Learn VBA & Macros in 1 Week!

PHP - Connectivity Error Or Security Certificate Issue ?

Full Excel VBA Course - Beginner to Expert

Connectivity Error Or Security Certificate Issue ?	View Content

Hi folks,

a few days back, we enabled SSL on our office server and the intranet migrated to https. Everything is ok on the intranet.

On the public internet, we noticed today that the page on our website, which connects to our office server to fetch and display data was throwing an error, which I presumed was a Security Certificate issue... An area that's like the Dark Side of the Moon for me..

the webpage - https://liveconnections.in/hotjobs.php

This is the error from the logs

 PHP Warning: file_get_contents(): SSL operation failed with code 1. OpenSSL Error messages:
error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed 
PHP Warning: file_get_contents(): Failed to enable crypto 
PHP Warning: file_get_contents(): SSL operation failed with code 1. OpenSSL Error messages:
error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed

Anycase, the internet was willing to help and so I updated the code to a curl function. The Data is not displaying still...

However, when I try to access the office server by loading the php page in my localhost, the data is displayed.

Here's the code... where am i going wrong ?

<?php 
	//error_reporting(E_ERROR | E_PARSE | E_ALL);
	$page="jobs-listing";
?>
<header class="section background-livec text-center">
            <h3 class="text-white margin-bottom-0 text-size-40 text-thin text-line-height-1">Current & Hot Jobs</h3>
        </header>
<?php 
	$industry = $_GET['industry'];
	$location = $_GET['location'];
	$expMin = $_GET['expMin'];
	$expMax = $_GET['expMax'];
	$sortBy = $_GET['sortBy'];
	$cpg    = $_GET['page'];
	
	if(empty($cpg) || $cpg==1)
		$npl = 1;
	else {
		//$npl = (($cpg+1)*10) - 9;
		$npl = $_GET['startingRowNo'];
	}

	$industry = str_replace(' ', '%20', $industry);
	$location = str_replace(' ', '%20', $location);
	
	$url = "https://xx.xxx.xxx.xxx/WebService/rest/";

	function file_get_contents_curl($url) {
	$ch = curl_init();
	curl_setopt($ch, CURLOPT_HEADER, 0);
	curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); //Set curl to return the data instead of printing it to the browser.
	curl_setopt($ch, CURLOPT_URL, $url);
	$data = curl_exec($ch);
	curl_close($ch);
	return $data;
	}

	if(!empty($sortBy)) { 
		$json = file_get_contents_curl($url.'getHeadersBySearch?industry='.$industry.'&location='.$location.'&expMin='.$expMin.'&expMax='.$expMax.'&sortBy='.$sortBy.'&startingRowNo='.$npl.'&noOfRows=1000000');
		$data = json_decode($json);
	} else if(!empty($industry) || !empty($location) || !empty($expMin) || !empty($expMax)) {
		$json = file_get_contents_curl($url.'getHeadersBySearch?industry='.$industry.'&location='.$location.'&expMin='.$expMin.'&expMax='.$expMax.'&sortBy=&startingRowNo='.$npl.'&noOfRows=1000000');
		$data = json_decode($json);
	} else {	
		//$json = file_get_contents_curl($url.'getOnlineWebPosting');
		$json = file_get_contents_curl($url.'getHeadersBySearch?industry='.$industry.'&location='.$location.'&expMin='.$expMin.'&expMax='.$expMax.'&sortBy=&startingRowNo='.$npl.'&noOfRows=1000000');
		$data = json_decode($json);
		
		//if (!$data) echo "Data Not Found" ;
	}

	if($sortBy=='DESC' || $sortBy=='') {
		$aclass = 'down_arrow';
	} else {
		$aclass = 'up_arrow';
	}
	$json2 = file_get_contents_curl($url.'getSearchData');
	$data2 = json_decode($json2);

	$industry = str_replace('%20', ' ', $industry);
	$location = str_replace('%20', ' ', $location);
	if($industry=='F amp A - BPO') {
		$industry = 'F & A - BPO';
	}	
	if($industry=='OIL amp GAS') {
		$industry = 'OIL & GAS';
	}
?>
        

<div class="section background-white"> 

	<div class="background-white"> 
	<p class="text-padding-bot text-letter-spacing1">A cross-section of Jobs currently available. We recommend you to contact our Executives for further info. <br />
	More details available when the Job is '<strong>View'</strong>ed. </p>
	</div>

<?php 
//$data='';
//if($data!=''){ ?> 

		<?php //if ($checkyear>2017) { ?>

        <div class="subJobs">
        	<ul>
        	    	<li> Industry <br /> 
        	        	<select name="industry" id="industry" class="sel">
			            	<option value="">Select Industry Name</option>
					<?php for($i=0; $i<count($data2[0]); $i++) { ?>
						<?php if(isset($industry) && $industry==$data2[0][$i]) { ?>
							<option selected value="<?php echo $data2[0][$i];?>"><?php echo $data2[0][$i];?></option>
						<?php } else { ?>
							<option value="<?php echo $data2[0][$i];?>"><?php echo $data2[0][$i];?></option>
						<?php } 
					} ?>
		        	</select>                    
                    	</li>
		        <li>Location<br /> 
		        	<select name="city" id="city" class="sel">
				    	 <option value="">Select City Name</option 
					><?php $m=0; for($j=0; $j<count($data2[1]); $j++) { ?>
						<?php $locat = explode(",",$location); ?>
						<?php if($locat[$m]!="" && $locat[$m]==$data2[1][$j]) { ?>
							<option selected value="<?php echo $data2[1][$j];?>"><?php echo $data2[1][$j];?></option>
						<?php ++$m; } else { ?>
							<option value="<?php echo $data2[1][$j];?>"><?php echo $data2[1][$j];?></option>
						<?php } 
					} ?>
				</select>
		        </li>
		       <li>Experience <br /> 
			       <select name="minyear" class="sel2" id="minyear">
			       	    <option value="">Min</option>
				    <?php for($ii=0; $ii<46; $ii++) { ?>
					<?php if($expMin!="" && $expMin==$ii) { ?>
						<option selected value="<?php echo $ii; ?>"><?php echo $ii; ?></option>
					<?php } else { ?>
				    		<option value="<?php echo $ii; ?>"><?php echo $ii; ?></option>
				    	<?php } 
				    } ?>
			       </select>
			       <select name="maxyear" class="sel2" id="maxyear" onchange="return select_max();">
			       	    <option value="">Max</option>
				    <?php for($ii=0; $ii<51; $ii++) { ?>
					<?php if($expMax!="" && $expMax==$ii) { ?>
						<option selected value="<?php echo $ii; ?>"><?php echo $ii; ?></option>
					<?php } else { ?>
				    		<option value="<?php echo $ii; ?>"><?php echo $ii; ?></option>
				    	<?php } 
				    } ?>
			       </select>
			       <!-- select name="" class="sel2" id="sort">
					<option value="">Select</option>
					<option value="ASC">ASC</option>
					<option value="DESC">DESC</option>
			       </select -->		       
		       </li>
               <li class="ser"><button type="button" onclick="search_by_category()" class="btn btn-default" style="margin-top:25px;"><i class="fa fa-search"></i> Search</button></li>
            </ul>
        </div>
       <!-- Selected Jobs Headline Info -->
		<div class="line">
			<p class="text-dark text-center text-size-16">
			<?php if($industry) echo 'Showing ' .  '<b>' . $industry .'</b>' .  ' Jobs' ; ?>  
			<?php if($location) echo ' at ' .  '<b>' . $location .'</b>' ; ?>
			<?php if($expMin) echo ' with Min ' .  '<b>' . $expMin .'</b>' ; ?>
			<?php if($expMax) echo ' to Max '.  '<b>' . $expMax.'</b>' ; ?>
			<?php if($expMin | $expMax) echo ' Years Experience' ;?>
			</p>
	</div>  

       <!-- Jobs Table -->
        <table id="example" class="display" cellspacing="0" width="100%">
            <thead>
              <tr>
                <th class="jobs_noshow text-center" width="5%">S.No</th>
                <th class="text-center" width="15%">Posted On</th>
                <th class="text-center" width="30%">Job Title</th>
                <th class="jobs_noshow text-center" width="15%">Level</th>
                <th class="jobs_noshow text-center" width="15%">Location</th>
                <th class="jobs_noshow text-center" width="15%">Job Code</th>
                <th class="text-center" width="5%">Action</th>
              </tr>
            </thead>
            <tbody>
              <?php $ri=1; foreach($data as $kk=>$d) { ?>
				  <?php  
					$date_posted = $d->postedDate; // get the Posted Date
					$date_posted_year=date("Y",strtotime($date_posted)); // Get the Year from the date and store in a variable
					if ($date_posted_year>$jobs_restrict_year) { // Show only Jobs posted after this year ?>
					  <tr>
						<td class="jobs_noshow text-center"><?php echo $ri; ?></td>
						<td class="text-center"><?php echo $d->postedDate; ?></td>
						<td><?php echo $d->title; ?></td>
						<td class="jobs_noshow  ctext notreq"><?php echo $d->level; ?></td>
						<td class="jobs_noshow text-center notreq"><?php echo $d->location; ?></td>
						<td class="jobs_noshow  text-center"><?php echo $d->requirementID; ?></td>
						<td class="text-center"><a class="button background-livec border-radius text-white" style="color:white" data-fancybox="ajax" href="?contentid=jobs-detail&requirementID=<?php echo $d->requirementID; ?>&requirementSeqNo=<?php echo $d->requirementSeqNo; ?>" data-type="ajax">View</a></td>
					  </tr>
				  <?php } ?>
              <?php $ri=$ri+1; } ?>
            </tbody>
          </table>
          <script type="text/javascript">
			$(document).ready(function () {
				var table = $('#example').DataTable( {
					"pageLength": 25,
					"sPaginationType":"full_numbers",
					"oLanguage": {
					"sInfo": 'Showing _START_ to _END_ of _TOTAL_ Jobs.',
					"sInfoEmpty": '',
					"sEmptyTable": "No Jobs found currently",
					}
				}); 
				$('#example').removeClass( 'display' ).addClass('table table-striped table-bordered');
			});
   		  </script>
          <style> .dataTables_filter { display: none; } </style>
          <!-- End of Table -->
 </div>      
<?php // } else { ?>
<div style="margin: 20px 0 40px 0px;height:200px;text-align:center;">
<h1 style="font-size:16px;">Server is unavailable at the moment. Please try after some time.</h1>
</div>
<?php //}?>     
  
</div>


<!--jobs end-->
<script type="text/javascript">
	function search_by_category() {
		industry	= $('#industry option:selected').val();
		//city1		= $('#city option:selected').val();
		minyear		= $('#minyear option:selected').val();
		maxyear		= $('#maxyear option:selected').val();
		//sortBy		= $('#sort option:selected').val();
		var city = $('select#city').val();
		var cur_pg = "<?php echo $cpg; ?>";
		var tot = "<?php echo $total; ?>";
		var tot_pgs = Math.ceil(tot/25);
		//if(cur_pg=="")
			cur_pg = 1;
		var last_pg = tot_pgs - cur_pg;
		if(last_pg==0)
			records = tot - ((tot_pgs -1) * 25);
		else
			records = 25;

		var strt_val = ((cur_pg-1) * 25) + 1; 
		
		if(industry=='F & A - BPO')
			industry ='F amp A - BPO';
		if(industry=='OIL & GAS')
			industry ='OIL amp GAS';
		city1 = document.getElementById("city").value;
		if(city1=="" || city1=="null") {
			city="";
		}		
		if(industry!="" || city!="" || minyear!="" || maxyear!="") {
			location.href="hotjobs.php?contentid=hotjobs&industry="+industry+"&location="+city+"&expMin="+minyear+"&expMax="+maxyear+"&sortBy=&startingRowNo=1"+"&noOfRows="+records+"&page="+cur_pg;
		} else {
			//alert("Please select any one of the fields");
			location.href="hotjobs.php?contentid=hotjobs&industry="+industry+"&location="+city+"&expMin="+minyear+"&expMax="+maxyear+"&sortBy=&startingRowNo=1"+"&noOfRows="+records+"&page="+cur_pg;
		}
	}
	function sort_by_location() {
		var order = '<?php echo $sortBy; ?>';
		industry	= $('#industry option:selected').val();
		city		= $('#city option:selected').val();
		minyear		= $('#minyear option:selected').val();
		maxyear		= $('#maxyear option:selected').val();
		city1 = document.getElementById("city").value;
		if(industry=='F & A - BPO')
			industry ='F amp A - BPO';
		if(industry=='OIL & GAS')
			industry ='OIL amp GAS';
		if(city1=="") {
			city="";
		} else {
			city = $('select#city').val();
		}
		if(order=="" || order=="DESC") {
			location.href="hotjobs.php?contentid=hotjobs&industry="+industry+"&location="+city+"&expMin="+minyear+"&expMax="+maxyear+"&sortBy=ASC"+"&startingRowNo=1&noOfRows=10";
		} else {
			location.href="hotjobs.php?contentid=hotjobs&industry="+industry+"&location="+city+"&expMin="+minyear+"&expMax="+maxyear+"&sortBy=DESC"+"&startingRowNo=1&noOfRows=10";
		}
	}

	function select_max() {
		minyear = document.getElementById("minyear").value;
		maxyear = document.getElementById("maxyear").value;
		if(parseInt(maxyear)>=parseInt(minyear)) {
			return true;
		} else {
			if(maxyear!="") {
				alert("Maximum year must be equal or greater than minimum year");
				$('#maxyear').val("");
				return false;
			}
		}
	}
	
</script>

Also, if i change the $url in my code to https:// , no data is displayed...

I raised a Support request to the Hosting provider, but they seem to have vanished into the ozone....

Any help would be highly appreciated.

Cheers - Murali

Full Excel VBA Course - Beginner to Expert

Security Issue!

Similar Tutorials

View Content

triple posted for some reason.

Php Paypal Security Issue!

Similar Tutorials

View Content

Hi, i am running an online ecommerce store where i let people list and sell their items.

Howerver the security is to weak. when people click the buy button on a product they are taken to process.php where a session is set to true, and then they are redirected to paypal to complete tehir orders. after their payment is completed they are redirected to success.php where they collect their download from a link to the download url posted by the user who listed the product.

now the problem is that all that is required to get access to file download is for the session to be "true", this means that someone could just navigate to process.php and then skip paypal and navigate directly to success.php.

Here is what i want to do: instead of the link beeing displayed in the success.php file, i want paypal to navigate directly to the file download instead...

Here is my php files: http://www.mediafire.com/?383u89twj197bjg

Thank you all for helping me... i would be forever happy if any of you could have a look at the script and correct it as mentioned above, and please send the files back to : vallandepost@gmail.com ... thank you very much!

Login Security Issue

Similar Tutorials

View Content

i just discovered a hole in my scripts relating to access .

1. have a simple login form
2. based on the type of user , he is directed to a page for his options .
3. I now realise that altho each page therefter checks for sessions of the user , he can easily change the url to that of another user and there is no way to prevent it.
4. How can i make sure that each time a page is accessed it is only by the user whom it is meant for.

Relevant code snippets below . Thanks ! Swati

login.php
---------

<?php
//error_reporting(E_ERROR | E_PARSE | E_CORE_ERROR);

//Process this if statement only if form was submitted
if($_POST['submit']){
session_start();

$username=$_POST['username'];
$password=$_POST['password'];
include ("link.php"); // contains db info

    //Test for login success
    $sql = "SELECT * FROM Users WHERE Username='$username' AND Password = '$password'";
    $result = mysql_query($sql);
    if  ($myrow = mysql_fetch_assoc($result)){
//  echo $sql;

        $login_success = 'Yes';
        $userid = $myrow["Userid"];
       $usertype = $myrow["UTID"];

        $status = "On";
        $url = $PHP_SELF."?".$_SERVER['QUERY_STRING'];;
        $logout = 'logout.php';

        $_SESSION['id']=session_id();
        $_SESSION['userid']=$userid;
        $_SESSION['usertype']=$usertype;

       $sql2= "insert into Log (Sessionid,Userid,IP,Date,File, Status) values('$_SESSION[id]','$userid','$ip','$tm', '$url', '$status')";
$result2 = mysql_query($sql2) or die  ('no access to database: ' . mysql_error());
//        echo mysql_error();      }

}
}
?>

Each subsequent page has this header
==============================

<?
header("Cache-Control: public");

include ("log.php"); //db info for DB along with session start
if(!isset($_SESSION['userid'])){
echo "<center><font face='Calibri' size='2' color=red>Sorry, Please login and use this page </font></center>";
exit;}
?>

The url of each page :

Code: [Select]

www.abc.com/example/type1.php?Userid=USER1ID

and such a user can easily change the url to
Code: [Select]

www.abc.com/example/type2.php?Userid=USER1ID

and access all the options of type2.php

$_server['document_root'] - Security Issue???

Similar Tutorials

View Content

Hi

I run versions of sites on a local server. For these the path to a mysql connection script is pretty simple: mysql_connec.php

On my live server, I put things out of the public directory - so this time the path is ../mysql_connect.php

I therefore have to have sections like this in my files = and whilst not complex, its a pain having to uncomment/comment lines depending on which server I am working because I keep forgetting!

Code: [Select]
// require_once('../../workRecord/mysql_connect.php'); //online
require_once('mysql_connect.php'); //local

Is there some way I can identify which server I am on so I don't keep having to do this. I was thinking of using something like this:

Code: [Select]
if ($_SERVER['DOCUMENT_ROOT']=="c:/web_root/blah/blah"){
require_once('mysql_connect.php');
}else{
require_once('../../workRecord/mysql_connect.php');
}

I am pretty sure this would work, but does this method present any security issues???

Working On My Install Script, Connectivity Question

Similar Tutorials

View Content

I have a install.php file that I created. It asks for the MySQL user, pass, hostname and database they want to use. When the script is run, the tables are created and the MySQL info is inserted into a connection table.

Now the tricky part. On each page that needs to connect to the MySQL database, I have an include, which contains the following:

Code: [Select]
define ('DB_USER', ' ');
define ('DB_PASS', ' ');
define ('DB_HOST', ' ');
define ('DB_NAME', ' ');

$dbc = mysql_connect (DB_HOST, DB_USER, DB_PASS) OR die ('Cannot connect to MySQL server.');
mysql_select_db (DB_NAME) OR die ('Cannot connect to database.');

How do I tell the database connection script what the variables are from the connections table?

Yeah, I know I can manually put them in there, but the point of the script was to make it so the user does not have to go into the code.

Ssl Certificate

Similar Tutorials

View Content

Hi,

I have a specific php form in my website:

example: www.website.com/form/

I want it to open in https://www.website.com/form/ it is working fine
The problem is how can I force it to always open the form folder (index.php) in https

Because if somebody removes the S in https:// the site will open normally.

Thank you,

Contact Form Security + Data In Form Disappear + Error Message Display

Similar Tutorials

View Content

Hello, I have coded a contact form in PHP and I want to know, if according to you, it is secure! I am new in PHP, so I want some feedback from you.

Moreover, I have also two problems based on the contact form. It is a bit complicated to explain, thus, I will break each of my problem one by one.

FIRST:The first thing I want to know, is if my contact form secure according to you:

The HTML with the PHP codes:

Code: [Select]
<?php
if ($_SERVER['REQUEST_METHOD'] == 'POST') {

//Assigning variables to elements
$first = htmlentities($_POST['first']);
$last = htmlentities($_POST['last']);
$sub = htmlentities($_POST['subject']);
$email = htmlentities($_POST['email']);
$web = htmlentities($_POST['website']);
$heard = htmlentities($_POST['heard']);
$comment = htmlentities($_POST['message']);
$cap = htmlentities($_POST['captcha']);

//Declaring the email address with body content
$to = 'alithebestofall2010@gmail.com';
$body ="First name: '$first' \n\n Last name: '$last' \n\n Subject: '$sub' \n\n Email: '$email' \n\n Website: '$web' \n\n Heard from us: '$heard' \n\n Comments: '$comment'";

//Validate the forms
if (empty($first) || empty($last) || empty($sub) || empty($email) || empty($comment) || empty($cap)) {
echo '<p class="error">Required fields must be filled!</p>';
header ('refresh= 3; url= index.php');
return false;

}
elseif (filter_var($first, FILTER_VALIDATE_INT) || filter_var($last, FILTER_VALIDATE_INT)) {
echo '<p class="error">You cannot enter a number as either the first or last name!</p>';
return false;
}
elseif (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
echo '<p class="error">Incorrect email address!</p>';
return false;
}
elseif (!($cap === '12')){
echo '<p class="error">Invalid captcha, try again!</p>';
return false;
}
else {
mail ($to, $sub, $body);
echo '<p class="success">Thank you for contacting us!</p>';
}
}
?>
<form action="<?php echo $_SERVER['PHP_SELF'];?>" method="post">
<p>Your first name: <span class="required">*</span></p>
<p><input type="text" name="first" size="40" placeholder="Ex: Paul"/></p>

<p>Your last name: <span class="required">*</span></p>
<p><input type="text" name="last" size="40" placeholder="Ex: Smith"/></p>

<p>Subject: <span class="required">*</span></p>
<p><input type="text" name="subject" size="40" placeholder="Ex: Contact"/></p>

<p>Your email address: <span class="required">*</span></p>
<p><input type="text" name="email" size="40" placeholder="Ex: example@xxx.com"/></p>

<p>Website:</p>
<p><input type="text" name="website" size="40" placeholder="Ex: http//:google.com"/></p>

<p>Where you have heard us?: <span class="required">*</span></p>
<p><select name="heard">
<option>Internet</option>
<option>Newspapers</option>
<option>Friends or relatives</option>
<option>Others</option>
</select></p>

<p>Your message: <span class="required">*</span></p>
<p><textarea cols="75" rows="20" name="message"></textarea></p>

<p>Are you human? Sum this please: 5 + 7 = ?: <span class="required">*</span></p></p>
<p><input type="text" name="captcha" size="10"/></p>

<p><input type="submit" name="submit" value="Send" class="button"/>
<input type="reset" value="Reset" class="button"/></p>
</form>

SECOND PROBLEM:If a user has made a mistake, he gets the error message so that he can correct! However, when a mistake in the form occurs, all the data the user has entered are disappeared! I want the data to keep appearing so that the user does not start over again to fill the form.

THIRD: When the erro message is displayed to notify the user that he made a mistake when submitting the form, the message is displaying on the top of the page. I want it to appear below each respective field. How to do that? In JQuery it is simple, but in PHP, I am confusing!

Https/ssl Certificate - Mandatory For Cc?

Similar Tutorials

View Content

Should I always use HTTPS when users are inputting credit card numbers & billing info? Do you know any sites that don't use HTTPS? I just want to know if it's a total no-no for web applications.

Discuss.

How To Download Website Certificate In Php?

Similar Tutorials

View Content

Hello everyone!

I'm new to PHP (and to this forum, too). My final goal is to make a script that recognises which websites have an Extended Validation certificate type and which ones do not. Except I don't know how to do it. For starters, I should download the X.509 certificate and analyse it (I use both the OpenSSL and cURL PHP extensions), but how?

DAYS of googling have brought me absolutely nothing. Any tips are appreciated. I can provide more detail if need be. I'd provide source code if I had any but I really don't know where to start... Thanks!

Create A Certificate Script Help

Similar Tutorials

View Content

I saw the posting for creating a script for a certificate but am struggling to get it to work, i have tried everything I can think of but getting errors. As you can see from this test link there is php errors that cannot be resolved. http://gmdesign.org.uk/xxx I have also added the javascript to a button to print the certificate it but its not working either. I would be grateful for any help you can give. you can download/see my full scripts by viewing the attached files

What Happens When I Remove Ssl Certificate From My Domain?

Similar Tutorials

View Content

Let's say that I have domain called www.mydomain.com with SSL certificate. Through .htaccess I have set up the domain to force SSL at all times, so users will see https://www.mydomain.com/... I had this site and SSL for while and there are serveral external links linking to my site, but they are all (or most) in "SSL format" https://www.mydomain.com/... If I should cancel my SSL certificate (and remove force SSL in .htaccess) that will happen when those "SSL formatted" links get clicked on? I assume users will get "not trusted connection" message? Any way arround that? As far as I undersestand the "SSL" handshake takes place before .htaccess gets loaded, so I will not be able to force SSL off on the links. Thoughts?
Edited by pioneerx01, 26 December 2014 - 03:01 AM.

94 Files Php Form Using Ssl Certificate

Similar Tutorials

View Content

Hello guys another difficult form case (for me)

I have this super long form that pulls different files depending on what you select. The form works perfectly fine right now. the problem is that now the client need to run the form with a SSL certificate due to gov regulations. we are hosting all the files in the same folder for the secure and unsecure site and the certificate works fine. however when I run the form with the https:// address google chrome tells me that parts of the form are unsecured.

I was reading something about the images have to be on a relative path using img scr="../images/path/file.ext" instead of just img scr="images/path/file.ext". I made that change and it didnt solve the problem.

I changed all the links to " ../ " and didn't solve the problem.

I have added rules to the .htaccess file

RewriteCond %{SERVER_PORT} !^443$
RewriteRule ^contact https://www.example.net/new-service.php [R=301,L]

RewriteEngine On
RewriteCond %{SERVER_PORT} 80
RewriteCond %{REQUEST_URI} somefolder
RewriteRule ^(.*)$ https://www.example.net/inc/$1 [R,L]

And even changed all the links in the form to absolute paths and nothing works.

does anyone know how to force the form to work on SSL or troubleshoot SSL certificate errors to point me in the right direction

thanks guys i appreciate your help and advice

Certificate Expiration For Remote Server

Similar Tutorials

View Content

I've been looking for a function or a couple of functions which will allow me to get the Certificate Expiration date for a given website. I've tried openSSL, but their functions only seem to work on the current server, which is useless to me because my server doesn't allow SSL or certificates. I just want the certificate of an external website, e.g. www.gna.org has a certificate (signed by themselves, but a certificate nonetheless).
I've also tried cURL, since that allows you to access a remote server, but that will just check their certificate - it doesn't offer any functionality for e.g. checking when it will expire.

This seems like a simple enough question, but I haven't found anything about it anywhere, so I'm asking here.

Thanks a bunch in advance,
-IsmAvatar

Checking My Own Certificate Expiry Date

Similar Tutorials

View Content

We are working on a new student application system. Due to privacy laws,
everything will be done behind https. However, this is one of many systems
looked after by the system administrators. I would like to safeguard against
the situation several years down the road when the certificate expires.
There are several administration pages that will be checked frequently by
the graduate admin assistant. While this person has no technical background,
a warning several months before the certificate expires would allow her
to remind the technical staff to renew the certificate.

I know I can use curl to connect to my own server, but that seems like
a long way to do it (and an extra https connection). Is there any way to
get the certificate information for the current https connection from
the server or from the php runtime?

Ssl Certificate, Addon Domains, And Modrewrite

Similar Tutorials

View Content

I recently installed a SSL certificate for one of my domains, on a hosting account that includes several other domains. To redirect visitors to the SSL version of the website (because the SSL certificate only works for the www. version of the site) I use the following code in my .htaccess file: #First rewrite any request to the wrong domain to use the correct one (here www.)

Gift Certificate Form To Long

Similar Tutorials

View Content

I have this form that is far to long. I need to set it up in 3 pages. One page about the person getting the Gift Certificate, one for the person purchasing the certificate and another for credit card information. I have read about hidden variable but am a noobie. Any thoughts would be greatly appreciated.

1 Error/issue + 1 Question!

Similar Tutorials

View Content

Hi guys, first post here from a relative newbie I'm working on my final project for php and I'm running into a bit of a road block. The error is I'm trying to validate which radio button is checked to run a corresponding function to either add a car, drop a car, or display a car. Everything seems to work fine but my if statement won't pick up the change and therefore my function won't run.

This is the output that I receive from the code. [taken from the bottom of the php when I select Add Car(s) on the form]

input = 11112111421
add_status=add_status
unchecked=unchecked

Here's the script and htm form.

Code: [Select]

<html>
<head>
<title>Final Project</title>
</head>
<body>

<form action="final.php" method="post">

<input type="radio" name="query" value="add_status" /> Add Car(s)
<br />
<input type="radio" name="query" value="delete_status" /> Delete Car(s)
<br />
<input type="radio" name="query" value="display_status" /> Display Car(s)
<br />
<input type="text" name="Input_Car_ID" /> Car ID
<br />
<input type="text" name="Input_Car_Make" /> Car Make
<br />
<input type="text" name="Input_Car_Model" /> Car Model
<br />
<input type="text" name="Input_Car_Vin" /> Car Vin
<br />
<input type="text" name="Input_Car_Color" /> Car Color
<br />
<input type="text" name="Input_Car_Mileage" /> Car Mileage
<br />
<input type="Submit" value="Query" />

</form>

</body>
</html>



<?php
/*
final.php
Name: Peter Cort
Date: 4/25/2012
Script: Final Project
*/

$add_status = "unchecked";
$drop_status = "unchecked";
$display_status = "unchecked";

extract($_POST, EXTR_SKIP);

if (isset ($Submit)){

if ($query == "add_status")
{
$add_status = "checked";
}

else if ($query == "drop_status")
{
$drop_status = "checked";
}

else if ($query == "display_status")
{
$display_status = "checked";
}

}

function runsql(){
/*mysql_connect("sftweb01", "cort", "peter");*/
mysql_connect("localhost", "peter", "cort");
mysql_select_db("cort");
        }

runsql();

if ( empty($Input_Car_ID))
{
$Input_Car_ID = "";
}

if ( empty($Input_Car_Make))
{
$Input_Car_Make = "";
}
if ( empty($Input_Car_Model))
{
$Input_Car_Model = "";
}

if ( empty($Input_Car_Vin))
{
$Input_Car_Vin = "";
}

if ( empty($Input_Car_Color))
{
$Input_Car_Color = "";
}

if ( empty($Input_Car_Mileage))
{
$Input_Car_Mileage = "";
}

class car{

private $Car_ID;
private $Car_Make;
private $Car_Model;
private $Car_Vin;
private $Car_Color;
private $Car_Mileage;
public $Input_Car_ID;
public $Input_Car_Make;
public $Input_Car_Model;
public $Input_Car_Vin;
public $Input_Car_Color;
public $Input_Car_Mileage;

/* function for setting no input values to null (will be able to delete on multiple paramaters) */
/* function needs to get values from the .htm form */

function __construct($Input_Car_ID, $Input_Car_Make, $Input_Car_Model, $Input_Car_Vin, $Input_Car_Color, $Input_Car_Mileage)
{
$this->Car_ID = $Input_Car_ID;
$this->Car_Make = $Input_Car_Make;
$this->Car_Model = $Input_Car_Model;
$this->Car_Vin = $Input_Car_Vin;
$this->Car_Color = $Input_Car_Color;
$this->Car_Mileage = $Input_Car_Mileage;
}

function add_vehicle()
{
if (($Car_ID == "") && ($Car_Make == "") && ($Car_Model == "") && ($Car_Vin == "") && ($Car_Color == "") && ($Car_Mileage == ""))
{
print "Please provide information about the car you wish to add";
}
else mysql_query("INSERT INTO Car_T (Car_ID, Car_Make, Car_Model, Car_Vin, Car_Color, Car_Mileage)
VALUES ('$this->Car_ID', '$this->Car_Make','$this->Car_Model', '$this->Car_Vin', '$this->Car_Color', '$this->Car_Mileage')");
}

function drop_vehicle()
{
if (($Car_ID == "") && ($Car_Make == "") && ($Car_Model == "") && ($Car_Vin == "") && ($Car_Color == "") && ($Car_Mileage == ""))
{
print "Please provide information about the car you wish to delete";
}
else mysql_query("DELETE FROM Car_T WHERE Car_ID = '$this->Car_ID' AND Car_Make='$this->Car_Make' AND Car_Model='$this->Car_Model' AND Car_Vin='$this->Car_Vin' AND Car_Color='$this->Car_Color' AND Car_Mileage='$this->Car_Mileage'");
}

function display_vehicle()
{
if (($Car_ID == "") && ($Car_Make == "") && ($Car_Model == "") && ($Car_Vin == "") && ($Car_Color == "") && ($Car_Mileage == ""))
{
$display_query = mysql_query("SELECT * FROM Car_T");
}

else $display_query = mysql_query("SELECT * FROM Car_T WHERE (Car_ID = '$this->Car_ID' OR Car_Make = '$this->Car_Make' OR Car_Model = '$this->Car_Model' OR Car_Vin = '$this->Car_Vin' OR Car_Color = '$this->Car_Color' OR Car_Mileage = '$this->Car_Mileage')");

while($row = mysql_fetch_row($display_query)){
            echo $row['$this->Car_ID'];
            print "<br />";
}
}

function display_stuff()
{
echo $this->Car_ID;
echo $this->Car_Make;
echo $this->Car_Model;
echo $this->Car_Vin;
echo $this->Car_Color;
echo $this->Car_Mileage;
}

}

$new_entry = new car($Input_Car_ID, $Input_Car_Make, $Input_Car_Model, $Input_Car_Vin, $Input_Car_Color, $Input_Car_Mileage);

if ($add_status == 'checked'){
$new_entry->add_vehicle();
}

if ($drop_status == 'checked'){
$new_entry->drop_vehicle();
}

if ($display_status == 'checked'){
$new_entry->display_vehicle();
}

print "<br />";

print "input = ";
$new_entry->display_stuff();

print "<br />";

print "$query";
print "=";
print $query;

print "<br />";

print "$add_status";
print "=";
print $add_status;

/*
$Car_ID, $Car_Make, $Car_Model, $Car_Vin, $Car_Color, $Car_Mileage

print $Input_Car_ID;
print $Input_Car_Make;
print $Input_Car_Model;
print $Input_Car_Vin;
print $Input_Car_Color;
print $Input_Car_Mileage;

print "<br />";
*/

?>

My second part of this is wondering how to construct my display query to run right. I'd like to be able to run it on any possible input from the text box. I basically want to do something like (WHERE LIKE '%') where there isn't an input from the htm form. My thought was to build the query on a series of concatenations through a function, but that seems like a lot of work. I just feel like it's important to give that functionality to the program.

Thanks for looking, and hopefully I don't confuse you readers that much :3 Also I know that the mysql_query(); is going out of style but just go with it for the sake of my sanity

Form Error Checking Issue

Similar Tutorials

View Content

The below is flagging errors #3 and #9. Error #3 is being thrown even though the emails match.

Code: [Select]
<?php
session_start();
$_SESSION['submitted']="yes";
$error=$_GET['error'];
$date_rma="5/10/2011";
$content='
<div class="content_text">
<div class="content_header">Request RMA Number</div>
<p>Enter the information you used on PayPal, that you completed your order with. The information must match, or a RMA Number will not
be issued.</p>
<form action="./rma_process.php" method="post">
<p><label>Name:</label> <input type="text" name="name" size="30"
value="'.(isset($_SESSION['name']) ? $_SESSION['name'] : '').'" />';
if($error[0]==1){ $content.=' <span class="red bold">This field is required.</span>'; }
$content.='</p>
<p><label>E-Mail Address:</label> <input type="email" name="email" size="35"
value="'.(isset($_SESSION['email']) ? $_SESSION['email'] : '').'" />';
if($error[1]==1){ $content.=' <span class="red bold">This field is required.</span>'; }
$content.='</p>
<p><label>Confirm E-Mail Address:</label> <input type="email" name="confirm_email" size="35"
value="'.(isset($_SESSION['confirm_email']) ? $_SESSION['confirm_email'] : '').'" />';
if($error[2]==1){ $content.=' <span class="red bold">This field is required.</span>'; }
if($error[3]==1){ $content.=' <span class="red bold">E-Mail addresses do not match.</span>'; }
$content.='</p>
<p><label>Phone Number:</label> <input type="text" name="phone" size="15"
value="'.(isset($_SESSION['phone']) ? $_SESSION['phone'] : '').'" />
Ext. <input type="text" name="ext" size="4"
value="'.(isset($_SESSION['ext']) ? $_SESSION['ext'] : '').'" />';
if($error[4]==1){
$content.=' <span class="red bold">A properly formatted phone number is required.</span>'; }
$content.='</p>
<p><label>Date of Purchase (MM/DD/YYYY):</label><input type="text" name="month" size="2" maxlength="2"
value="'.(isset($_SESSION['month']) ? $_SESSION['month'] : '').'" />
<input type="text" name="day" size="2" maxlength="2"
value="'.(isset($_SESSION['day']) ? $_SESSION['day'] : '').'" />
<input type="text" name="year" size="5" maxlength="4"
value="'.(isset($_SESSION['year']) ? $_SESSION['year'] : '').'" />';
if($error[5]==1 || $error[6]==1 || $error[7]==1){
$content.=' <span class="red bold">A properly formatted date is required.</span>'; }
$content.='</p><p><label>List the Products you wish to return. Sperate with a comma. <br />Use either the whole product name, or the GHP# Product Code:</label>';
if($error[8]==1){ $content.=' <span class="red bold">This field is required.</span>'; }
$content.='<textarea name="products_returning" rows="10" cols="60">
'.(isset($_SESSION['products_returning']) ? $_SESSION['products_returning'] : '').'';
$content.='
</textarea>
<input type="hidden" name="submitted" value="yes" />
</p>
<p><input type="submit" value="Submit" name="Submit" /></p>
</form>
</div>
';
?>

Code: [Select]
<?php
session_start();
$name = $_POST['name'];
$_SESSION['name']=$name;
if($name==""){
$error0=1;
}
else{
$error0=0;
}

$email = $_POST['email'];
$_SESSION['email']=$email;
if($email==""){
$error1=1;
}
else{
$error1=0;
}

$confirm_email = $_POST['confirm_email'];
$_SESSION['confirm_email']=$confirm_email;
if($confirm_email==""){
$error2=1;
}
else{
$error2=0;
}

if($email!=$confirm_email){
$error3=1;
}
else{
$error3=0;
}

$phone = $_POST['phone'];
$_SESSION['phone']=$phone;
if($phone==""){
$error4=1;
}
else{
$error4=0;
}

$ext = $_POST['ext'];
$_SESSION['ext']=$ext;

$phone = $phone.' Ext.'.$ext;

$month = $_POST['month'];
$_SESSION['month']=$month;
if($month=="" || !is_numeric($month)){
$error5=1;
}
else{
$error5=0;
}

$day = $_POST['day'];
$_SESSION['day']=$day;
if($day=="" || !is_numeric($day)){
$error6=1;
}
else{
$error6=0;
}

$year = $_POST['year'];
$_SESSION['year']=$year;
if($year=="" || !is_numeric($year)){
$error7=1;
}
else{
$error7=0;
}

$date="".$month."/".$day."/".$year."";

$products_returning = $_POST['products_returning'];
$_SESSION['products_returning']=$products_returning;
if($products_returning==""){
$error8=1;
}
else{
$error8=0;
}

if($_SESSION['submitted']=="yes"){
$error9=0;
}
else{
$error9=1;
}

$error="".$error0."".$error1."".$error2."".$error3."".$error4."".$error5."".$error6."".$error7."".$error8."".$error9."";

if($error!=="0000000000"){
header("Location: ./index.php?returns=rma&error=".$error0."".$error1."".$error2."".$error3."".$error4."".$error5."".$error6."".$error7."".$error8."".$error9."");
}
else{
header("Location: ./index.php?returns=submitted");
}
?>

Another Small Issue - Select Error

Similar Tutorials

View Content

Hi:

I have another small issue like the one I just posted about.

I am trying to get the full state name based upon the state abbreviation.

Like this:
Code: [Select]
<?php

$query=mysql_query("SELECT full_state FROM zip_codes WHERE abbr_state = abbr_state") or die("Could not get data from db: ".mysql_error());

$full_state=$result['full_state'];

?>

...

State Name: <input type="text" name="full_state" value="<?php echo $full_state; ?>" /><br />
[CODE]

No errors, but also no "full_state" appears.

(It is pulling in the correct "abbr_state")

What am I missing here?

Includes Issue / Fatal Error Or Not Working

Similar Tutorials

View Content

Hello,

I'm having an issue that I just can't seem to figure out. I have two include files - one that contains a function to return credentials for accessing the database and the other that generates/sends email. The issue that I'm having is that if I can change all the include_once to include, I get a fatal error that the function can't be redeclared. When I leave them as include_once, the first time the database credentials are needed, it works but subsequent calls to the function later in the code fail.

I feel like I'm missing something very simple but just can't figure it out for the life of me. Thank you SO much for any help - I tried to illustrate my files/code below.

Thank you!
Jason

Filename: access.php
Purpose: Functions to provide database credentials to other functions/code

function getDatabaseDetails()
  {
      //CODE IS HERE
  }

Filename: email.php
Purpose: Functions to retrieve data from DB and send email

function sendEmail()
  {
      include_once '/includes/access.php'

      //CODE IS HERE
  }

Filename: page.php
Purpose: Actual content

include_once '/includes/access.php'
include_once '/includes/email.php'

//CODE IS HERE