Time to start on verification

Pwnious

I have coded a sign up form with form processor. Putting the data to a database, also displaying the data. I now want to create a script(s) that will enable me to accept or deny the user. I think that is would have to do with the button I would push. And making the accept button accepting the data by moving the data from the table to another? That seems like a newbish idea, so is there another better way?

Houdini

Well that can be done, but it depends on your criteria for acceptance or rejection which should be a simple comparison with an IF ELSE statement, maybe if you posted what code you currently have and what else it is that is required upon submission would be quite helpful. It would be kind of hard to tell much without what is already going on.

Pwnious

Actually I have no php scripts right now, except for the ones in my previous topic.

Houdini

OK, so I take it that by verification that you mean that you want to be sure that certain or all fields have been filled in. Or do you want to validate the data entered by ensuring that instead of entering Mary had a little lamb in a telephone field or zip code area.

Pwnious

Yes, that and 'admin' acception.

Houdini

Well you could use the database to enter the user as an admin and search that field in a table setup for admins then if they are there thenthey are authorized.

There should be some article for authintication using PHP have you tried googling that? Or do you want to make your own, because if there is already one that is free I would take the freedom of downloading it and altering if necessary for my own site.

Pwnious

With the account activation,I am going to make the reject button delete the user data and email the user about the rejection. I am using that online book you gave me.

Houdini

Maybe I need to look over that book again, it does have quite a bit, and while it is possible to get great information from it it might not necessarily solve you particular problem. Let me think about where I have seen such code already written that might just do what it is that you want.

Pwnious

This is my script so far.

<? 
require("database.php");
$query = mysql_query("SELECT * FROM `form`");
$num_result = mysql_num_rows($query);
if ($num_result > 0){
	$user_list = "
<div align=\"left\">
<font color=\"white\">
<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">

<tr>
<td width=\"104\"><b>UserID:</b></td>
<td width=\"104\"><b>Username:</b></td>
<td width=\"104\"><b>Name:</b></td>
<td width=\"104\"><b>Job:</b></td>
<td width=\"104\"><b>Email:</b></td>
<td width=\"102\"><b>Joined Date:</b></td>
</tr>";
	for ($i=0;$i<$num_result;$i++){
			$phpvar = mysql_fetch_array($query);
			$user_list .= "<tr><td>".$phpvar['userid']."<tr><td>".$phpvar['user']."</td><td>".$phpvar['name']."</td><td>".$phpvar['job']."</td><td>".$phpvar['email']."</td><td>".$phpvar['datejoined']."</td></tr>";
	}
	$user_list .= "</table></font></div>";
	echo $user_list;

}  

?>

Pwnious

Update:

<? 
require("../database.php");
$query = mysql_query("SELECT * FROM `form`");
$num_result = mysql_num_rows($query);
if ($num_result > 0){
	$user_list = "
<div align=\"left\">
<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">

<tr>
<td width=\"104\"><b>UserID:</b></td>
<td width=\"104\"><b>Username:</b></td>
<td width=\"104\"><b>Name:</b></td>
<td width=\"104\"><b>Job:</b></td>
<td width=\"104\"><b>Email:</b></td>
<td width=\"102\"><b>Joined Date:</b></td>
</tr>";
	for ($i=0;$i<$num_result;$i++){
			$phpvar = mysql_fetch_array($query);
			$user_list .= "<tr><td>".$phpvar['userid']."</td><td>".$phpvar['user']."</td><td>".$phpvar['name']."</td><td>".$phpvar['job']."</td><td>".$phpvar['email']."</td><td>".$phpvar['datejoined']."</td></tr>";
	}
	$user_list .= "</table></div>";
	echo $user_list;
echo("<br><br>
<form action='?act=check' method='POST'>
<select name="accept"><OPTION SELECTED> <OPTION>Accept <OPTION>Reject</select>
<input type='Submit' value='Submit!' disabled> 
</form> ");
} 
if($_GET['act'] == "check") { 
$user = SELECT user FROM form WHERE userid = 1;
$INSERT=mysql_query("INSERT INTO `users`(user,pass,name,userid,datejoined,age,city,state,country,email,job) VALUES 
('$user','$pass','$name','','$date','$age','$city','$state','$country','$email','$job')")or die(mysql_error()); 
}   

?>

$user = SELECT user FROM form WHERE userid = 1;

that right? How would I get the form to show options for <insert number> of user data from the previous table?

Pwnious

Another update.

<? 
require("../database.php");
$query = mysql_query("SELECT * FROM `form`");
$num_result = mysql_num_rows($query);
if ($num_result > 0){
	$user_list = "
<div align=\"left\">
<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">

<tr>
<td width=\"104\"><b>UserID:</b></td>
<td width=\"104\"><b>Username:</b></td>
<td width=\"104\"><b>Name:</b></td>
<td width=\"104\"><b>Job:</b></td>
<td width=\"104\"><b>Email:</b></td>
<td width=\"102\"><b>Joined Date:</b></td>
</tr>";
	for ($i=0;$i<$num_result;$i++){
			$phpvar = mysql_fetch_array($query);
			$user_list .= "<tr><td>".$phpvar['userid']."</td><td>".$phpvar['user']."</td><td>".$phpvar['name']."</td><td>".$phpvar['job']."</td><td>".$phpvar['email']."</td><td>".$phpvar['datejoined']."</td></tr>";
	}
	$user_list .= "</table></div>";
	echo $user_list;
echo("
<form action='?act=check' method='POST'>
<input type='radio' name='activate' value='none' checked>None <input type='radio' name='activate' value='accept'>Accept <input type='radio' name='activate'
value='decline' >Reject
<input type='Submit' value='Submit!'> 
</form> ");
} 
if($_GET['act'] == "check") { 
$activate = $_POST['activate'];
if ($activate == "decline") {
mysql_query("DELETE FROM `form` WHERE userid = $usid") or die(mysql_error());
} if ($activate == "none") {
header('Location: http://www.unitedsyndicate.net/admin/wrong.html');
} else {
$user = mysql_query("SELECT user FROM `form` WHERE userid = $usid");
$pass = mysql_query("SELECT pass FROM `form` WHERE userid = $usid");
$name = mysql_query("SELECT name FROM `form` WHERE userid = $usid");
$date = mysql_query("SELECT datejoined FROM `form` WHERE userid = $usid");
$age = mysql_query("SELECT age FROM `form` WHERE userid = $usid");
$city = mysql_query("SELECT city FROM `form` WHERE userid = $usid");
$state = mysql_query("SELECT state FROM `form` WHERE userid = $usid");
$country = mysql_query("SELECT country FROM `form` WHERE userid = $usid");
$email = mysql_query("SELECT email FROM `form` WHERE userid = $usid");
$job = mysql_query("SELECT job FROM `form` WHERE userid = $usid");
$INSERT=mysql_query("INSERT INTO `users`(user,pass,name,userid,datejoined,age,city,state,country,email,job) VALUES 
('$user','$pass','$name','','$date','$age','$city','$state','$country','$email','$job')")or die(mysql_error()); 
}
}   

?>

I am almost there. How would I get $usid to be 1 or/and 2? And when I created a script thats shows the data in users that had been transfered from forms it shows this: Resource id #4

Resource id #4 Resource id #6 Resource id #13 Resource id #12 Resource id #7
Resource id #4 Resource id #6 Resource id #13 Resource id #12 Resource id #7

Also when I click accept and the form process is done, the second set of data is still the same. What I mean is the userid for the 2nd data is 2, and in the form processing the first one is deleted using the userid, I thought the userid = 2 would be updated to userid =1. I hope this helps... userid int(11) NOT NULL auto_increment, auto_increment = 1; And I got TYPE=MyISAM, I got a feeling that it is causing some problems with the data transfer.

Pwnious

I just realise that I am not doing the transactions right, how?

Pwnious

I got the $usid part done, it would be equal to one. But the $userid is constant why? i thought in databases, it would decrease by 1 when the data above it is deleted.

Pwnious

HOw would I include text from textboxes to a table? Like this one.

Houdini

<td><?php echo $_POST['afield']; ?></td>

OK build what you are wanting to do one little part at a time on a notebook kind of like a big outline for a school paper or something like that. Do not worry about the code at this point.

Present a form
Take the form data and process it (different possibilities)
1. Print or show the data to the user
2. Send the results to your email or a file
3. Enter the data into the database
4. Save as session data for use later in other scripts
5. Do all the above
6. Do some of the above[/B]

Now I know you are excited and are trying various things but you are throwing too much code and too many problems all at once, so lets try to solve them one at a time. Right now you are making changes to code and then posting it and without giving some time for other to peruse it you might need to slow down. It will all work out in the end if you take your time, and the final result will be learning and a great sense of accomplishment. Take this from a Grandpa 'there is always tomorrow" if it don't get done now then I will work with it again tomorrow with a fresh frame of mind. Sometimes you just need to take a break and listen to music you like, or possibly make love, have a great meal, pet the dog or cat, watch a movie, and just plain get your mind off the problem.

Pwnious

I got everything I need, done with the help of the online book. It is just the textarea, I am confused about. How would I store it in a database?

Houdini

Well the texteara could hold quite a bit of information and so you would want to place the results of such in a database field that has a "TEXT" type. you would want to probably clean the entry before just storing it like adding slashes for names like O'Reily and strip tags for html etc and after cleaning the data just use the $_POST['name'] as an input into the database.

Pwnious

Dont I have to put it in a string or something, becuse when I did this

 <?
$text = $_POST['text'];
$text2 = $_POST['text'];
my_sql query("(INSERT INTO `tablename`(col1,col2,col3,etc....) VALUES (......,`$text`,`$text2')")

(NOT ACTUAL SCRIPT)
The col# type = TEXT
After running the script, the page displays an error message about syntax + blah blah.

So I looked at the online book, but it had nothing on such matter.

Houdini

You will probably need to use addslashes to enter the data into a test field it is a good practice because apostophes and quoted text can mess up MySQL. You can learn more about that here at addslashes() in the PHP Manual.

It would seem that if you looked closer in the Practical PHP online book under databases that somewhere in there would be a discussion about cleaning your data before inserting it into various fields especially a TEXT field.
perhaps usiing something like

$text1=addslashes($text1);
$text2=addslashes($text2);

then when you want to view it you would use stripslashes()

$text1=stripslashes($text1);
$text2=stripslashes($text2);