
<td><input name="cost" placeholder="ENTER COST PRICE" type="text" id="cost" maxlength="200" class="round default-width-input" onkeypress="return numbersonly(event)" value="<?php echo $cost; ?>" /></td>
<td><span class="man">*</span>Sell:</td>
<td><input name="sell" placeholder="ENTER SELLING PRICE" type="text" id="sell" maxlength="200" class="round default-width-input" onkeypress="return numbersonly(event)" value="<?php echo $sell; ?>" /></td>
</tr>
<tr>
<td>Supplier:</td>
<td><input name="supplier" placeholder="ENTER SUPPLIER NAME" type="text" id="supplier" maxlength="200" class="round default-width-input" value="<?php echo $supplier; ?>" /></td>
<td>Category:</td>
<td><input name="category" placeholder="ENTER CATEGORY NAME" type="text" id="category" maxlength="200" class="round default-width-input" value="<?php echo $category; ?>" /></td>
</tr>
<tr>
<td> </td>
<td> </td>
</tr>
<tr>
<td>
</td>
<td>
<input class="button round blue image-right ic-add text-upper" type="submit" name="Submit" value="Add">
(Control + S)
<td align="right"><input class="button round red text-upper" type="reset" name="Reset" value="Reset"> </td>
</tr>
</table>
</form>
</div> <!-- end content-module-main -->
</div> <!-- end content-module -->
</div> <!-- end full-width -->
</div> <!-- end content -->
<!-- FOOTER -->
<div id="footer">
<p>Any Queries email to <a href="mailto:sridhar.posnic@gmail.com?subject=Stock%20Management%20System">sridhar.posnic@gmail.com</a>.</p>
</div> <!-- end footer -->
</body>
</html>
now who can tell me what is wrong with the function filter_var() method on line 186 in ump.class.php?
Hello Guys ... i am new here and i am also new in php i selfstudy html css and js and bootstrap for front-end and for back-back php & mysql & PDO & OOP and i will soon start mvc then laravel and i am trying to secure my input field and i do not want any attacks or sql injects and i see people user filter_var and htmlentities and htmlspecialchars and each one has diffrent opinion can some one help me and tell me what is the best for securing input which all values will store in database thanks <3
I wrote
<?php I tried parsing through first https://www.jadaliyya.com/Details/28167/The-Empire-of-Sexuality-An-Interview-with-Joseph-Massad then even tried www.google.com and on both I get the following returned
post_url equals: www.google.compost_title equals: testpost_Threadybody equals: Enter your posts... URL equals: www.google.com www.google.com is not a valid URL Web page redirects after 2 seconds. And here is the if statement that handles my filter for URLs
if(isset($_POST["submit"]) && !empty($_POST["url"]) && !empty($_POST["Title"])){
$URL = $conn -> real_escape_string($_POST["url"]) ;
$BodyText = $conn -> real_escape_string(nl2br($_POST["ThreadBody"])) ;
echo "<P>URL equals: " ;
echo $URL ;
echo "<P>" ;
//Change to embed for youtube.
if (filter_var($URL, FILTER_VALIDATE_URL)) {
echo("$URL is a valid URL");
//Check if url is a youtube url
if (strpos($URL,'youtube') !== false) {
echo 'Youtube exists.';
$URL = preg_replace("/\s*[a-zA-Z\/\/:\.]*youtube.com\/watch\?v=([a-zA-Z0-9\-_]+)([a-zA-Z0-9\/\*\-\_\?\&\;\%\=\.]*)/i","<iframe width=\"420\" height=\"315\" src=\"//www.youtube.com/embed/$1\" frameborder=\"0\" allowfullscreen></iframe>",$URL);
} else {
echo 'Youtube is not included .';
$URL = "<ahref ='" . $URL . "</a>" ;
}
$Title = $conn -> real_escape_string($_POST["Title"]) ;
$User = $_SESSION['username'];
$sql = "INSERT INTO Threads (Title, Users, ThreadBody, url)
VALUES ('$Title', '$User','$BodyText','$URL')";
if (mysqli_query($conn, $sql)) {
echo "New record has been added successfully !";
} else {
echo "Error: " . $sql . ":-" . mysqli_error($conn);
}
}
else {
echo("$URL is not a valid URL");
}
function Clean_String($string) { return strtolower(trim(filter_var($string, FILTER_SANITIZE_STRING, FILTER_FLAG_ENCODE_LOW))); } Ive tracked my issue back to filter_var here. For some reason it is adding stuff to the beginning and end of the string im looking for. It did this on 1 string that I noticed and doesnt do it on any others, which was strange because that string was typical like all others. Just a few sentences and numbers and line breaks. I cant find a reason why this is happening Hi,
Is there any way to use the inbuilt filter functions in PHP to filter for integer values greater than 256? All examples that I saw had a max_range of 256. Kindly suggest. Thanks.
I'm having a lot of trouble validating things using custom regex. I'm trying to validate usernames without spaces using numbers and/or letters with optional underscores. This is my code but it isn't validating anything, nothing is ever validated. Whatever I write it says the username isn't valid. if(isset($_POST['submit'])){ if(filter_var($_POST['value1'], FILTER_VALIDATE_REGEXP, array("options"=>array("regexp"=>"/^[\w.-]{{3},{28}}$/")))){ echo "Value is a valid username."; } else { echo "Value is NOT a valid username."; } } ?> Any help regarding this issue will be greatly appreciated. Thanks! Hello all, I have some piece of code that is nested like this $variable = 'This is a global argument'; function parentFunction($variable) { function childFunction() { echo 'Argument of the parent function is '.$GLOBALS['variable']; } childFunction(); } parentFunction(5); What I want to know is - Is there a way to access a variable from the parent function without passing arguments to the child function? (Something like how classes have parent::?). I don't want to use $GLOBALS because it might cause some variable collision, and I didn't want to pass arguments because incase I decide to change the arguments in the parent function I'd have to do it in the child function aswell. From my searching around in the Internet it seems like this is not possible, but if theres a slight chance that there might be something out there, i'm willing to give it a shot . Thanks in advance Question 1) Is the only and proper way to call a parent function "parent::function()"? Are there other/better ways from within a child function? Question 2) What are the deciding factors for when to make a function or attribute static? How do you make that decision? Assuming 5.3... Thanks. I need to call usort from a class function, and I'm puzzled about how to define the comparison function. I've tried to define the comparison function in the same class, but I can't get usort to call it. I found one hint that it will work if I make the comparison function static, but I tried that, and it didn't work for me. If I define the comparison function outside the class, it won't have access to object properties that it needs to operate. The only solution I can think of is to define the comparison function outside the class and put the object properties it needs in globals. Is there a cleaner way to do this? I have this function completely written in my class file that I am working on. The point to this function is to be able to check the login of a user or administrator for either of the control panels associated with my site. It will check the session intime as well as the page / module referenced. Once it passes all those checks, it will check and ensure the emailaddress/password stored in the current session still holds true and the account is still active... if the account is still active it will update the lastActivity as well as update all of the session variables with what is currently in the database. What I am looking for is basically a look at the function, see if it looks good.. If there is any part to it that could create security holes for the site just off the login function itself... Usage: $q->validUser($_SESSION['user'], $_mod); <?php function validUser($sess, $p) { if ($sess['inTime'] == '' && $p != 'login' && $p != 'logout') { session_destroy(); $login = '0'; $_int = ''; return $login; } else if ($sess['inTime'] < time()-3600 && $p != 'login') { $sess['inTime'] = ''; session_destroy(); $this->check_login($sess, $p); } else { $this->user = $sess['emailAddress']; $this->pass = $sess['password']; $login = $this->sql_query("SELECT * FROM users WHERE emailAddress = '".$this->user."' AND password = '".$this->pass."' AND status = '1' LIMIT '1'"); if ($login = $this->sql_numrows($login) < 1) { $sess['inTime'] == ''; session_destroy(); $login = '0'; } else { // logged in, lets update the database for last_activity AND the session. $this->sql_query("UDATE users SET lastActivity = '".now()."' WHERE emailAddress = '".$this->user."'"); $login = $this->sql_query("SELECT * FROM users WHERE emailAddress = '".$this->user."' AND password = '".$this->pass."' AND status = '1' LIMIT '1'"); $login = mysql_fetch_assoc($login); foreach ($login as $key => $value) { $sess[$key] = $value; } $sess['inTime'] = time(); $login = '1'; } return $login; } } ?> That is the main function, sql_query and sql_numrows is: <?php function sql_query($query = "", $transaction = FALSE) { unset($this->query_result); if ($query != "") { $this->num_queries++; if ($transation == BEGIN_TRANSACTION && !$this->in_transation) { $result = mysql_query("BEGIN", $this->db_connect_id); if (!$result) { return false; } $this->in_transaction = TRUE; } $this->query_result = mysql_query($query, $this->db_connect_id); } else { if ($transaction == END_TRANSACTION && $this->in_transaction ) { $result = mysql_query("COMMIT", $this->db_connect_id); } } if ($this->query_result) { unset($this->row[$this->query_result]); unset($this->rowset[$this->query_result]); if ($transaction == END_TRANSACTION && $this->in_transaction ) { $this->in_transaction = FALSE; if (!mysql_query("COMMIT", $this->db_connect_id)) { mysql_query("ROLLBACK", $this->db_connect_id); return false; } } return $this->query_result; } else { if ($this->in_transaction ) { mysql_query("ROLLBACK", $this->db_connect_id); $this->in_transaction = FALSE; } return false; } } function sql_numrows($query_id = 0) { if(!$query_id) { $query_id = $this->query_result; } return ($query_id) ? mysql_num_rows($query_id) : false; } ?> Any insight that can help to benefit these functions would be appreciated. When I put this chunk of code into it's own function: function fetch_all ($dbc, $query) { include ('knuffix_list_func.php'); pagination_start ($dbc, $query); $offset = $pag_array[0]; $rows_per_page = $pag_array[1]; $query = $query . " LIMIT $offset, $rows_per_page"; echo "test query: " . $query; knuffix_list ($query, $dbc); pagination_end ($pag_array); } And when I echo out the query as you can see in the example, then I notice that the variables $offset and $rows_per_page never get appended. I set the variable $pag_array to a global inside the function pagination_start(). It usually works when I DON'T wrap a function around this chunk of code, but if I do wrap a function around everything then the global suddenly won't work anymore. Btw, this also won't work if I wrap a function around the function DECLARATIONS. Any ideas, how I could make it work? I want to define a function instead of repeating query in all my php pages. I call a function by passing an $id value and from that function i have to get all the info related to that id, like name, description and uom.
I am trying to do this, but i dont know how to get these values seperately.
here is my function
function items($item_id)
{
$details = array();
$result = mysql_query("select item_id, name, uom, description from items where item_id=".$item_id."") or die (mysql_error());
while($row = mysql_fetch_array($result))
{
$details[] = array((stripslashes($row['name'])), (stripslashes($row['uom'])), (stripslashes($row['description'])));
}
return $details;
}
and i call my function like this
$info = items($id);Can somebody guide me in this im using a function which connects to a db called 'comments' and then inside that function i again called another function that will connect to the db 'main' to get avatars.... but as i put Code: [Select] mysql_select_db("main") or die(mysql_error()); on the new function, the original function stops to fetch rows. i tried to remove "mysql_select_db("main") or die(mysql_error());" and used the new function to return some text only and it worked, so i guess the connection to the db was the problem... i tried doing Code: [Select] mysql_query("SELECT * FROM main.avatar INNER JOIN main.list ON main.avatar.title=main.list.id WHERE main.avatar.page_id='$id'"); but it also didnt work I've followed the PHP Freaks pagination tutorial which you can find here. And I also got it to work, the only problem is that the script won't work when I use the query outside of the function. Here's the function: <?php function knuffix_list ($query, $dbc) { // find out how many rows are in the table: $query_row = "SELECT COUNT(*) FROM con"; $query_run = mysqli_query ($dbc, $query_row); $row = mysqli_fetch_row($query_run); $num_rows = $row[0]; // number of rows to show per page $rows_per_page = 5; // find total pages -> ceil for rounding up $total_pages = ceil($num_rows / $rows_per_page); // get the current page or set a default if (isset($_GET['current_page']) && is_numeric($_GET['current_page'])) { // make it an INT if it isn't $current_page = (int) $_GET['current_page']; } else { // default page number $current_page = 1; } // if current page is greater than total pages then set current page to last page if ($current_page > $total_pages) { $current_page = $total_pages; } // if current page is less than first page then set current page to first page if ($current_page < 1) { $current_page = 1; } // the offset of the list, based on current page $offset = (($current_page - 1) * $rows_per_page); echo "test " . $query; // SCRIPT ONLY WORKS IF I INSERT QUERY HERE $query = "SELECT * FROM con, user WHERE con.user_id = user.user_id ORDER BY contributed_date DESC LIMIT $offset, $rows_per_page"; $data = mysqli_query ($dbc, $query) or die (mysqli_error ($dbc)); // Loop through the array of data while ($row = mysqli_fetch_array ($data)) { global $array; // Variables for the table $con_id = $row['con_id']; $likes_count = $row['likes']; $dislikes_count = $row['dislikes']; $dbuser_name = $row['nickname']; $dbuser_avatar = $row['avatar']; $user_id = $row['user_id']; // The TABLE echo "<table padding='0' margin='0' class='knuffixTable'>"; echo "<tr><td width='65px' height='64px' class='avatar_bg' rowspan='2' colpan='2'><img src='avatar/$dbuser_avatar' alt='avatar' /></td>"; echo "<td class='knuffix_username'><strong><a href='profile.php?user=$dbuser_name' title='Profile of $dbuser_name'>" . $dbuser_name . "</a> ___ " . $user_id . "____ <form action='' method='POST'><button type='submit' name='favorite' value='fav'>Favorite</button></form>"; echo "</strong><br />" . $row['category'] . " | " . date('M d, Y', strtotime($row['contributed_date'])) . "</td></tr><tr><td>"; echo "<form action='' method='post'> <button class='LikeButton' type='submit' name='likes' value='+1'>Likes</button> <button class='DislikeButton' type='submit' name='dislikes' value='-1'>Dislikes</button> <input type='hidden' name='hidden_con_id' value='" . $con_id . "' /> </form></td><td class='votes'>Y[" . $likes_count . "] | N[" . $dislikes_count . "]</td></tr>"; echo "<tr><td class='knuffix_name' colspan='3'><strong>" . htmlentities($row['name']) . "</strong><br /></td></tr>"; echo "<tr><td colspan='2' class='knuffix_contribution'><pre>" . $row['contribution'] . "</pre><br /></td></tr>"; echo "</table>"; // POST BUTTONS inside the table $likes = $_POST['likes']; $dislikes = $_POST['dislikes']; $con_id = $_POST['hidden_con_id']; $favorite = $_POST['favorite']; $array = array ($likes, $dislikes, $con_id, $user_id, $favorite); } /********* build the pagination links *********/ // BACKWARD // if not on page 1, show back links and show << link to go back to the very first page if ($current_page > 1) { echo " <a href='{$_SERVER['PHP_SELF']}?current_page=1'><<</a> "; // get previous page number and show < link to go to previous $prev_page = $current_page - 1; echo " <a href='{$_SERVER['PHP_SELF']}?current_page=$prev_page'><</a> "; } // CURRENT // range of number of links to show $range = 3; // loop to show links in the range of pages around current page for ($x = ($current_page - $range); $x < (($current_page + $range) + 1); $x++) { // if it's a valid page number... if (($x > 0) && ($x <= $total_pages)) { // if we're on current page if ($x == $current_page) { // highlight it but don't make a link out of it echo "[<b>$x</b>]"; // if it's not the current page then make it a link } else { echo "<a href='{$_SERVER['PHP_SELF']}?current_page=$x'>$x</a>"; } } } // FORWARD // if not on the last page, show forward and last page links if ($current_page != $total_pages) { // get next page $next_page = $current_page + 1; // echo forward link for next page echo " <a href='{$_SERVER['PHP_SELF']}?current_page=$next_page'>></a> "; // echo forward link for last page echo " <a href='{$_SERVER['PHP_SELF']}?current_page=$total_pages'>>></a> "; } /***** end building pagination links ****/ mysqli_close($dbc); } ?> As you can see above, the script will only work if I put the query right below the $offset variable and above the $data variable. I put the test echo above the query to see how the query looks like when I induce the query from the outside through the function parenthesis into the function, and this is what I get printed out: test SELECT * FROM con, user WHERE con.user_id = user.user_id ORDER BY contributed_date DESC LIMIT , Obviously the $offset and the $rows_per_page variables are not set, when I induce the query from the outside into the function. So in that sense my question is: How can I induce the query from the outside into the function SO THAT the $offset and the $rows_per_page variables are set as well and NOT empty? p.s. I need the query outside of the function because I'm using a sort by category functionality. Hi all, I want to call a javascript function from a php function like this: public function Buscar() { $HoraInicio = $_POST['edtHoraInicio']; $HoraFin = $_POST['edtHoraFin']; $FechaInicio = $_POST['edtFec1']; $FechaFin = $_POST['edtFec2']; $FechaMax = $FechaFin." ".$HoraFin.":00"; $FechaMin = $FechaInicio." ".$HoraInicio.":00"; $_GET["FechaMax"] = $FechaMax; $_GET["FechaMin"] = $FechaMin; echo $FechaMin; echo "<script language=javascript>alert('Hi.')</script>"; } but the function Buscar never show the alert but shows the $FechaMin I hopu u guys can help me out with this probem Thanks, Siddhartha Hi I have a table class and functions I want to call in another function but can't get it working. Some help will be very welcome. It seesm that the new table class is not working in this function if I pass the values to it, I have tested the class, it does get the post values I post to it so $_POST['id'] are being received as well as all the other $_POST's but the table class and find function is not working, it works fine if I don't put it in a function.. function edit() { if (isset($error)){ $error.="Please fix the error(s) above";} else { if ($_POST['id'] <> "") { $update =& new table($db, 'publisher'); $update->find($_POST['id']); $update->name = $_POST['name']; $update->url = $_POST['url']; $update->contact = $_POST['contact']; $update->address = $_POST['address']; $update->phone = $_POST['phone']; $update->email = $_POST['email']; $update->save(); $error = "The Publisher has been edited"; } } } can you do that with php? Code: [Select] Database2() { function test($id) { $newdb = new Database2(); $newdb->test($id); } }
window.setInterval(function(){
s="<?= $lastid ?>";
$.post('../action/updatestream.php',{statusid:s.val()},function(e){
alert(e)
});
}, 10000);
Why isn't it working?Thanks, Hello Everyone I have written a simple mail function to be emailed to a certain person on submission. On submission they would also like to have attachments sent to them. I got the email being sent but I can;t get the attachments to work. I have read several different examples and tutorials and none of them work. This is my code so far without any code for file attachment <?php $project_name = $_POST['project_name']; $needed = $_POST['date_needed']; $submitted = $_POST['date_submitted']; $department = $_POST['department']; $contact = $_POST['contact_person']; $extension = $_POST['extension']; $project_type = $_POST['project_type']; $published = $_POST['date_last_published']; $description = $_POST['description']; $color = $_POST['color']; $pdf = $_POST['pdf_needed']; $web = $_POST['web_needed']; $quanity = $_POST['quanity']; $email = "mdmartiny@sc4.edu"; $subject = "SC4 Graphics Design Service Request Form"; $headers .= "MIME-Version: 1.0\r\n"; $headers .= "Content-Type: text/html; charset=ISO-8859-1\r\n"; $message = "<html><body> <table width=\"100%\" border=\"0\" cellspacing=\"5px\" > <tr><td></td> <td>Project name: $project_name</td> <td></td> <td>Date needed by: $needed</td> </tr> <tr> <tr> <td></td> <td colspan=\"3\" align=\"left\" valign=\"top\"><strong><font size=\"+1\">Submitted to graphic designer</font></strong></td></tr> <tr><td height=\"25\"></td><td>Date $submitted</td><td>Department $department</td><td></td></tr> <tr><td height=\"25\"></td><td>Contact Person $contact</td><td>Extension $extension</td><td></tr> <tr><td height=\"25\"></td><td>Type of project $project_type</td><td colspan=\"2\">Approximate date of last publication $published</td></tr> <tr><td height=\"25\"></td><td colspan=\"3\">Project description/special instructions</td> <tr><td></td>><td colspan=\"3\">$description</td></tr> <tr><td height=\"25\"></td><td>Color $color</td><td>PDF needed $pdf</td><td>Website update needed $web</td></tr> <tr><td ></td><td>Estimated print quanity $quanity</td><td></td><td></td></tr> <tr> <td colspan=\"4\" align=\"left\" valign=\"top\"><hr height=\"5\"/> <strong><font size=\"+1\">Graphics office use only</font></strong></td> </tr> <tr> <td height=\"25\" width=\"2%\"> </td> <td width=\"34%\">Print Shop Color copier</td> <td colspan=\"2\">Print Vendor_______________________________________</td> </tr> <tr> <td height=\"25\"> </td> <td><strong><font size=\"+1\">Project tracking</font></strong></td> <td> </td> <td> </td> </tr> <tr> <td height=\"25\"> </td> <td colspan=\"3\">Received by graphic designer_______________________ Date _______</td> </tr> <tr> <td height=\"25\"> </td> <td colspan=\"3\"> <table width=\"100%\" height=\"35\"> <tr> <td>Approved by executive director__________ Date_________</td><td><input type=\"checkbox\"> Revisions needed<br /><input type=\"checkbox\"> Revisions made ______ Date_______</td><tr> </table> </td> </tr> <tr> <td height=\"25\"> </td> <td colspan=\"3\">Completed and spell checked by graphic designer___________________________ Date__________</td> </tr> <tr> <td> </td> <td align=\"center\" colspan=\"3\"> <table cellpadding=\"10px\" cellspacing=\"0\" border=\"1\" width=\"100%\"> <tr bgcolor=\"#CCCCCC\"> <td> <table> <tr> <td> Proofread by marketing coordinator __________ Date__________</td> </tr> <tr> <td> Proofread by secretary __________ Date__________ </td> </tr> </table> </td> <td> <input type=\"checkbox\"> Revisions needed <br> <input type=\"checkbox\"> Revisions made ____ Date_____ </td> </tr> </table></td> </tr> <tr> <td></td> <td colspan=\"3\"> <table width=\"100%\" height=\"75\"> <tr> <td>Proofread by executive director______ Date______ </td><td><input type=\"checkbox\"> Revisions needed<br /> <input type=\"checkbox\"> Revisions made ______ Date_______</td> </tr> </table> </td> </tr> <tr> <td></td> <td colspan=\"3\"> <table width=\"100%\" height=\"75\"> <tr> <td> Approval by requesting department __________ Date_________ <br /> <strong><font size=\"-1\">(Include all paperwork when returning)</font></strong></td><td><input type=\"checkbox\"> Revisions needed<br /><input type=\"checkbox\"> Revisions made ______ Date_______</td> </tr> </table> </td> </tr> <td></td height=\"25\"> <td colspan=\"3\">Final approval by executive director _________________________________________ Date_________ </td> </tr> <tr> <td height=\"75\"></td> <td><input type=\"checkbox\"> Printed ____ Date _____</td> <td colspan=\"2\"><input type=\"checkbox\"> PDF created _____ Date _____<br /> <input type=\"checkbox\"> Website updated _____ Date _____</td> </tr> </table>"; $message .= "</body></html>"; mail($email, $subject, $message, $headers, "From: $email"); echo "The email has been sent."; ?> |
|||||||