[RESOLVED] Help with Uploading and Data

Dlex

Help,
im trying to add Product information into a database along with uploading a picture to a defined folder on my werbserver. Now my picture gets uploaded no problem but my info doesnt get imported into the database.

heres the code:

<?php

$my_max_file_size     = "1024000";     # in bytes
$image_max_width    = "600";     # in pixels
$image_max_height    = "600";    # in pixels

?> 
<?php

$the_path        = "products/";

?> 
<?php

$registered_types = array(
    "application/x-gzip-compressed"     => ".tar.gz, .tgz",
    "application/x-zip-compressed"         => ".zip",
    "application/x-tar"            => ".tar",
    "text/plain"                => ".html, .php, .txt, .inc (etc)",
    "image/bmp"                 => ".bmp, .ico",
    "image/gif"                 => ".gif",
    "image/pjpeg"                => ".jpg, .jpeg",
    "image/jpeg"                => ".jpg, .jpeg",
    "application/x-shockwave-flash"     => ".swf",
    "application/msword"            => ".doc",
    "application/vnd.ms-excel"        => ".xls",
    "application/octet-stream"        => ".exe, .fla (etc)"
); # these are only a few examples, you can add as many as you like

?>
<?php

$allowed_types = array("image/bmp","image/gif","image/pjpeg","image/jpeg");

?>
<?php

function form($error=false) {

global $PHP_SELF,$my_max_file_size;

if ($error) print $error . "<br><br>";

print "\n<form ENCTYPE=\"multipart/form-data\"  action=\"" . $PHP_SELF . "\" method=\"post\">";
print "\n<INPUT TYPE=\"hidden\" name=\"MAX_FILE_SIZE\" value=\"" . $my_max_file_size . "\">";
print "\n<INPUT TYPE=\"hidden\" name=\"task\" value=\"upload\">";

print "\nProduct ID: <input name=\"id\" type=\"text\"><br>";
print "\nProduct name: <input name=\"productname\" type=\"text\"><br>";
print "\nCategory: <input name=\"category\" type=\"text\"><br>";
print "\nItem Colors: <input name=\"itemcolor\" type=\"text\"><br>";
print "\nSetup Charges: <input name=\"setup\" type=\"text\"><br>";
print "\nPrint Colors:<input name=\"printcolor\" type=\"text\"><br>";
print "\nPrint Size: <input name=\"printsize\" type=\"text\"><br>";
print "\nVendor Name<input name=\"vendorname\" type=\"text\"><br>";
print "\nVendor Prod. ID.<input name=\"venid\" type=\"text\"><br>";
Print "\nPlease upload picture for product Description<br>";
    print "\n<BR>NOTE: Max file size is " . ($my_max_file_size / 1024) . "KB";
    print "\n<br><INPUT NAME=\"the_file\" TYPE=\"file\" SIZE=\"35\"><br>";
    print "\n<input type=\"submit\" Value=\"Upload\">";
    print "\n</form>";

} # END form

?>

<?php

function validate_upload($the_file) {

global $my_max_file_size, $image_max_width, $image_max_height,$allowed_types,$the_file_type,$registered_types;

$start_error = "\n<b>Error:</b>\n<ul>";

if ($the_file == "none") { # do we even have a file?

    $error .= "\n<li>You did not upload anything!</li>";

} else { # check if we are allowed to upload this file_type

    if (!in_array($the_file_type,$allowed_types)) {
        $error .= "\n<li>The file that you uploaded was of a ".
            "type that is not allowed, you are only
            allowed to upload files of the type:\n<ul>";
        while ($type = current($allowed_types)) {
            $error .= "\n<li>" . $registered_types[$type] . " (" . $type . ")</li>";
            next($allowed_types);
        }
        $error .= "\n</ul>";
    }

    if (ereg("image",$the_file_type) && (in_array($the_file_type,$allowed_types))) {

        $size = GetImageSize($the_file);
        list($foo,$width,$bar,$height) = explode("\"",$size[3]);

        if ($width > $image_max_width) {
            $error .= "\n<li>Your image should be no wider than " . 
                $image_max_width . " Pixels</li>";
        }

        if ($height > $image_max_height) {    
            $error .= "\n<li>Your image should be no higher than " . 
                $image_max_height . " Pixels</li>";
        }

    }

    if ($error) {
        $error = $start_error . $error . "\n</ul>";
        return $error;
    } else {
        return false;
    }
}
} # END validate_upload

?>

<?php

function list_files() {

global $the_path;

$handle = dir($the_path);
print "\n<b>Uploaded files:</b><br>";
while ($file = $handle->read()) {
    if (($file != ".") && ($file != "..")) {
        print "\n" . $file . "<br>";
       }
}
print "<hr>";
}

?>
<?php

function upload($the_file) {

global $the_path,$the_file_name;

require('dbconnect.php');

$sql = "INSERT INTO products (id,productname,category,itemcolor,setup,printcolor,printsize,vendorname,venid) VALUES ('$id','$productname','$category','$itemcolor','$setup','$printcolor','$printsize','$vendorname','$venid')";

  $error = validate_upload($the_file);
    if ($error) {
        form($error);
    } else { # cool, we can continue
        if (!@copy($the_file, $the_path . "/" . $the_file_name)) {
            form("\n<b>Something barfed, check the path to and ".
            "the permissions for the upload directory</b>");
        } else {
            print "Sucessfully uploaded $the_file_name";
            Print "<hr>";
            print "Successfully Added Product $id to Database";
            Print "<hr>";
            form();
        }
    }
} # END upload

?>
<?php

print "<html>\n<head>\n<title>Upload example</title>\n</head>\n<body>";

switch($task) {
    case 'upload':
        upload($the_file);
    break;
    default:
        form();
}

print "\n</body>\n</html>";

?>

also how can i make it so the path to the uploaded picture gets saved into the same place as my other data.

dagon

your missing a

mysql_query($sql)or die(mysql_error());

Dlex

WOW am i dumb i knew something was missing but couldnt figure it out.

only problem now is it inserta a new row in my database but no information in it.

dagon

I do not see where any of these are actually defined

'$id','$productname','$category','$itemcolor', '$setup','$printcolor','$printsize','$vendorname','$venid'

Dlex

They are user inputted from the form in that code above. i named them correctly

Dlex

Actually i think i figured that out i replaced the $id with '$_POST[id]' and it worked. But would anyone now know how to make the image path get saved to the database column

dagon

should be

$_POST['id']

etc.

dagon

isn't that your $the_path var?

Dlex

the_path is where it uploads to what i want is for i guess the filename to be placed into my db column

dagon

so add $the_file_name to the db.

Dlex

ALmost there, i cant seem to get it to post the path inthe data base

Here is the new code:

<?php

$my_max_file_size     = "10240000";     # in bytes
$image_max_width    = "600";     # in pixels
$image_max_height    = "600";    # in pixels

?> 
<?php

$the_path        = "products/";

?> 
<?php

$registered_types = array(
    "application/x-gzip-compressed"     => ".tar.gz, .tgz",
    "application/x-zip-compressed"         => ".zip",
    "application/x-tar"            => ".tar",
    "text/plain"                => ".html, .php, .txt, .inc (etc)",
    "image/bmp"                 => ".bmp, .ico",
    "image/gif"                 => ".gif",
    "image/pjpeg"                => ".jpg, .jpeg",
    "image/jpeg"                => ".jpg, .jpeg",
    "application/x-shockwave-flash"     => ".swf",
    "application/msword"            => ".doc",
    "application/vnd.ms-excel"        => ".xls",
    "application/octet-stream"        => ".exe, .fla (etc)"
); # these are only a few examples, you can add as many as you like

?>
<?php

$allowed_types = array("image/bmp","image/gif","image/pjpeg","image/jpeg");

?>
<?php

function form($error=false) {

global $PHP_SELF,$my_max_file_size;

if ($error) print $error . "<br><br>";

print "\n<form ENCTYPE=\"multipart/form-data\"  action=\"" . $PHP_SELF . "\" method=\"post\">";
print "\n<INPUT TYPE=\"hidden\" name=\"MAX_FILE_SIZE\" value=\"" . $my_max_file_size . "\">";
print "\n<INPUT TYPE=\"hidden\" name=\"task\" value=\"upload\">";

print "\nProduct ID: <input name=\"id\" type=\"text\"><br>";
print "\nProduct name: <input name=\"productname\" type=\"text\"><br>";
print "\nCategory: <input name=\"category\" type=\"text\"><br>";
print "\nItem Colors: <input name=\"itemcolor\" type=\"text\"><br>";
print "\nSetup Charges: <input name=\"setup\" type=\"text\"><br>";
print "\nPrint Colors:<input name=\"printcolor\" type=\"text\"><br>";
print "\nPrint Size: <input name=\"printsize\" type=\"text\"><br>";
print "\nVendor Name<input name=\"vendorname\" type=\"text\"><br>";
print "\nVendor Prod. ID.<input name=\"venid\" type=\"text\"><br>";
Print "\nPlease upload picture for product Description<br>";
    print "\n<BR>NOTE: Max file size is " . ($my_max_file_size / 1024) . "KB";
    print "\n<br><INPUT NAME=\"the_file\" TYPE=\"file\" SIZE=\"35\"><br>";
    print "\n<input type=\"submit\" Value=\"Upload\">";
    print "\n</form>";

} # END form

?>

<?php

function validate_upload($the_file) {

global $my_max_file_size, $image_max_width, $image_max_height,$allowed_types,$the_file_type,$registered_types;

$start_error = "\n<b>Error:</b>\n<ul>";

if ($the_file == "none") { # do we even have a file?

    $error .= "\n<li>You did not upload anything!</li>";

} else { # check if we are allowed to upload this file_type

    if (!in_array($the_file_type,$allowed_types)) {
        $error .= "\n<li>The file that you uploaded was of a ".
            "type that is not allowed, you are only
            allowed to upload files of the type:\n<ul>";
        while ($type = current($allowed_types)) {
            $error .= "\n<li>" . $registered_types[$type] . " (" . $type . ")</li>";
            next($allowed_types);
        }
        $error .= "\n</ul>";
    }

    if (ereg("image",$the_file_type) && (in_array($the_file_type,$allowed_types))) {

        $size = GetImageSize($the_file);
        list($foo,$width,$bar,$height) = explode("\"",$size[3]);

        if ($width > $image_max_width) {
            $error .= "\n<li>Your image should be no wider than " . 
                $image_max_width . " Pixels</li>";
        }

        if ($height > $image_max_height) {    
            $error .= "\n<li>Your image should be no higher than " . 
                $image_max_height . " Pixels</li>";
        }

    }

    if ($error) {
        $error = $start_error . $error . "\n</ul>";
        return $error;
    } else {
        return false;
    }
}
} # END validate_upload

?>

<?php

function list_files() {

global $the_path;

$handle = dir($the_path);
print "\n<b>Uploaded files:</b><br>";
while ($file = $handle->read()) {
    if (($file != ".") && ($file != "..")) {
        print "\n" . $file . "<br>";
       }
}
print "<hr>";
}

?>
<?php

function upload($the_file) {

global $the_path,$the_file_name;

require('dbconnect.php');

$sql = "INSERT INTO products (id,productname,category,itemcolor,setup,printcolor,printsize,vendorname,venid,image) VALUES ('$_POST[id]','$_POST[productname]','$_POST[category]', '$_POST[itemcolor]','$_POST[setup]','$_POST[printcolor]','$_POST[printsize]','$_POST[vendorname]','$_POST[venid]','$_POST[the_file_name]')";

mysql_query($sql)or die(mysql_error());

  $error = validate_upload($the_file);
    if ($error) {
        form($error);
    } else { # cool, we can continue
        if (!@copy($the_file, $the_path . "/" . $the_file_name)) {
            form("\n<b>Something barfed, check the path to and ".
            "the permissions for the upload directory</b>");
        } else {
            print "Sucessfully uploaded $the_file_name";
            Print "<hr>";
            print "Successfully Added Product $id to Database";
            Print "<hr>";
            form();
        }
    }
} # END upload

?>
<?php

print "<html>\n<head>\n<title>Upload example</title>\n</head>\n<body>";

switch($task) {
    case 'upload':
        upload($the_file);
    break;
    default:
        form();
}

print "\n</body>\n</html>";

?>

dagon

$the_file_name is not in the post array.

Dlex

I really dont understand i see $the_file_name everywhere in that code and in my insert query image is the column i want the $the_file_name to post too.

dagon

use $the_file_name not $_POST[the_file_name].

Be very careful with other peoples code if you don't understand it.

Dlex

i thank you guys so much it works now. just to get it to display well ill figure that out