help with PEAR, login script

thejrod03

I have been using the PHP HACKS book to try to build a login script for a website I am building but I seem to be doing something wrong, when I enter the login and password information on the index page then click login I get a blank page. I am not sure I installed the pear module correctly or have it declared in my script? Please help

here is the code for the index.php, which I do not think has any errors

<html>
<head><title>Login</title></head>
<body>
<?php
if  ( $_GET['bad'] == 1 ) { ?>
<font color="red">Bad login or password, please try again<br/></font>
<?php } ?>
<form action="http://www.onedispatch.com/test/login.php" method="post">
<table width="300" border="0" cellspacing="0" cellpadding="2">
<tr><td>User name:</td><td><input type="text" name="user" /></td></tr>
<tr><td>Password:</td><td><input type="password" name="password" /></td></tr>
<tr><td colspan="2"><center><input type="submit" value="login" /></center></td></tr>
</table>
</form>
</body>
</html>

Here is the code for the script handler where I need the help:

<?php
require_once( "http://www.onedispatch.com/mylibs/DB-1.7.6/DB.php" );
$dsn = 'mysql://username:password@http://myhost';
$db =& jarodd_testDB::Connect( $dsn, array() );
if (PEAR::isError($db)) {die($db->getMessage()); }

$res = $db->query( "SELECT id FROM users WHERE name=? AND password=MD5(?)",
            array( $_POST['user'], $_POST['password'] ) );

$row = array( null );
if ( $res != null )
         $res->fetchInto( $row );

if ( $row[0] != null )
{

 session_start();
 $_SESSION['user'] = $row[0];
 header( "Location: http://www.onedispatch.com/test/welcome.php" );
}
else
{
     header( "Location: http://www.onedispatch.com/test/index.php?bad=1" );
}
?>

Thanks in advance!

bretticus

Ouch....how can I stress this more...NEVER EVER EVER include executable code from an outside URL no matter how much you trust it! However, this looks to be your own server (perhaps the same host this php script runs on.) Either way, there is no need to do this. Looks like you are running windows and IIS. That is fine (I guess). What I woudl do for now is checkout this article about installing PHP5 on IIS. In particular the part on setting up PEAR on your server. If you do it right Your include statement can be (and should be) simply:

require_once('DB.php');

thejrod03

Ok that all makes sense except that I am not running a server from my local machine, rather I am using a hosting service, what would I have to do to make this operate on this service?

bretticus

http://www.onedispatch.com/ is your site hosted with a hosting service?

If so, they may have PEAR libraries for you to use already.

Try the require statement as I posted earlier. Then do a

<?
print_r(get_defined_classes());
?>

DB should be one of your results. If not, get with your hosting provider for support on pear, or just use:

<?
require("mylibs/DB-1.7.6/DB.php");
?>

from your root folder.

bretticus

BTW, unless you made your own class called: jarodd_testDB you may want to use

$db =& DB::Connect( $dsn, array() );

instead as DB is apparently the name of the PEAR class.

thejrod03

I chatted with support from the hosting service and they said the path for pear was "/usr/bin/pear" so I put that in the require() statement and still nothing happens, sorry if this is repetitive...

bretticus

I chatted with support from the hosting service and they said the path for pear was "/usr/bin/pear" so I put that in the require() statement and still nothing happens, sorry if this is repetitive...

They did you wrong...that's the path to the pear executable, not the pear library.

thejrod03

ok so as soon as I get a response from them about the location of the pear library I put that in the require statement?

thejrod03

alright heres the skinny, they say that PEAR can be installed locally and to refer to the web.. any suggestions?

bretticus

right, they'll say, the PEAR repositories (or libraries. AKA the folder path) are {/path/to/pearlib}. Then you will just preprend that folder path before DB.php. In fact the PEAR repositories path may already be in your environment path. Did you ever try just plain 'ole require_once('DB.php');?

Also, I suggest you read up on include/require

bretticus

thejrod03 wrote:
alright heres the skinny, they say that PEAR can be installed locally and to refer to the web.. any suggestions?

so they are saying they have the pear executable installed but not the repositories? Strange! The DB class is a pretty common PEAR class. I could see if you needed some whacky PEAR class, but DB???

Well, in that case, stick to this guy...

<?
require("mylibs/DB-1.7.6/DB.php");
?>

thejrod03

yup, ive tried all that an I do not feel comfortable installing pear into my account so I am gonna throw my computer out the window and fire my hosting company

thejrod03

so I asked the tech people what the path to the PEAR library was and this is what they gave me

.:/usr/local/lib/php:/usr/local/lib/php/PEAR:/usr/local/share/pear

Maybe its just me, but I think something got lost in translation(hooray outsourcing)

bretticus

thejrod03 wrote:
so I asked the tech people what the path to the PEAR library was and this is what they gave me

.:/usr/local/lib/php:/usr/local/lib/php/PEAR:/usr/local/share/pear

Maybe its just me, but I think something got lost in translation(hooray outsourcing)

They certainly are assuming you are more knowledgeable about PHP (however, it's obvious that they aren't.) What they are giving you is the include path from their php.ini file. Actually, :/usr/local/lib/php/PEAR:/usr/local/share/pear is promising because it means that PEAR repositories are in your path already. this means that

require_once('DB.php');

shoudl be sufficient so long as they have installed DB (which may come by default.) Try it before turning in the towel. The worst that can happen, is you get an error saying

Failed opening 'DB.php' for inclusion

yup, ive tried all that an I do not feel comfortable installing pear into my account so I am gonna throw my computer out the window and fire my hosting company

Like it or not, it's already installed. FYI the program pear (/usr/bin/pear) is solely for automatically downloading and installing PEAR classes in your repository. In order words, you don't need to ever use the executable file, you just need access to the files (PEAR classes) it installs. The PEAR classes are just snippets of code just like any that you would write on your own. DB.php is one of those and the one you need to make the code work you have posted. You DO NOT need DB.php to connect to a database etc. Read the manual for more information.