shoutbox

pimp-x

hey u guyz

i gotta problem with programming in php. i need to make a shoutbox, that is secured by password.

can anybody help me do that stuff? i just started php in school.....so i'm not a pro in programming php.

thx a lot

greetz

pimp-x

vaaaska

See the other thread on this same subject.

If you guys are in school you know well enough that you need to kick out some code before you're going to get very far in here.

pimp-x

<html>
<titel></titel>
<head>Shoutbox</head>
<body>

<?
include('text.php');
?>

<p>Message:<br>
<textarea rows="7" name="message"cols="20"></textarea></p>

<p>other entries:</p>
<?
$gb='sb.txt';
require($gb);

</body>
</html>

thats the php thing......but we have to make it secured by password....and i don't know,. what to do!

vaaaska

By security you mean a password right? Or do you mean other things (like validation for instance).

What's in the text.php file...that's where the security is going to happen.

pimp-x

<?php
if(!isset($_POST[send]))
{

$datei="sb.txt";
$gdatei=fopen($datei, "r+") or exit ('file could not be opened');

$inhalt=fread($gdatei, filesize($datei));
rewind($gdatei);

fwrite($gdatei, "<hr>Name: ");
fwrite($gdatei, "<a href=\"mailto:$POST[mail]\">$POST[name]</a><br>");
fwrite($gdatei, "Homepage: <a href=\$POST[url]\">$POST[url]</a><br>");
fwrite($gdatei, "Message: $_POST[message]");
fwrite($gdatei, "\n\n");
fwrite($gdatei, $text);

fclose($gdatei);

}
?>

that's the text.php...

yeah i mean a password

vaaaska

Well, overall, I'm not completely sure of the plan, but this is my idea...

I think you need to put some kind of check at $_POST['send']. This would seem logical. Additionally, if a person does not have the correct password you'll need to offer them a default page (or should)...

It's possible that the solution could be something along the lines of:

if(isset($_POST[send]) && ($_POST['text'] == 'password'))  {

// show results

} else {

// incorrect password

}

But this is very lazy security. I would have guessed you were interfacing with a database. Or doing some md5 encryption...or creating a session/cookie at the same time...

Perhaps this post will simply get you started down the right path. Good luck...