FUDforum
Fast Uncompromising Discussions. FUDforum will get your users talking.

Home » Imported messages » comp.lang.php » php contact form with AES encrypt and sessions for a multipage contact form - Driving me mad what ma i doing wrong
Show: Today's Messages :: Polls :: Message Navigator
Switch to threaded view of this topic Create a new topic Submit Reply
php contact form with AES encrypt and sessions for a multipage contact form - Driving me mad what ma i doing wrong [message #181790] Mon, 03 June 2013 11:12 Go to next message
Jason Demitri is currently offline  Jason Demitri
Messages: 5
Registered: June 2013
Karma: 0
Junior Member
Hi im sort of a part time developer that is learning how to do php and what not . .. . now im trying to create a signup form for my site www.relution.co.uk

im using foundation 4 as a framework which has modal windows built in

now im trying to create a form that appears in one of these popup modals which has 4 pages and ajax image upoad i think it is . . .now from what ive figured out from each page of the form subbmission i need to store the collected data in a session to be recalled with the final php script so this is what ive used on page 2 and 3

page 2 to collect the data from page one on submission or next being hit
<?php
session_start();
// other php code here

$_SESSION['title'] = $_POST['title'];
$_SESSION['fname'] = $_POST['fname'];
$_SESSION['lname'] = $_POST['lname'];
$_SESSION['bday'] = $_POST['bday'];
?>Form goes here


<?php
session_start();
// other php code here

$_SESSION['email'] = $_POST['email'];
$_SESSION['mobphone'] = $_POST['mobphone'];
$_SESSION['hmephone'] = $_POST['hmephone'];
$_SESSION['rdname'] = $_POST['rdname'];
$_SESSION['postcode'] = $_POST['postcode'];
?>image upload on this page

and this is the final php to upload to the temp db for confirm email

<?php ob_start(); ?>
<?php
session_start();

$_SESSION['usrname'] = $_POST['usrname'];
$_SESSION['pswd'] = $_POST['pswd'];


require('config.php');

//table name

$tbl_name=temp_members_db;

//Random Confirm Code

$confirm_code=md5(uniqid(rand()));

//AES Encrypt Salt
if(!define('SALT'))
define('SALT','897sdn9j98u98jk');

//details collected from form
$title=$_SESSION['title'];
$fname=$_SESSION['fname'];
$lname=$_SESSION['lname'];
$bday=$_SESSION['bday'];
$email=$_SESSION['email'];
$emailr=$_SESSION['emailr'];
$mobphone=$_SESSION['mobphone'];
$hmephone=$_SESSION['hmephone'];
$usrname=$_SESSION['usrname'];
$pswd=$_SESSION['pswd'];
$pswd2=$_SESSION['pswd2'];
$rdname=$_SESSION['rdname'];
$postcode=$_SESSION['postcode'];
$pic=$_SESSION['pic'];

//Insert data into database

$sql="INSERT INTO $tbl_name(confirm_code, title, fname, lname, bday, email, mobphone, hmephone, usrname, pswd, rdname, postcode, pic)
VALUES('$confirm_code', '$title', '$fname', '$lname','$bday', AES_ENCRYPT('$email','".SALT."'), '$mobphone', '$hmephone', '$usrname', AES_ENCRYPT('$pswd','".SALT."'), '$rdname', '$pic' AES_ENCRYPT('$postcode','".SALT."'))
";

// if suceesfully inserted data into database, send confirmation link to email
if($result){
echo "Put Successfull";
}

else {
echo "there has been an error";
}
?>
?>

now before i tried this on a multipage form i had all of the last page working replacing the $_SESSION WITH POST including the AES encrypt but now on multipage i cant get it working keeps running to the error notice . . . please please help im no coder im still learning and personally think i've done well to get this far
Re: php contact form with AES encrypt and sessions for a multipage contact form - Driving me mad what ma i doing wrong [message #181791 is a reply to message #181790] Mon, 03 June 2013 11:31 Go to previous messageGo to next message
Jerry Stuckle is currently offline  Jerry Stuckle
Messages: 2598
Registered: September 2010
Karma: 0
Senior Member
On 6/3/2013 7:12 AM, Jason Demitri wrote:
> Hi im sort of a part time developer that is learning how to do php and what not . .. . now im trying to create a signup form for my site www.relution.co.uk
>
> im using foundation 4 as a framework which has modal windows built in
>
> now im trying to create a form that appears in one of these popup modals which has 4 pages and ajax image upoad i think it is . . .now from what ive figured out from each page of the form subbmission i need to store the collected data in a session to be recalled with the final php script so this is what ive used on page 2 and 3
>
> page 2 to collect the data from page one on submission or next being hit
> <?php
> session_start();
> // other php code here
>
> $_SESSION['title'] = $_POST['title'];
> $_SESSION['fname'] = $_POST['fname'];
> $_SESSION['lname'] = $_POST['lname'];
> $_SESSION['bday'] = $_POST['bday'];
> ?>Form goes here
>
>
> <?php
> session_start();
> // other php code here
>
> $_SESSION['email'] = $_POST['email'];
> $_SESSION['mobphone'] = $_POST['mobphone'];
> $_SESSION['hmephone'] = $_POST['hmephone'];
> $_SESSION['rdname'] = $_POST['rdname'];
> $_SESSION['postcode'] = $_POST['postcode'];
> ?>image upload on this page
>
> and this is the final php to upload to the temp db for confirm email
>
> <?php ob_start(); ?>
> <?php
> session_start();
>
> $_SESSION['usrname'] = $_POST['usrname'];
> $_SESSION['pswd'] = $_POST['pswd'];
>
>
> require('config.php');
>
> //table name
>
> $tbl_name=temp_members_db;
>
> //Random Confirm Code
>
> $confirm_code=md5(uniqid(rand()));
>
> //AES Encrypt Salt
> if(!define('SALT'))
> define('SALT','897sdn9j98u98jk');
>
> //details collected from form
> $title=$_SESSION['title'];
> $fname=$_SESSION['fname'];
> $lname=$_SESSION['lname'];
> $bday=$_SESSION['bday'];
> $email=$_SESSION['email'];
> $emailr=$_SESSION['emailr'];
> $mobphone=$_SESSION['mobphone'];
> $hmephone=$_SESSION['hmephone'];
> $usrname=$_SESSION['usrname'];
> $pswd=$_SESSION['pswd'];
> $pswd2=$_SESSION['pswd2'];
> $rdname=$_SESSION['rdname'];
> $postcode=$_SESSION['postcode'];
> $pic=$_SESSION['pic'];
>
> //Insert data into database
>
> $sql="INSERT INTO $tbl_name(confirm_code, title, fname, lname, bday, email, mobphone, hmephone, usrname, pswd, rdname, postcode, pic)
> VALUES('$confirm_code', '$title', '$fname', '$lname','$bday', AES_ENCRYPT('$email','".SALT."'), '$mobphone', '$hmephone', '$usrname', AES_ENCRYPT('$pswd','".SALT."'), '$rdname', '$pic' AES_ENCRYPT('$postcode','".SALT."'))
> ";
>
> // if suceesfully inserted data into database, send confirmation link to email
> if($result){
> echo "Put Successfull";
> }
>
> else {
> echo "there has been an error";
> }
> ?>
> ?>
>
> now before i tried this on a multipage form i had all of the last page working replacing the $_SESSION WITH POST including the AES encrypt but now on multipage i cant get it working keeps running to the error notice . . . please please help im no coder im still learning and personally think i've done well to get this far
>

Where did you actually insert the data into the database? The $sql=...
statement just creates a string.

A couple of other things - when using strings with a database, you MUST
escape each one or used prepared statements. See the doc for the
interface (mysql - which has been deprecated, or mysqli) for more
information.

And finally - why are you using obstart() on your last page? Proper
design of your code makes it unnecessary.

--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
jstucklex(at)attglobal(dot)net
==================
Re: php contact form with AES encrypt and sessions for a multipage contact form - Driving me mad what ma i doing wrong [message #181792 is a reply to message #181790] Mon, 03 June 2013 12:00 Go to previous messageGo to next message
Jeff North is currently offline  Jeff North
Messages: 58
Registered: November 2010
Karma: 0
Member
On Mon, 3 Jun 2013 04:12:43 -0700 (PDT), in comp.lang.php Jason
Demitri <jasonjdemitri(at)gmail(dot)com>
<0e022c39-a8da-4b79-96ad-cbbb67e8e760(at)googlegroups(dot)com> wrote:

> | Hi im sort of a part time developer that is learning how to do php and what not . .. . now im trying to create a signup form for my site www.relution.co.uk
> |
> | im using foundation 4 as a framework which has modal windows built in
> |
> | now im trying to create a form that appears in one of these popup modals which has 4 pages and ajax image upoad i think it is . . .now from what ive figured out from each page of the form subbmission i need to store the collected data in a session to be recalled with the final php script so this is what ive used on page 2 and 3
> |
> | page 2 to collect the data from page one on submission or next being hit
> | <?php
> | session_start();
> | // other php code here
> |
> | $_SESSION['title'] = $_POST['title'];
> | $_SESSION['fname'] = $_POST['fname'];
> | $_SESSION['lname'] = $_POST['lname'];
> | $_SESSION['bday'] = $_POST['bday'];
> | ?>Form goes here
> |
> |
> | <?php
> | session_start();
> | // other php code here
> |
> | $_SESSION['email'] = $_POST['email'];
> | $_SESSION['mobphone'] = $_POST['mobphone'];
> | $_SESSION['hmephone'] = $_POST['hmephone'];
> | $_SESSION['rdname'] = $_POST['rdname'];
> | $_SESSION['postcode'] = $_POST['postcode'];
> | ?>image upload on this page
> |
> | and this is the final php to upload to the temp db for confirm email
> |
> | <?php ob_start(); ?>
> | <?php
> | session_start();
> |
> | $_SESSION['usrname'] = $_POST['usrname'];
> | $_SESSION['pswd'] = $_POST['pswd'];
> |
> |
> | require('config.php');
> |
> | //table name
> |
> | $tbl_name=temp_members_db;
> |
> | //Random Confirm Code
> |
> | $confirm_code=md5(uniqid(rand()));
> |
> | //AES Encrypt Salt
> | if(!define('SALT'))
> | define('SALT','897sdn9j98u98jk');
> |
> | //details collected from form
> | $title=$_SESSION['title'];
> | $fname=$_SESSION['fname'];
> | $lname=$_SESSION['lname'];
> | $bday=$_SESSION['bday'];
> | $email=$_SESSION['email'];
> | $emailr=$_SESSION['emailr'];
> | $mobphone=$_SESSION['mobphone'];
> | $hmephone=$_SESSION['hmephone'];
> | $usrname=$_SESSION['usrname'];
> | $pswd=$_SESSION['pswd'];
> | $pswd2=$_SESSION['pswd2'];
> | $rdname=$_SESSION['rdname'];
> | $postcode=$_SESSION['postcode'];
> | $pic=$_SESSION['pic'];
> |
> | //Insert data into database
> |
> | $sql="INSERT INTO $tbl_name(confirm_code, title, fname, lname, bday, email, mobphone, hmephone, usrname, pswd, rdname, postcode, pic)
> | VALUES('$confirm_code', '$title', '$fname', '$lname','$bday', AES_ENCRYPT('$email','".SALT."'), '$mobphone', '$hmephone', '$usrname', AES_ENCRYPT('$pswd','".SALT."'), '$rdname', '$pic' AES_ENCRYPT('$postcode','".SALT."'))
> | ";

You've only created the sql statement but have not told the database
to write it to the table.

You will need to check which database you are using and write the
necessary code.

> | // if suceesfully inserted data into database, send confirmation link to email
> | if($result){
> | echo "Put Successfull";
> | }
> |
> | else {
> | echo "there has been an error";
> | }
> | ?>
> | ?>
> |
> | now before i tried this on a multipage form i had all of the last page working replacing the $_SESSION WITH POST including the AES encrypt but now on multipage i cant get it working keeps running to the error notice . . . please please help im no coder im still learning and personally think i've done well to get this far
Re: php contact form with AES encrypt and sessions for a multipage contact form - Driving me mad what ma i doing wrong [message #181793 is a reply to message #181790] Mon, 03 June 2013 13:38 Go to previous messageGo to next message
Jason Demitri is currently offline  Jason Demitri
Messages: 5
Registered: June 2013
Karma: 0
Junior Member
on the original script above the sql statement i originally had these as $lname=$_Post['lname']; and with the sql it inserted it into my database without a problem as the last part of the script was on its own. I read up on some tutorials on how to split a form over different modals and it said that i had to declare the collected information from the form in the $_Session the in the last script pull all of these sessions to then insert into the sql. As i said im only a beginner and am starting to think im punching way above my weight but could someone please point out what part of the script im doing wrong . .why its not working and how to correct it . . . i thought that the sql statment on the last part of the script with INSERT INTO and then the values listed was all it took to insert it into the table

On Monday, June 3, 2013 12:12:43 PM UTC+1, Jason Demitri wrote:
> Hi im sort of a part time developer that is learning how to do php and what not . .. . now im trying to create a signup form for my site www.relution.co.uk
>
>
>
> im using foundation 4 as a framework which has modal windows built in
>
>
>
> now im trying to create a form that appears in one of these popup modals which has 4 pages and ajax image upoad i think it is . . .now from what ive figured out from each page of the form subbmission i need to store the collected data in a session to be recalled with the final php script so this is what ive used on page 2 and 3
>
>
>
> page 2 to collect the data from page one on submission or next being hit
>
> <?php
>
> session_start();
>
> // other php code here
>
>
>
> $_SESSION['title'] = $_POST['title'];
>
> $_SESSION['fname'] = $_POST['fname'];
>
> $_SESSION['lname'] = $_POST['lname'];
>
> $_SESSION['bday'] = $_POST['bday'];
>
> ?>Form goes here
>
>
>
>
>
> <?php
>
> session_start();
>
> // other php code here
>
>
>
> $_SESSION['email'] = $_POST['email'];
>
> $_SESSION['mobphone'] = $_POST['mobphone'];
>
> $_SESSION['hmephone'] = $_POST['hmephone'];
>
> $_SESSION['rdname'] = $_POST['rdname'];
>
> $_SESSION['postcode'] = $_POST['postcode'];
>
> ?>image upload on this page
>
>
>
> and this is the final php to upload to the temp db for confirm email
>
>
>
> <?php ob_start(); ?>
>
> <?php
>
> session_start();
>
>
>
> $_SESSION['usrname'] = $_POST['usrname'];
>
> $_SESSION['pswd'] = $_POST['pswd'];
>
>
>
>
>
> require('config.php');
>
>
>
> //table name
>
>
>
> $tbl_name=temp_members_db;
>
>
>
> //Random Confirm Code
>
>
>
> $confirm_code=md5(uniqid(rand()));
>
>
>
> //AES Encrypt Salt
>
> if(!define('SALT'))
>
> define('SALT','897sdn9j98u98jk');
>
>
>
> //details collected from form
>
> $title=$_SESSION['title'];
>
> $fname=$_SESSION['fname'];
>
> $lname=$_SESSION['lname'];
>
> $bday=$_SESSION['bday'];
>
> $email=$_SESSION['email'];
>
> $emailr=$_SESSION['emailr'];
>
> $mobphone=$_SESSION['mobphone'];
>
> $hmephone=$_SESSION['hmephone'];
>
> $usrname=$_SESSION['usrname'];
>
> $pswd=$_SESSION['pswd'];
>
> $pswd2=$_SESSION['pswd2'];
>
> $rdname=$_SESSION['rdname'];
>
> $postcode=$_SESSION['postcode'];
>
> $pic=$_SESSION['pic'];
>
>
>
> //Insert data into database
>
>
>
> $sql="INSERT INTO $tbl_name(confirm_code, title, fname, lname, bday, email, mobphone, hmephone, usrname, pswd, rdname, postcode, pic)
>
> VALUES('$confirm_code', '$title', '$fname', '$lname','$bday', AES_ENCRYPT('$email','".SALT."'), '$mobphone', '$hmephone', '$usrname', AES_ENCRYPT('$pswd','".SALT."'), '$rdname', '$pic' AES_ENCRYPT('$postcode','".SALT."'))
>
> ";
>
>
>
> // if suceesfully inserted data into database, send confirmation link to email
>
> if($result){
>
> echo "Put Successfull";
>
> }
>
>
>
> else {
>
> echo "there has been an error";
>
> }
>
> ?>
>
> ?>
>
>
>
> now before i tried this on a multipage form i had all of the last page working replacing the $_SESSION WITH POST including the AES encrypt but now on multipage i cant get it working keeps running to the error notice . . . please please help im no coder im still learning and personally think i've done well to get this far
Re: php contact form with AES encrypt and sessions for a multipage contact form - Driving me mad what ma i doing wrong [message #181794 is a reply to message #181790] Mon, 03 June 2013 13:41 Go to previous messageGo to next message
Jason Demitri is currently offline  Jason Demitri
Messages: 5
Registered: June 2013
Karma: 0
Junior Member
I believe this is more or less how i had it before i split the form up the . . it would action this script on submit


<?php


require('config.php');

//table name

$tbl_name=temp_members_db;

//Random Confirm Code

$confirm_code=md5(uniqid(rand()));

//AES Encrypt Salt
if(!define('SALT'))
define('SALT','897sdn9j98u98jk');

//details collected from form
$title=$_POST['title'];
$fname=$_POST['fname'];
$lname=$_POST['lname'];
$bday=$_POST['bday'];
$email=$_POST['email'];
$emailr=$_POST['emailr'];
$mobphone=$_POST['mobphone'];
$hmephone=$_POST['hmephone'];
$usrname=$__POST['usrname'];
$pswd=$_POST['pswd'];
$pswd2=$_POST['pswd2'];
$rdname=$_POST['rdname'];
$postcode=$_POST['postcode'];


//Insert data into database

$sql="INSERT INTO $tbl_name(confirm_code, title, fname, lname, bday, email, mobphone, hmephone, usrname, pswd, rdname, postcode,)

VALUES('$confirm_code', '$title', '$fname', '$lname','$bday', AES_ENCRYPT('$email','".SALT."'), '$mobphone', '$hmephone', '$usrname', AES_ENCRYPT('$pswd','".SALT."'), '$rdname', AES_ENCRYPT('$postcode','".SALT."'))
";

// if suceesfully inserted data into database, send confirmation link to email
if($result){
echo "Put Successfull";
}

else {
echo "there has been an error";
}
?>
?>
Re: php contact form with AES encrypt and sessions for a multipage contact form - Driving me mad what ma i doing wrong [message #181795 is a reply to message #181793] Mon, 03 June 2013 13:46 Go to previous messageGo to next message
Thomas 'PointedEars'  is currently offline  Thomas 'PointedEars'
Messages: 701
Registered: October 2010
Karma: 0
Senior Member
Jason Demitri posted:

> [something posing an increased risk for getting eye cancer]

Please put yourself into the position of a complete stranger who is
generally willing to help you, and think about what they might think
when they are _not_ helping you after reading your postings.

<http://www.catb.org/~esr/faqs/smart-questions.html>

--
PointedEars
Re: php contact form with AES encrypt and sessions for a multipage contact form - Driving me mad what ma i doing wrong [message #181796 is a reply to message #181795] Mon, 03 June 2013 14:14 Go to previous messageGo to next message
Jason Demitri is currently offline  Jason Demitri
Messages: 5
Registered: June 2013
Karma: 0
Junior Member
On Monday, June 3, 2013 2:46:34 PM UTC+1, Thomas 'PointedEars' Lahn wrote:
> Jason Demitri posted:
>
>
>
>> [something posing an increased risk for getting eye cancer]
>
>
>
> Please put yourself into the position of a complete stranger who is
>
> generally willing to help you, and think about what they might think
>
> when they are _not_ helping you after reading your postings.
>
>
>
> <http://www.catb.org/~esr/faqs/smart-questions.html>
>
>
>
> --
>
> PointedEars
Re: php contact form with AES encrypt and sessions for a multipage contact form - Driving me mad what ma i doing wrong [message #181797 is a reply to message #181795] Mon, 03 June 2013 14:14 Go to previous messageGo to next message
Jason Demitri is currently offline  Jason Demitri
Messages: 5
Registered: June 2013
Karma: 0
Junior Member
cant see the link and dont understand



On Monday, June 3, 2013 2:46:34 PM UTC+1, Thomas 'PointedEars' Lahn wrote:
> Jason Demitri posted:
>
>
>
>> [something posing an increased risk for getting eye cancer]
>
>
>
> Please put yourself into the position of a complete stranger who is
>
> generally willing to help you, and think about what they might think
>
> when they are _not_ helping you after reading your postings.
>
>
>
> <http://www.catb.org/~esr/faqs/smart-questions.html>
>
>
>
> --
>
> PointedEars
Re: php contact form with AES encrypt and sessions for a multipage contact form - Driving me mad what ma i doing wrong [message #181799 is a reply to message #181794] Mon, 03 June 2013 16:23 Go to previous message
Jerry Stuckle is currently offline  Jerry Stuckle
Messages: 2598
Registered: September 2010
Karma: 0
Senior Member
On 6/3/2013 9:41 AM, Jason Demitri wrote:
> I believe this is more or less how i had it before i split the form up the . . it would action this script on submit
>
>
> <?php
>
>
> require('config.php');
>
> //table name
>
> $tbl_name=temp_members_db;
>
> //Random Confirm Code
>
> $confirm_code=md5(uniqid(rand()));
>
> //AES Encrypt Salt
> if(!define('SALT'))
> define('SALT','897sdn9j98u98jk');
>
> //details collected from form
> $title=$_POST['title'];
> $fname=$_POST['fname'];
> $lname=$_POST['lname'];
> $bday=$_POST['bday'];
> $email=$_POST['email'];
> $emailr=$_POST['emailr'];
> $mobphone=$_POST['mobphone'];
> $hmephone=$_POST['hmephone'];
> $usrname=$__POST['usrname'];
> $pswd=$_POST['pswd'];
> $pswd2=$_POST['pswd2'];
> $rdname=$_POST['rdname'];
> $postcode=$_POST['postcode'];
>
>
> //Insert data into database
>
> $sql="INSERT INTO $tbl_name(confirm_code, title, fname, lname, bday, email, mobphone, hmephone, usrname, pswd, rdname, postcode,)
>
> VALUES('$confirm_code', '$title', '$fname', '$lname','$bday', AES_ENCRYPT('$email','".SALT."'), '$mobphone', '$hmephone', '$usrname', AES_ENCRYPT('$pswd','".SALT."'), '$rdname', AES_ENCRYPT('$postcode','".SALT."'))
> ";
>
> // if suceesfully inserted data into database, send confirmation link to email
> if($result){
> echo "Put Successfull";
> }
>
> else {
> echo "there has been an error";
> }
> ?>
> ?>
>

Did you even READ the responses?


--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
jstucklex(at)attglobal(dot)net
==================
  Switch to threaded view of this topic Create a new topic Submit Reply
Previous Topic: Best Online Shop
Next Topic: PDO Unit Tests
Goto Forum:
  

-=] Back to Top [=-
[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Wed Dec 18 01:55:38 GMT 2024

Total time taken to generate the page: 0.02712 seconds