function logout() { global $todoUrl, $user; // delete cookies setcookie('todotxt-user', '', time() - 3600); setcookie('todotxt-pass', '', time() - 3600); session_unset(); displayform(0); exit; }
function processForm() { if (!empty($_POST['nombre']) && !empty($_POST['apellidos'])) { displayGeneroForm($_POST['nombre'], $_POST['apellidos']); } else { $message = ""; $message .= empty($_POST['nombre']) ? "El nombre no ha sido introducido correctamente<br>" : ""; $message .= empty($_POST['apellidos']) ? "El apellido no ha sido introducido correctamente<br>" : ""; displayform($message); } }
function displayFormElements($message) { $elementos = $_POST['elementos']; if (is_array($elementos) && checkEmptyForm($elementos)) { displayform(""); $suma = 0; echo 'El vector tiene ' . count($elementos) . ' elementos<br>'; for ($i = 0; $i < count($elementos); $i++) { echo "{$i} = {$elementos[$i]}" . '<br>'; $suma += $elementos[$i]; } echo "La suma es: {$suma}"; } else { displayForm("Error!! No todos los campos del array son correctos!"); displayElements(count($elementos)); } }
} </style> </head> <body> <pre> <?php //print_r($_GET) ?> </pre> <?php if (isset($_GET['submitted'])) { $continent = $_GET['continents']; //handleform($continent); displayContinentInfo($continent); } displayform("continents"); ?> <?php //Handle form creates query, retrieves values function handleform($continent) { $dbc = connectToDB(); $query = "SELECT SUM( InternetUsers ) AS users, SUM( InternetHosts ) AS \nhosts , AVG( MedianAge ) AS age\nFROM countries where Continent='{$continent}' \nGROUP BY Continent"; $result = performQuery($dbc, $query); $row = mysqli_fetch_array($result, MYSQLI_ASSOC); $users = $row['users']; $hosts = $row['hosts']; $age = $row['age']; $hostperuser = $users / $hosts; //echo "<pre>"; print_r($row); echo "</pre>";
</body> </html> HTML; exit; } session_start(); if (!isset($_SESSION['authenticated'])) { if (isset($_COOKIE['todotxt-user']) && isset($_COOKIE['todotxt-pass'])) { if ($_COOKIE['todotxt-user'] == $user && $_COOKIE['todotxt-pass'] == md5($password)) { $_SESSION['authenticated'] = 1; header("Location:" . $_SERVER['PHP_SELF']); } else { displayform(1); } } elseif (isset($_POST['loginbutton'])) { if ($_POST['input_user'] == $user && $_POST['input_password'] == $password) { if (isset($_POST['rememberme'])) { /* set cookie to last 1 month */ $expire = time() + 60 * 60 * 24 * 30; setcookie('todotxt-user', $_POST['input_user'], $expire); setcookie('todotxt-pass', md5($_POST['input_password']), $expire); } $_SESSION['authenticated'] = 1; header("Location:" . $todoUrl); } else { displayform(1); } } else { displayform(0); } }
<!DOCTYPE html> <head> <html lang="en"> <meta charset="UTF-8"> <title>Home Page</title> <link rel="stylesheet" href="css/styling.css" /> </head> <body> <?php displayform(); ?> <?php //Displays initial homepage with information function displayform() { ?> <center><h1>Welcome to Movement</h1> <fieldset> Movement is a club for dance enthusiasts of all levels and styles.<br/><br/> Attend classes in ballet, jazz, tap, hiphop, lyrical, point, salsa, merengue and more! Join us on trips to see the Boston Ballet Company at the Opera House.<br/><br/> Celebrate movement through dance with us and let's get jiggy with it! </fieldset><br/> <img src="img/dance.jpg" alt="Dancer" height=500 width=400 /><br /> <br/> <!-- Join Button -->
<meta charset="UTF-8" /> <title>MySQL and PHP </title> <style type = "text/css"> body {font-family: Verdana, sans-serif;} </style> </head> <body> <pre><?php print_r($_GET); ?> </pre> <?php if (isset($_GET['formsubmitted'])) { handleform("studentmenu"); } displayform("studentmenu"); ?> </body> </html> <?php function handleform($id) { $dbc = connect_to_db("jed"); $query = "select lastname, firstname, major from student where ID='{$id}'"; $result = perform_query($dbc, $query); $row = mysqli_fetch_array($result, MYSQLI_ASSOC); print_r($row); $firstname = $row['firstname']; $lastname = $row['lastname']; $major = $row['major'];
echo findkelvin($xml); echo "<br/>"; echo highestbp($xml); echo "<br/>"; ?> </fieldset> <?php if (isset($_GET['formsubmitted'])) { // I only handle the form if the user submitted it $chosenatom = $_GET['atommenu']; handleform($xml, $atomicnumber, $atomicweight); } else { $chosenatom = ""; } displayform($xml); ?> </body> </html> <?php function findgasses($xml) { $GAS = $xml->xpath('ATOM[@STATE="GAS"]'); $str = ""; foreach ($GAS as $g) { if ($str == "") { $str = $g->NAME; } else {
$getHash->bind_result($hash); $getHash->fetch(); $getHash->close(); //PLEASE NOTE: the database stored string includes algo, random salt, and hash if (password_verify($_POST['password'], $hash)) { success($mysqli, $_POST['username'], $userTable); } else { displayform("Incorect Password"); } } else { if ($_POST['request'] == 'signup') { if ($userExists) { displayform("That user name is already taken"); } //do we want min pass length, if used uncommnet global variable up above /* if(strlen($_POST['password']) < $minPassLength) { echo "Password must be at least $minPassLength long"; exit(); }*/ //PLEASE NOTE: the returned string includes algo, random salt, and hash $hashp = password_hash($_POST['password'], PASSWORD_DEFAULT); //add user to database $addUser = $mysqli->prepare("INSERT INTO \n {$userTable} ( username, password) \n VALUES (?,?)"); $addUser->bind_param("ss", $_POST['username'], $hashp); if (!$addUser->execute()) { displayform("We cannot perform that action right now"); } $addUser->close(); success($mysqli, $_POST['username'], $userTable); } }
<div class='row'> <div class='col-md-3'></div> <div class='col-md-6'> <h3></h3> <form method="post" action='update.php'> <?php include_once 'dbconfig.php'; //get the name $name; if ($_SERVER["REQUEST_METHOD"] == "GET") { $x = $_GET['id']; //this name is used to display filled form in first part and // to update the required row in the second part. displayform($x); } if ($_SERVER["REQUEST_METHOD"] == "POST") { $productname = $_POST["productname"]; $productcategory = $_POST["productcategory"]; $productprice = $_POST["productprice"]; $hiddenname = $_POST["hiddenname"]; updateproduct($hiddenname, $productname, $productcategory, $productprice); } function updateproduct($hiddenname, $productname, $productcategory, $productprice) { //$name=$GLOBALS['name']; $sql = "UPDATE products SET product_name='{$productname}',product_category='{$productcategory}', product_price='{$productprice}' WHERE product_id='{$hiddenname}'"; if ($GLOBALS['con']->query($sql) === TRUE) { echo "Record updated successfully"; header('Location: index.php');