PHP - Document (pdf Doc Xls... Etc) Upload Script For Php

Hi guys,

I have created a php script (with alot of help from others) that allows me to have a login area on my website. When the user logs onto their page - they obviously cannot see the others profile.

My next task is to be able to upload PDF documents to appear on their profiles. The PDF's will be specific to them.

The main problems I have a

1/ They cannot be able to view any PDF but their own.

2/ How do I create a form that knows where to send and display the link? I guess it is using the user id & name etc?

I will not actually be the one uploading the files else I would just sit and tediously link each form to each profile. This must be done by my secretary via a file upload form that I will password protect.

I basically want her to be able to log in and be presented with a document upload form. The form will have a dropdown list of the clients name and a document upload part. From uploading it will then appear on the users page. 

If anyone could help it would be amazing! I am fairly new to PHP although am getting better with my understanding. Hopefully I will become as good as you lot one day!

Cheers in advance

Hi i have found this code :
<?php
 if (isset($_POST['submit_bilde'])) {
$error = 'Wrong image file..';
 define( 'THUMBNAIL_IMAGE_MAX_WIDTH', 250 );
 define( 'THUMBNAIL_IMAGE_MAX_HEIGHT', 250 );

 function generate_image_thumbnail( $source_image_path, $thumbnail_image_path )
 {
  list( $source_image_width, $source_image_height, $source_image_type ) = getimagesize( $source_image_path );

  switch ( $source_image_type )
  {
   case IMAGETYPE_GIF:
    $source_gd_image = imagecreatefromgif( $source_image_path );
    break;

   case IMAGETYPE_JPEG:
    $source_gd_image = imagecreatefromjpeg( $source_image_path );
    break;

   case IMAGETYPE_PNG:
    $source_gd_image = imagecreatefrompng( $source_image_path );
    break;
  }

  if ( $source_gd_image === false )
  {
   return false;
  }

  $thumbnail_image_width = THUMBNAIL_IMAGE_MAX_WIDTH;
  $thumbnail_image_height = THUMBNAIL_IMAGE_MAX_HEIGHT;

  $source_aspect_ratio = $source_image_width / $source_image_height;
  $thumbnail_aspect_ratio = $thumbnail_image_width / $thumbnail_image_height;

  if ( $source_image_width <= $thumbnail_image_width && $source_image_height <= $thumbnail_image_height )
  {
   $thumbnail_image_width = $source_image_width;
   $thumbnail_image_height = $source_image_height;
  }
  elseif ( $thumbnail_aspect_ratio > $source_aspect_ratio )
  {
   $thumbnail_image_width = ( int ) ( $thumbnail_image_height * $source_aspect_ratio );
  }
  else
  {
   $thumbnail_image_height = ( int ) ( $thumbnail_image_width / $source_aspect_ratio );
  }

  $thumbnail_gd_image = imagecreatetruecolor( $thumbnail_image_width, $thumbnail_image_height );

  imagecopyresampled( $thumbnail_gd_image, $source_gd_image, 0, 0, 0, 0, $thumbnail_image_width, $thumbnail_image_height, $source_image_width, $source_image_height );

  imagejpeg( $thumbnail_gd_image, $thumbnail_image_path, 100 );

  imagedestroy( $source_gd_image );

  imagedestroy( $thumbnail_gd_image );

  return true;
 }

 define( 'UPLOADED_IMAGE_DESTINATION', 'annonsebilder/orginaler/' );
 define( 'THUMBNAIL_IMAGE_DESTINATION', 'annonsebilder/thumbs/' );

 function process_image_upload( $field )
 {
  $temp_image_path = $_FILES[ $field ][ 'tmp_name' ];
  $temp_image_name = $_FILES[ $field ][ 'name' ];

  list( , , $temp_image_type ) = getimagesize( $temp_image_path );

  if ( $temp_image_type === NULL )
  {
   return false;
  }

  switch ( $temp_image_type )
  {

   case IMAGETYPE_JPEG:
    break;

   default:
    return false;
  }

  $uploaded_image_path = UPLOADED_IMAGE_DESTINATION . $temp_image_name;

  move_uploaded_file( $temp_image_path, $uploaded_image_path );
  $random_digit=rand(0000000000000,9999999999999);
  $thumbnail_image_path = THUMBNAIL_IMAGE_DESTINATION . preg_replace( '{\\.[^\\.]+$}', '.jpg', $annonse_ref.'_'.$random_digit.'.jpg' );

  $result = generate_image_thumbnail( $uploaded_image_path, $thumbnail_image_path );

  return $result
   ? array( $uploaded_image_path, $thumbnail_image_path )
   : false;
 }
 
 for ( $i = 1; $i <= 5; $i++ )
{
 if ( $_FILES[ 'Image' . $i ][ 'error' ] == 0 )
 {
  $result = process_image_upload( 'Image' . $i );

 }
} 
 if ( $result === false )
 {
  echo $error;
 }
 else
 {

  //THIS ECHO SHIT IS KILLIN' ME!!!
echo '<br />1: '.$result['1'] ;
echo '<br />2: '.$result['2'];
echo '<br />3: '.$result['3'];
echo '<br />4: '.$result['4'];
echo '<br />5: '.$result['5'];
 }

}
 if (!isset($_POST['submit_bilde'])) {
  
   ?>




<form action="" method="post" enctype="multipart/form-data">
<input type="file" name="Image1"><br>
<input type="file" name="Image2"><br>
<input type="file" name="Image3"><br>
<input type="file" name="Image4"><br>
<input type="file" name="Image5"><br><br>
<input type="submit" value="GOOOOOOOO!!!!" name="submit_bilde">
</form>
<?}?>

and if you look in the code there is a part where i want to echo the uploaded files' path's..
I only se one of those 5 files listet in the "echo"-thing :p

Can someone please, please, please help me to echo ALL the 5 images path??

I currently have the following script used on my site to upload files.  When the linked web page executes it, however, I receive the infamous Parse Error - Unexpected '<' in x:/xxxx.  The problem lies in Line 11 where I attempt to define a command that will display a message box to the user upon successful file upload.  The syntax is not correct and I was hoping someone would be able to help me with it.  Here is the contents of the PHP file.

<?php
// Where the file is going to be placed
$target_path = $_SERVER['DOCUMENT_ROOT'] . "/file_uploads/";

/*Add the original filename to our target path.
Result is "uploads/filename.extension"*/
$target_path=$target_path.basename($_FILES['file']['name']);

//Move file to upload directory
if(move_uploaded_file($_FILES['file']['tmp_name'], $target_path)) {
echo <script type="text/javascript">alert("Upload was successful.  Thank you for your contribution")</script>;
} else{
echo "There was a problem submitting the file.  Plese try again!";
}
?>


Thank you in advance for any help.

Hey guys!! i'm after a bit of help with a script i am using for simple image upload to server.

At the moment the script works fine and will allow upload of JPG files, i want to extend on this to allow GIF and PNG files to be uploaded aswell.

This is the script i am using...

<?php
//?heck that we have a file
if((!empty($_FILES["uploaded_file"])) && ($_FILES['uploaded_file']['error'] == 0)) {
  //Check if the file is JPEG image and it's size is less than 600Kb
  $filename = basename($_FILES['uploaded_file']['name']);
  $ext = substr($filename, strrpos($filename, '.') + 1);
  if (($ext == "jpg") && ($_FILES["uploaded_file"]["type"] == "image/jpeg") && 
    ($_FILES["uploaded_file"]["size"] < 600000)) {
    //Determine the path to which we want to save this file
      $newname = dirname(__FILE__).'/uploads/'.$filename;
      //Check if the file with the same name is already exists on the server
      if (!file_exists($newname)) {
        //Attempt to move the uploaded file to it's new place
        if ((move_uploaded_file($_FILES['uploaded_file']['tmp_name'],$newname))) {
           echo "Upload Complete! You can use the following link in the IMS:" .$newname;
        } else {
           echo "Error: A problem occurred during file upload!";
        }
      } else {
         echo "Error: File ".$_FILES["uploaded_file"]["name"]." already exists";
      }
  } else {
     echo "Error: Only .jpg images under 600Kb are accepted for upload";
  }
} else {
 echo "Error: No file uploaded";
}

 // $sessionid=session_id()
  //$newname=$_SESSION['session_name']
  header( 'Location: success.php?newname1='.$filename ) ;


?>


Any help would be appriciated!!

ta!! jonny

hey guys im trying to make a file upload script so that when the user uploads a pic it gets shown in a div...when you add another it is the added by the side of the 1st pic...but some reason when selecting a image nothing shows...   what am i doing wrong?   here is my code below if anyone can tell me what it is wrong im doing...thank you

<script src="//ajax.googleapis.com/ajax/libs/jqueryui/1.11.2/jquery-ui.min.js"></script>
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
<title>Insert title here</title>
<script>
$( document ).ready(function() {
	
	var files       = $('.input-file').prop("files");
	var file_count  = files.length;
	
	var names = $.map(files, function(val) { 
		return val.name; 
	});
	
	$('#input-file-button').click(function() {
		$('.input-file').click(); 
	});
	
	$('.input-file').change(function (){
		var file_name = $(this).val();
		var file_path = URL.createObjectURL(event.target.files[0]);

		$('#uploaded-images').append('<div><img src="'+ file_path +'" /></div>' + file_name);	
	 });
		
	if (file_count < 1)
	{
		$('#uploaded-images').text("No images are selected.");
	}
});


</script>
<style>
.input-file
{
	display: none;
}
</style>
</head>
<body>
<div id="uploaded-images"></div>
<br />
<input type="file" name="files[]" class="input-file"/><span id='input-file-button'>Upload Photo</span>
</body>
</html>

hello i am adding an image upload script, so users can upload a image with the recipe they are adding, but my script seems to not work, these are the files.

add_recipe.php

<?php
// Start_session, check if user is logged in or not, and connect to the database all in one included file
include_once("scripts/checkuserlog.php");
// Include the class files for auto making links out of full URLs and for Time Ago date formatting
include_once("wi_class_files/autoMakeLinks.php");
include_once ("wi_class_files/agoTimeFormat.php");
// Create the two objects before we can use them below in this script
$activeLinkObject = new autoActiveLink;
$myObject = new convertToAgo;
?>
<?php
// Include this script for random member display on home page
include_once "scripts/homePage_randomMembers.php"; 
?>
<?php
$sql_blabs = mysql_query("SELECT id, mem_id, the_blab, blab_date FROM blabbing ORDER BY blab_date DESC LIMIT 30");

$blabberDisplayList = ""; // Initialize the variable here

while($row = mysql_fetch_array($sql_blabs)){

$blabid = $row["id"];

$uid = $row["mem_id"];

$the_blab = $row["the_blab"];

$notokinarray = array("fag", "gay", "shit", "fuck", "stupid", "idiot", "asshole", "cunt", "douche");
    $okinarray   = array("sorcerer", "grey", "shug", "farg", "smart", "awesome guy", "asshole", "cake", "dude");

$the_blab = str_replace($notokinarray, $okinarray, $the_blab);

$the_blab = ($activeLinkObject -> makeActiveLink($the_blab));

$blab_date = $row["blab_date"];

$convertedTime = ($myObject -> convert_datetime($blab_date));
    $whenBlab = ($myObject -> makeAgo($convertedTime));

//$blab_date = strftime("%b %d, %Y %I:%M:%S %p", strtotime($blab_date));

// Inner sql query

$sql_mem_data = mysql_query("SELECT id, username, firstname, lastname FROM myMembers WHERE id='$uid' LIMIT 1");

while($row = mysql_fetch_array($sql_mem_data)){

$uid = $row["id"];

$username = $row["username"];

$firstname = $row["firstname"];

if ($firstname != "") {$username = $firstname; } // (I added usernames late in  my system, this line is not needed for you)

///////  Mechanism to Display Pic. See if they have uploaded a pic or not  //////////////////////////

$ucheck_pic = "members/$uid/image01.jpg";

$udefault_pic = "members/0/image01.jpg";

if (file_exists($ucheck_pic)) {

$blabber_pic = '<div style="overflow:hidden; width:40px; height:40px;"><img src="' . $ucheck_pic . '" width="40px" border="0" /></div>'; // forces picture to be 100px wide and no more

} else {

$blabber_pic = "<img src=\"$udefault_pic\" width=\"40px\" height=\"40px\" border=\"0\" />"; // forces default picture to be 100px wide and no more

}

$blabberDisplayList .= '
      

<table width="100%" align="center" cellpadding="4" bgcolor="#CCCCCC">
        <tr>
          <td width="7%" bgcolor="#FFFFFF" valign="top"><a href="profile.php?id=' . $uid . '">' . $blabber_pic . '</a>
          </td>
          <td width="93%" bgcolor="#EFEFEF" style="line-height:1.5em;" valign="top"><span class="greenColor textsize10">' . $whenBlab . ' <a href="profile.php?id=' . $uid . '">' . $username . '</a> said: </span><br />
          ' . $the_blab . '</td>
        </tr>
      </table>';

}

}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1" />
    <meta name="Description" content="Web Intersect is a deft combination of powerful free open source software for social networking, mixed with insider guidance and tutorials as to how it is made at its core for maximum adaptability. The goal is to give you a free website system that has a network or community integrated into it to allow people to join and interact with your website when you have the need." />
    <meta name="Keywords" content="web intersect, how to build community, build social network, how to build website, learn free online, php and mysql, internet crossroads, directory, friend, business, update, profile, connect, all, website, blog, social network, connecting people, youtube, myspace, facebook, twitter, dynamic, portal, community, technical, expert, professional, personal, find, school, build, join, combine, marketing, optimization, spider, search, engine, seo, script" />
    <title>CookBookers</title>
    <link href="style/main.css" rel="stylesheet" type="text/css" />
    <link rel="icon" href="favicon.ico" type="image/x-icon" />
    <link rel="shortcut icon" href="favicon.ico" type="image/x-icon" />
    <script src="js/jquery-1.4.2.js" type="text/javascript"></script>
<style type="text/css">
#Layer1 {

height:210px;

}
body {

background-color: #3c60a4;
}
.style4 {font-size: 36px}
</style>
</head>
<body>
<p>
  <?php include_once "header_template.php"; ?>
  </head>
  <body 
style="margin:0px;">
  <center>
</p>
<p>&nbsp;</p>
<table border="0" align="center" cellpadding="0" cellspacing="0" class="mainBodyTable">
  <tr>
    <td width="124" valign="top">
    <td width="776" colspan="2" align="left" valign="top" style="background-color:#EFEFEF; border:#999 0px; padding:10px;">
<table border="0" cellpadding="6">

  </table>
  <table width="574" border="0">
  <form enctype="multipart/form-data" action="include/recipe.php" method="post">
    <span class="style4">Add Recipie</span>
  
    <tr>
      <th width="232" scope="col"></th>
      <th width="332" scope="col">&nbsp;</th>
    </tr>
    <tr>
      <td><span style="margin-bottom:5px; color:brown;">Public:</span></td>
      <td><span style="margin-bottom:5px; color:brown;">
        <input name="Pub" value="1" type="checkbox" id="Pub"/>
      </span></td>
    </tr>
    <tr>
      <td><span style="margin-bottom:5px; color:brown;">Title:</span></td>
      <td><span style="margin-bottom:5px; color:brown;">
        <input type="text" name="title" />
      </span></td>
    </tr>
    <tr>
      <td><span style="margin-bottom:5px; color:brown;">Prep time:</span></td>
      <td><span style="margin-bottom:5px; color:brown;">
        <input type="text" name="prep" />
    </tr>
    <tr>
      <td><span style="margin-bottom:5px; color:brown;">Cooking time:</span></td>
      <td><span style="margin-bottom:5px; color:brown;">
        <input type="text" name="cook" />
    </tr>
    <tr>
      <td><span style="margin-bottom:5px; color:brown;">Makes:</span></td>
      <td><span style="margin-bottom:5px; color:brown;">
         <input type="text" name="make" />
      </span></td>
    </tr>
    <tr>
      <td><span style="margin-bottom:5px; color:brown;">Ingrediants:</span></td>
      <td><span style="margin-bottom:5px; color:brown;">
        <textarea rows="5" name="ingr" cols="40"></textarea>
      </span></td>
    </tr>
    <tr>
      <td><span style="margin-bottom:5px; color:brown;">Method: </span></td>
      <td><span style="margin-bottom:5px; color:brown;">
        <textarea rows="5" name="desc" cols="40"></textarea>
      </span></td>
    </tr>
    <tr>
      <td><span style="margin-bottom:5px; color:brown;">Notes:</span></td>
      <td><span style="margin-bottom:5px; color:brown;">
        <textarea rows="5" name="note" cols="40"></textarea>
      </span></td>
    </tr>

<tr>
       <td><input type="hidden" name="MAX_FILE_SIZE" value="1000000" />
    Choose a picture to upload: 
      <input name="uploaded_file" type="file" /></td>

</tr>

<tr>

  <td><input name="submit" type="submit" style="padding:5px 10px;" value="Submit" /></td>

  </tr>

<tr>

  <td>&nbsp;</td>

  </tr>
  </table>
    </tr>
</table>
            </td>
</tr>
        </table>

<?php include_once "footer_template.php"; ?>
</body>


recipe.php (upload form script)

<?php
//include("session.php");          
include("database.php");
@session_start();

$user = $_SESSION['username'];

mysql_real_escape_string($user);
    

//die($user);

$Pub=$_POST['Pub'];
    $title=$_POST['title'];

$prep=$_POST['prep'];
    $cook=$_POST['cook'];
    $make=$_POST['make'];
    $ingr=$_POST['ingr'];
    $desc=$_POST['desc'];
    $note=$_POST['note'];
    //if($user=="Guest"||$user==""){
    //header("Location: ../index.php");
    //}
    //else{
    $database->AddRecipe($user,$Pub,$title,$prep,$cook,$make,$ingr,$desc,$note);
    $uploaded_file=$_POST['files']['uploaded_file']
//&#1057;heck that we have a file
if ((!empty($_FILES["uploaded_file"])) && ($_FILES['uploaded_file']['error'] == 0)) {
  //Check if the file is JPEG image and it's size is less than 350Kb
  $filename = basename($_FILES['uploaded_file']['name']);
  $ext = substr($filename, strrpos($filename, '.') + 1);
  if (($ext == "jpg") && ($_FILES["uploaded_file"]["type"] == "image/jpeg") && 
    ($_FILES["uploaded_file"]["size"] < 350000)) {
    //Determine the path to which we want to save this file
      $newname = dirname(__FILE__).'/upload/'.$filename;
      //Check if the file with the same name is already exists on the server
      if (!file_exists($newname)) {
        //Attempt to move the uploaded file to it's new place
        if ((move_uploaded_file($_FILES['uploaded_file']['tmp_name'],$newname))) {
           echo "It's done! The file has been saved as: ".$newname;
        } else {
           echo "Error: A problem occurred during file upload!";
        }
      } else {
         echo "Error: File ".$_FILES["uploaded_file"]["name"]." already exists";
      }
  } else {
     echo "Error: Only .jpg images under 350Kb are accepted for upload";
  }
} else {
 echo "Error: No file uploaded";
}

header("Location: ../recipe_added.php");
    //}
?>





 

Hello,

I'm planning on making a website where people are able to upload files and directly link to them. Ideally, I want to keep the same file names that the people use when they upload the file. I was planning on keeping the directory that stored all of the files outside of the www directory and disable execute permissions. However, how would I avoid file overwriting with the same file name?

I need to set my script here to change the CHMOD settings to 644.  The images that are uploaded into the Yahoo server are not able to be accessed.  I believe this is the CHMOD, however I have never worked with CHMOD.  Please help, or if you notice an error in my coding please let me know.

Code: [Select]
<?php


$Name = $_POST['Name'];
$Pic = $_FILES["file"] ["name"];

if ((($_FILES["file"] ["type"] == "image/gif")
    || ($_FILES["file"] ["type"] == "image/jpeg")
    || ($_FILES["file"] ["type"] == "image/pjpeg"))
    && ($_FILES["file"] ["size"] < 100000))
      {
      if ($_FILES["file"] ["error"] > 0)
        {
     echo "Return Code: " . $_FILES["file"] ["error"] . "<br />";
     }
      else
        {
    
     if (file_exists("../Graphics/" . $_FILES["file"] ["name"]))
       {
  
  include("../Admin/photos.php");
  
       echo $_FILES["file"] ["name"] . " already exists. ";
       }
     else
       {          

       move_uploaded_file($_FILES["file"] ["tmp_name"],
       "../Graphics/" . $_FILES["file"] ["name"]);

          chmod("$pic",0644);
  
      }
      }
    }
  else
      {
  
       echo "<font size='5' face='Arial'><b>Invalid file</b></font>";
      }

  $Category = $_POST['Category'];

              include('database.php');

                  mysql_select_db("bluemoonmastiff", $con);
                
                  $good_data = $_POST;
                  
                  foreach($good_data as $field => $value)
                  {
                    if($field != "submitted")
                 {
                    $field_array[] = $field;
                    $clean = strip_tags(trim($value));
                    $escaped = mysqli_real_escape_string($cxn,$clean);
                    $value_array[] = $escaped;
                 }
                  }
                  
                  $fields = implode(",",$field_array);
                  $values = implode('","',$value_array);

                  $sql = "INSERT INTO gallery SET Name='$Name',PicAddress='Graphics/$Pic',Category='$Category'";
                  
                   if (!mysql_query($sql,$con))
  {
  die('Error: ' . mysql_error());
  }

 

echo "<font size='5' face='Arial'><b>Picture Upload Complete</b></font>";

?>

Here's the upload script:

<?php //This is the directory where images will be saved 
 $target = "images/"; $target = $target . basename( $_FILES['photo']['name']); 
 //This gets all the other information from the form 
 $name=$_POST['name']; $email=$_POST['email']; $phone=$_POST['phone']; $pic=($_FILES['photo']['name']); 
 // Connects to your Database 
 mysql_connect("your.hostaddress.com", "username", "password") or die(mysql_error()) ; mysql_select_db("Database_Name") or die(mysql_error()) ; 
 //Writes the information to the database 
 mysql_query("INSERT INTO `employees` VALUES ('$name', '$email', '$phone', '$pic')") ; 
 //Writes the photo to the server 
 if(move_uploaded_file($_FILES['photo']['tmp_name'], $target)) { 
 //Tells you if its all ok 
 echo "The file ". basename( $_FILES['uploadedfile']['name']). " has been uploaded, and your information has been added to the directory"; } 
 else { //Gives and error if its not 
 echo "Sorry, there was a problem uploading your file."; 
 } ?> 


Wouldn't I need a username pw for it access images, where it's supposed to upload it? Or does it simply upload it to a file called images in the same folder as the upload.php is in?

Thank you!

But I need some help. I built part of this script off a tut, and did the rest myself however, I want it so it send the information into a database.

What I want is, once a user uploads an image, it can also be deleted by that user with the code given.
I have made the html, bbcode & direct link. I want an option for a box where it shows Delete link....

maniaupload.net

here's my FULL php upload script.

Quote

<?php
define ("MAX_SIZE","100000");
function getExtension($str) {
$i = strrpos($str,".");
if (!$i) { return ""; }
$l = strlen($str) - $i;
$ext = substr($str,$i+1,$l);
return $ext;
}
$errors=0;
if(isset($_POST['Submit']))
{
$image=stripslashes($_FILES['image']['name']);
if ($image)
{
$filename = stripslashes($_FILES['image']['name']);
$extension = getExtension($filename);
$extension = strtolower($extension);
if (($extension != "jpg") && ($extension != "jpeg") && ($extension != "mov") && ($extension !="PNG") && ($extension !="bmp") && ($extension != "png") && ($extension != "gif"))
{

echo '<font color="red"><b>Extension not allowed</b></font><br>';
$errors=1;
}
else
{
$size=filesize($_FILES['image']['tmp_name']);


if ($size > MAX_SIZE*100000)
{
echo 'You have exceeded the size limit!';
$errors=1;
}

$image_name=time().'.'.$extension;

$newname="images/".$image_name;

$fullname="http://www.maniaupload.net/".$newname;



$copied = copy($_FILES['image']['tmp_name'], $newname);
if (!$copied)
{
echo '<font color=\"red\"><b>Upload Unsuccessful! Try Again?</b></font>';
$errors=1;
}}}}

if(isset($_POST['Submit']) && !$errors)
{
echo "File Uploaded Successfully! <br /><br /> <img src=\"$newname\" /> <br /><br />

<b>Direct Image Link:</b><br/><table width=\"338\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\" id=\"Table1\">
<tr>
<td align=\"center\" valign=\"middle\"><textarea readonly name=\"message\" rows=\"1\" cols=\"50\">$fullname</textarea></td>
</tr>
</table></center><br>

<b>HTML Code:</b><br/><table width=\"338\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\" id=\"Table1\">
<tr>
<td align=\"center\" valign=\"middle\"><textarea readonly name=\"message\" rows=\"1\" cols=\"50\">
<a href=\"$fullname\" target=\"_blank\"><img border=\"0\" src=\"$fullname\"></a>
</textarea></td>
</tr>
</table><br>

<b>BBCode <font color=\"red\">*NEW*</font></b><br>
<table width=\"338\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\" id=\"Table1\">
<tr>
<td align=\"center\" valign=\"middle\">
<textarea readonly name=\"message\" rows=\"1\" cols=\"50\">

</textarea></td>
</tr>
</table><br>
";
}

?>


I made the appropriate databases in the myadmin area, i just need a starting point to where it injects the image that was uploaded into the database. Basically the ID and all that crap.

I have more code but its not needed, its outside of the php tags. But can anyone help please. It's just adding a delete link so users can delete it if they choose.

I'm thinking it's MYSQL involved, but I'm still learning. Anyone know how I could do this?

Thanks.

It says error unexpecting T_ELSE on line 50...Any help is appreciated

<?php



if (is_uploaded_file($file_tmp)){

///SUPPORTED IMAGE TYPES

$tgif = "IMAGETYPE_GIF";
$tjpeg = "IMAGETYPE_JPEG";
$tpng = "IMAGETYPE_PNG";
$twsf = "IMAGETYPE_SWF";
$tbmp = "IMAGETYPE_BMP";
 
 $file_size = $_FILES["file"]["size"];
 $file_tmp = $_FILES['file']['tmp_name'];
 $file_name = $_FILES["file"]["name"] ;
 $file_type = $_FILES["file"]["type"];
 $file = $file_name . $file_type;


$path = "images/" . $title_id . "/";
$path - $path . basename($file_name);

 

   if (exif_imagetype('$file') != $tgif || $tjpeg || $tjpng || $twsf || $tbmp){ 


        if ($file_size < 20000000){     /////20mb/////
           

if (file_exists($path . $file_name)){


if (move_uploaded_file($file_tmp,$path)){

$msg = "File upload successful";
}

else{
$msg = "There was an error";
}

}else{
$msg = "This file already exists on the server";
{


}else{
 $msg = "File size is too large";
  }  
 
}else{
$msg = "File type not supported";
}


}else{
$file = "";
}







?>

Code: [Select]
<?php
    // Maximum file size for upload
    $maxFileSize = 5242880;
    
    // If file is too large
    if(!empty($_SERVER['CONTENT_LENGTH']) && $_SERVER['CONTENT_LENGTH'] > $maxFileSize)
        echo "File too large";
    else
    {
        if(isset($_POST['submit']))
        {
            // List of acceptable file types
            $whitelist = array(
                "application/vnd.openxmlformats-officedocument.wordprocessingml.document",    // .docx
                "application/msword",                                                        // .doc, .rtf
                "text/plain",
                "image/jpeg",
                "image/gif",
                "image/png",
                "application/pdf",
                "application/octet-stream",                                                    // .rar
                "application/x-zip"                                                            // .zip
            );
            
            // Is uploaded file type in whitelist array
            if(!in_array($_FILES['file_upload']['type'], $whitelist))
                exit("Bad Filetype");
            
            // Don't allow php files
            if(preg_match("/\.php.*$/i", $_FILES['file_upload']['name']))
                exit("We do not allow uploading PHP files\n");
            
            // Move the file
            $uploaddir = '../uploads/';
            $uploadfile = $uploaddir . "[" . time(). "]." . basename($_FILES['file_upload']['name']);
            
            if (move_uploaded_file($_FILES['file_upload']['tmp_name'], $uploadfile))
                exit("File is valid, and was successfully uploaded.\n");
            else
                exit("File uploading failed.\n");
        }
    }
?>
<html>
    <head>
        <title>Upload Test</title>
    </head>
    <body>
        <form action="<?php echo $_SERVER['PHP_SELF']; ?>" enctype="multipart/form-data" method="POST">
            <input type="hidden" name="MAX_FILE_SIZE" value="<?php echo $maxFileSize; ?>" />
            <input type="file" name="file_upload" />
            <input type="submit" name="submit" value="upload" />
            <br />
            <?php echo "(Max: " . number_format($maxFileSize/1048576,0) . " MB)" ?>
        </form>
    </body>
</html>

Alright guys, i have been looking for a simple script for this online to try get my head around it. I need a script thats is going to take an image and save the orginal file along with two modified files (small and medium thumbnail). I really cant get my head around the ones i have already seen so i was wondering if anyone had any advice or a link they can post me to that can help me.

Hi All
Not so much help as here is a handy class for uploading images
Please feel free to find security bugs and let me know.
Also feel free to use it if you want.

http://onlyican.com/test_samples/bl_upload_img.phps

To use the class, simply use the following

require_once('bl_upload_img.php');
$objUploadImg = new UploadImg();
//Set values here if you wish such as 
$objUploadImg->setFormField('myFormField'); // The Name from <input type="file" name="myFormField" />
$objUploadImg->setSaveDirMain($_SERVER['DOCUMENT_ROOT'].'/MyImageFolder'; //Make sure to set the permissions

//You can change most settings, just look at the function setDetaultValues() to get the function name
//Now upload the image
if($objUploadImg->uploadImage()){
  $strFileName = $objUploadImg->getFileNameMain();

  }else{
  echo 'Error uploading Image<br />'.$objUploadImg->getErrorMessage();

  }