PHP - Logical Webpage Design

fixed.

Hi guys, i'm trying to increment a variable / session value whenever 'submit' comes in the POST.

I can't seem to get around the logic of this.

Code looks like this:

Code: [Select]
$var = 0
if($_POST('submit'){
$_SESSION['var2'] = $var++;
}

What I want it to do is increment the value of the session index everytime a user clicks 'submit'.

But because i've reset $var to 0 everytime, it's always just going to stay at 1.

I just can't think of a way to achieve this, does anyone have any clue on how I can?

try {
echo "<br>";
foreach($dbh->query("SELECT * FROM test_shot WHERE sold=1 ORDER BY year ASC") as $row) {
	
						if($row['picture'] != "" && $row['picture'] != null)
						{
						echo "<div class='image-holder'><img src ='".$row['picture']."' width=300px /><br>";  
            			}
						if($row['year'] != "" && $row['year'] != null)
						{
							echo $row['year'];
						}
						if($row['description'] != "" && $row['description'] != null)
						{
							echo $row['description'];
						}
						if($row['sold'] == 1) {
							echo "<img src='images/sold1.png'><br>";//Add your image code here
							}
							elseif ($row['sold'] == 0) {
							
							echo "</div><br>";
						}
					}

	}	

catch (PDOException $e) {
  print $e->getMessage();
}

?>

 

Hi there,

First of all, I want to present the diagram that I'm working on.
-----------
Diagram
-----------
step2_a.php --|
step2_b.php --|---> output.php
step2_c.php --|       (Process is included here)
step2_d.php --|


and here are the corresponding codes:

step2_x:
Code: [Select]
. . .
<form action="output.php" method="post" name="a">
req1: <input type="text" name="a_req_1">
req2: <input type="text" name="a_req_2">
. . .
<input type="submit">
</form>
------
. . .
<form action="output.php" method="post" name="b">
req1: <input type="text" name="b_req_1">
req2: <input type="text" name="b_req_2">
. . .
<input type="submit">
</form>
. . .
. . .

output.php:
Code: [Select]
<?php
$form_name = $_POST['a'];
if($form_name = "a") {
//variables for a goes here
        //code goes here
}
elseif($form_name = "b") {
//variables for b goes here
        //code goes here
}
elseif($form_name = "c") {
//cariables for c goes here
        //code goes here
}
elseif($form_name = "d") {
//variables for d goes here
        //code goes here
}
else {
//code goes here
}
?>
Now, here's the problem. output.php always sees the primary condition as true. Even the data came from step2_b, the code does not recognize it. I tried to use "==" instead of "=" but the code sees the arguments as false so it executed the code on "else".

How can I make the code distinguish the source of the data so that it would execute the right set of commands?

Thanks in advance.

I am creating a form that collects the details of users and then any errors cause for the error log to have errors noted and added to it.

Part of my coding is this:

Code: [Select]
else if (is_numeric($name)||is_int($name) && is_numeric($surname)||is_int($surname))
{
echo "It seems that you have entered numerical values for the First Name and Surname fields. This has been added to the error log.<br><br>";
error_log("<br><br><b><u>Presence Error</b></u><br>The user has entered numerical values for First Name and Surname fields!<br>First Name entered: " . $name . "<br>Surname entered: " . $surname . "<br>Age entered: " . $age . "<br>Number Of Complete Weeks Since Accident entered: " . $weeks . "<br>Time that form was submitted: " . $subtime . "<br><br>", 3, "C:/xampp/htdocs/errorlog.txt");
}
else if (is_numeric($name)||is_int($name))
{
echo "It seems that you have entered a numerical value for the First Name field. This has been added to the error log.<br><br>";
error_log("<br><br><b><u>Presence Error</b></u><br>The user has entered a numerical value for First Name fields!<br>First Name entered: " . $name . "<br>Surname entered: " . $surname . "<br>Age entered: " . $age . "<br>Number Of Complete Weeks Since Accident entered: " . $weeks . "<br>Time that form was submitted: " . $subtime . "<br><br>", 3, "C:/xampp/htdocs/errorlog.txt");
}
else if (is_numeric($surname)||is_int($surname))
{
echo "It seems that you have entered a numerical value for the Surname field. This has been added to the error log.<br><br>";
error_log("<br><br><b><u>Presence Error</b></u><br>The user has entered a numerical value for the Surname field!<br>First Name entered: " . $name . "<br>Surname entered: " . $surname . "<br>Age entered: " . $age . "<br>Number Of Complete Weeks Since Accident entered: " . $weeks . "<br>Time that form was submitted: " . $subtime . "<br><br>", 3, "C:/xampp/htdocs/errorlog.txt");
}

so that if a user enters in numerical values when letters need to be entered, then this gets added to the error log. However, even if I enter in a suitable surname (i.e. Jones), the first path (where both the first name and surname are detected as being numerical) runs when I want the path where only the first name contains just digits to be run. Any idea how to fix this?

Any help is appreciated!

Thanks!

Okay, not sure what exactly I need but I need to store data in a MySQL database.

The financial data for each user has to be stored for each day.

I.e. User 1 has 20 financial data columns say (rent, maintenance, wages, shopping... etc). I need to store each of those separately so they can be displayed in a report.

There is more than one user. Most likely a couple of hundred users although it needs to work for up to a few thousand users.

Also, each user's daily financial data has to be stored against the date of that data so the user can see the change in finances between day X and day Y for example.

So far my best idea has been to create a table for each user and then in that table store the financial data in the columns against the date as the primary key. Does anyone have a better way for this or should I do this?

Hi,

For the last few years on my website I have been using FluxBB/PunBB's login script which basically just stores a cookie with their user ID and their password hash. This is fine except if the database got leaked anyone can login as anyone else providing they have their hash.

I'm trying to be more secure about this now. Can someone explain a better process to me please?

I was thinking of storing sessions with a unique hash in an 'active_sessions' table and providing they have a cookie with that hash they are granted that session? If someone uses a different IP to what that session was created with it's deleted?

I'm new to all of this so any advice would be great. I want this to be secure.

Hi All,

I currently have a ticketqueue that show's all tickets assigned to a group of people, but split into personal queues, but the way that I wrote it, means that it needs manually updating if a specific person leaves/joins the department. For example, to get the queue details, I use the following query:

Code: [Select]
$username1 = mssql_query("select id,subject,body,priority from queue where assignedto = username1";)
$username2 = mssql_query("select id,subject,body,priority from queue where assignedto = username2";)

I have repeated this code for all of the users in our team. Which seams a waste, as I have all the information on our team stored in a DB called "sysadminusers". Is there an array I could use that would look at all the usernames in the table, and then repeat the query for me?

I would also need this array to display the results on the page, currently I use the following:

Code: [Select]
while($username1_tickets = mssql_fetch_assoc($username1)){
echo $username1_tickets['id'],$username1_tickets['subject']$username1_tickets['body'],$username1_tickets['priority'];}
while($username2_tickets = mssql_fetch_assoc($username2)){
echo $username2_tickets['id'],$username2_tickets['subject']$username2_tickets['body'],$username2_tickets['priority'];}

I am just looking for some design advice and code examples that would help me tidy up my code for this page, it seams a lot of code for quite a simple page.

Thanks
Matt

Hi guys, I don't know if I'm over complicating things here and cannot see the wood for the trees, but I seem to have got myself confused. What I'm simply trying to do is get teamName and teamresults of a team from a database.  The code will perhaps explain better than I can (note I haven't included the DB class which is fine).

class TeamCollection {
    protected $database;
    protected $teamid;
    protected $team_name;
    
    // pass db by dependency injection...
    public function __construct(Database $database) {
            $this->database = $database;    
    }

    public function getTeam($teamid){
            $this->team_id = $teamid;
            $this->database->query("SELECT  team_name, nickname, founded FROM club WHERE team_id=:teamid");
            $this->database->bind(':teamid', $this->team_id);    
            
        // spawn a new Team object if query is valid, if not throw exception and end via try/catch...
        if ($result = $this->database->single()) {
                return new Team($result); // create new Team passing $result to Team constructor
        }
        else {
                throw new exception ('No Valid Team returned');
        }
    }
    
    public function getResults($teamid){
            $this->team_id = $teamid;
            $this->database->query("SELECT result FROM results WHERE team_id=:teamid");
            $this->database->bind(':teamid', $this->team_id);    
    
        // If a Team has valid results, return array of match scores..
        if ($scores = $this->database->results()) {
                return $scores;
        }
        else {
            throw new exception ('No Valid Team Results to return');
        }
    }

} //end class

// Team is abstracted from DB
class Team {
    
    private $team_name;
    private $result;
    private $scores;
    
    public function __construct(array $result) {
        $this->team_name = $result['team_name'];
    }
    
    public function getName() {
        $this->team_name;
    }
    
    public function getResults(array $scores) {
        foreach ($scores as $row){
            echo $row;    
        }
    }
}
// implementation

$team_id =9; // passed variable..

$database = new Database($server,$db_type); // create db..

$database->connect(); // connect to db..

$collection = new TeamCollection($database); // pass live DB link to TeamCollection Class

try {
    
    $team = $collection->getTeam($team_id); // try and spawn a valid Team Object..

    echo $name = $team->getName(); // If so lets return a Team name

    $scores = $team->getResults($team_id); // Now try and get Team Results..

    $display_results = $scores->getResults($scores); // Display results by passing them to Team class to

    }

catch (Exception $e) {
    Echo 'Exception Thrown: ' . $e->getMessage();    
}

My basic difficulty is where to put the getResults method and how to use it? I'm fine spawning a new Team as required, but is my logic for then moving on to getResults sound? I was trying to abstract my Team class from having any database association at all. Is this a wise approach or just not required? Am I overcomplicating the issue or missing something? Can anyone help? I guess my difficulty is between connecting classes and objects in the best manner. Thanks in advance.
Edited by mich2004, 19 May 2014 - 06:48 AM.

Hello I have a question in regards to design. No need for example code just of how to approach the problem.

Issues and things that cannot change because they are part of the situation.
1. Cannot use any database like oracle, MySQL, or SQLite
2. The server does not run PHP5
3. The students do not have a unique field and cant have one because they have not my employers have not decided on one.

Here is the problem:
I have to make a form with the following fields

first name
last name
comments
date

I have stored the fields in a text file.
However, how can I relate date to the comment  without having duplicates records?
For example. Lets suppose my boss asked me  can you look up the comments that the counselor made in july 10 2010.

My answer: One must have duplicate records of each instance of a comment. Am I wrong?

Amazingly, threads about application design belong in the Application Design sub-forum.

This topic has been moved to Application Design.

http://www.phpfreaks.com/forums/index.php?topic=358384.0

sorry guys its been a long day and this is an extreme newbie question but for whatever reason right now I cant wrap my head around the concept right now...
say for instance one wanted to make a db for job postings, where one could go and see many different categories etc etc. Would you create a table "jobs" and then create rows for the types ie) Accounting, Business, Customer Service, etc. - or would those be all seperate tables as well? Cause im just thinking of the INSERT INTO query, and say I wanted to add a job but I only wanted to add one to the Customer service portion of the jobs table...thats why im curious if everything should be different tables so you could just do INSERT INTO customer_service etc etc and then have all of the persons names/creditials there? OR is it possible to create a table within a table? or am I simply going nuts here? lol. thanks

This topic has been moved to Application Design.

http://www.phpfreaks.com/forums/index.php?topic=357188.0

I have a php file, call it "mypage.php"
it makes come calculations, create 5 different arrays,
and creates a table by using the arrays.

I found simpleXML to create XMLs easily.
I want to make an xml file by using the contents of mypage.php.

I want to do that with an argument like that "mypage?type=xml"
I'm aware that i should use "$_GET" or "$_POST"
But where should i put the php code in page,
so when i use argument "xml" it will create an xml file.
When i don't give argument it will create an html type file.

Or should i use another php that includes mypage.php??
And get arrays from that file?

Thank you.

Hi all!

I'm a real noob and this is my first time making a website and I haven't hosted it yet.
I'm trying to make a website that is fast and secure.
My pages look something like this.

Code: [Select]
<?php include("header.php");include("sidebar.php"); ?>
HTML CODES
<?php include("footer.php"); ?>

1. Are these php files cached after their first load? When I go to another page, those parts seem to stay still.
2. Is this code secure?

And now I'm starting to make product pages which will be around 40 pages.
So I'm considering something like  this...

Code: [Select]
<?php include("header.php");include("sidebar.php"); ?>
<a href="index.php?page=a">Page A</a>
<?php 
$page = $_GET['page'];
if (file_exists('pages/'.$page.'.php'))
{
   include('pages/'.$page.'.php');
}
?>
<?php include("footer.php"); ?>

3. Is it better to make every page like this since it will load header, sidebar, footer only once?
4. How should I protect from the user input data, by making an array of allowed files or by prohibiting "." and "/" ?

Thank you in advance.