How to get hidden field in a form?

chewan

Hi everyone, I hope ya'll fine today.

Sorry to bother you with my silly question, but your answers help me more than you can think. I have these codes: 1.- an html form with hidden field 2.- a php code to treat the form. My $num_rows = mysql_num_rows($result); doesn't work reurn 0 row. I find the reason, but I can't reach the hidden field in the form.

 
<?php
// we must never forget to start the session
session_start();  

if(isset($_SESSION['views']))
    $_SESSION['views'] = $_SESSION['views']+ 1;
else
    $_SESSION['views'] = 1;

echo "views = ". $_SESSION['views']; 
?>
<?php
// we must never forget to start the session
session_start();  

if(isset($_SESSION['views']))
    $_SESSION['views'] = $_SESSION['views']+ 1;
else
    $_SESSION['views'] = 1;

echo "views = ". $_SESSION['views']; 
?>
<?php
// we must never forget to start the session
session_start();  

if(isset($_SESSION['views']))
    $_SESSION['views'] = $_SESSION['views']+ 1;
else
    $_SESSION['views'] = 1;

echo "views = ". $_SESSION['views']; 
 ?>
<html>
<head>
<title>Chewan Web Design - Login Member Space</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>

<body bgcolor="#FFFFFF"><br /><br />
<div align="center"><b><font face="Verdana" size="2" color="#e1e2d4">To Enter the Member Space, You Have To Login By Using A Username And A Password:</font></b><br /><br /> 
<form method="post" action="login.php3">
<input type="hidden" name="id" value="<?php echo $id; ?>" />
  <b><font face="Verdana" size="1">
  	 Your Login      :<br /><input type="text" name="pseudo_membre" id="pseudo_membre"> <br /><br />
     Your Password   :<br /><input type="password" name="passe_membre" id="passe_membre"> <br /><br />
    <input type="submit" name="Submit" value="Login">
    </font></b>
</form>
<font face="Verdana" size="2" color="#e1e2d4"><a href="adduser.html">Not A Member Yet, Register</a></font>
</div>
															<!--
															<form action="mail.php" method="post">
															Your Name: <input type="text" name="name"><br>
															E-mail: <input type="text" name = "email"><br><br>
															Comments<br>
															<textarea name="comments"></textarea><br><br>
															<input type="submit" value="Submit">
															</form>-->
</body>
</html>

<?php
// we must never forget to start the session
session_start();  

if(isset($_SESSION['views']))
    $_SESSION['views'] = $_SESSION['views']+ 1;
else
    $_SESSION['views'] = 1;

echo "views = ". $_SESSION['views']; 



require("conf.php3");
global $pseudo_membre, $passe_membre, $id;
/*-----------------------------------------------------------------*/
/*	PROGRAMME PRINCIPAL			*/
/*-----------------------------------------------------------------*/

function checkOK($field){
  if (eregi("\r",$field) || eregi("\n",$field)){ die("Invalid Input!"); }
}global $id;
$id=$_POST['id'];
//checkOK($id);
$pseudo_membre=$_POST['pseudo_membre'];
checkOK($pseudo_membre);
$passe_membre=$_POST['passe_membre'];
checkOK($passe_membre);
//$comments=$_POST['comments'];
//checkOK($comments);
//$to="wcherubin@gmail.com";
//$message="$name just filled in your comments form. They said:\n$comments\n\nTheir e-mail address was: $email";
//if(isset($to,"Comments From Your Site",$message,"From: $email\n")) {
if ((ARRAY_KEY_EXISTS("pseudo_membre", $_POST)) || (ARRAY_KEY_EXISTS("passe_membre", $_POST))){ 

    // CONNEXION A LA BASE DE DONNEE

	$db_link = mysql_connect($sql_serveur,$sql_user,$sql_passwd);
	if(!$db_link) {
		echo "Connexion impossible à la base de données <b>$sql_bdd</b> sur le serveur <b>$sql_server</b><br>Vérifiez les paramètres du fichier conf.php3"; 
		exit;
		}

	mysql_select_db ($sql_bdd) or die ("I cannot select the database '$sql_bdd' because: " . mysql_error());
	// ON SELECTIONNE L'ENREGISTREMENT CONTENANT LE LOGIN ET
	// MOT DE PASSE SAISIS A LA PAGE INDEX.HTM
	//$sql = 'EXPLAIN SELECT id , pseudo , passe FROM membre where id = \'$id\' ';
	//$sql = "select id,pseudo,passe from membre where pseudo='$pseudo_membre' and passe = '$passe_membre' and id = '$id'";
	$sql = 'SELECT id , pseudo , passe FROM membre where pseudo = \'$pseudo_membre\' and passe = \'$passe_membre\' ';		
	$result = mysql_query($sql) or die('query failed. ' . mysql_error()); 
	echo " ". $pseudo_membre. " ". $passe_membre . $id . " ";
	echo $result = mysql_query($sql);

	$num_rows = mysql_num_rows($result);
		//echo "$num_rows";
	//$requete=mysql_query($sql_bdd,"select pseudo,passe from membre where pseudo=\"$pseudo_membre\" and passe=\"$passe_membre\"",$db_link) or die(mysql_error());
	//$num_rows = mysql_num_rows($result);		
	//echo $num_rows;
	// SI AUCUN ENREGISTREMENT NE CORRESPOND
	if($num_rows == 0){
		     echo "<br> " ."what is it? <br />";
			echo "There is/are " . $num_rows . " row(s)";
		// REDIRECTION VERS LA PAGE ERREUR
		//header("Location:$url_erreur");
		//header('location: toi/erreur.htm');
		//header('location: login.php3');
		}else {
		echo "the login name is: $pseudo_membre, and the password is: $passe_membre" . "\n\n";
		// SI LE LOGIN ET MOT DE PASSE SONT EXACTES	
		// CREATION D'UN IDENTIFIANT ALEATOIRE
		$taille = 20;
		$lettres = "abcdefghijklmnopqrstuvwxyz0123456789";
		srand(time());
		for ($i=0;$i<$taille;$i++)
			{
			$id.=substr($lettres,(rand()%(strlen($lettres))),1);
			}

		// MISE A JOUR DE L'IDENTIFIANT DANS LA TABLE 
		$query = "UPDATE membre 
		          SET id        = '$id'
				  WHERE pseudo = '$pseudo_membre' and passe='$passe_membre'";

	    mysql_query($query) or die('Error, modifying table membre failed : ' . mysql_error());    
		//$requete=mysql_query($sql_bdd,"update membre set id=\"$id\" where pseudo=\"$pseudo_membre\" and passe=\"$passe_membre\"",$db_link) or die(mysql_error());

		// REDIRECTION VERS UNE PAGE PROTEGEE AVEC L'IDENTIFIANT SERVANT DE CLE
		header("Location:zonemembre.php3?id=$id");
		//header("location:$zone_membre");
		}	

	// DECONNEXION MYSQL
	mysql_close($db_link);
	//echo $_POST;
//echo "Thanks for logging in:" . $pseudo_membre;
} else {
echo "There was a problem sending the mail. Please check that you filled in the form correctly.";
echo "There is a problem with the login.";
}
?>

So please help get this resolve.
Thanks in advance!

foyer

when you're viewing the form through your browser did you look at the source code and check to see if your hidden field actually has a value?

chewan

foyer wrote:
when you're viewing the form through your browser did you look at the source code and check to see if your hidden field actually has a value?

Hi,
I didn't have the value. I tried lots of things to get this value, but ..

this is the form:


 <form method="post" action="login.php3">
<input type="hidden" name="id" value="<?php echo $id; ?>" />
  <b><font face="Verdana" size="1">
  	 Your Login      :<br /><input type="text" name="pseudo_membre" id="pseudo_membre"> <br /><br />
     Your Password   :<br /><input type="password" name="passe_membre" id="passe_membre"> <br /><br />
    <input type="submit" name="Submit" value="Login">
    </font></b>
</form>

dagon

the $id is not set when the form is called, and if you need the username to get the id you wont be able to get it before the form is processed.

maxpup979

I do not see where the hidden field $id is ever assigned. Maybe I am just missing something, but if you pass nothing in the hidden field, then when you try to reference, you are not suddenly going to get something. What is supposed to be in the id variable?

chewan

chewan wrote:

Hi everyone, I hope ya'll fine today.

 
<?php
// we must never forget to start the session
session_start();  

if(isset($_SESSION['views']))
    $_SESSION['views'] = $_SESSION['views']+ 1;
else
    $_SESSION['views'] = 1;

echo "views = ". $_SESSION['views']; 
?>
<?php
// we must never forget to start the session
session_start();  

if(isset($_SESSION['views']))
    $_SESSION['views'] = $_SESSION['views']+ 1;
else
    $_SESSION['views'] = 1;

echo "views = ". $_SESSION['views']; 
?>
<?php
// we must never forget to start the session
session_start();  

if(isset($_SESSION['views']))
    $_SESSION['views'] = $_SESSION['views']+ 1;
else
    $_SESSION['views'] = 1;

echo "views = ". $_SESSION['views']; 
 ?>
<html>
<head>
<title>Chewan Web Design - Login Member Space</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>

<body bgcolor="#FFFFFF"><br /><br />
<div align="center"><b><font face="Verdana" size="2" color="#e1e2d4">To Enter the Member Space, You Have To Login By Using A Username And A Password:</font></b><br /><br /> 
<form method="post" action="login.php3">
<input type="hidden" name="id" value="<?php echo $id; ?>" />
  <b><font face="Verdana" size="1">
  	 Your Login      :<br /><input type="text" name="pseudo_membre" id="pseudo_membre"> <br /><br />
     Your Password   :<br /><input type="password" name="passe_membre" id="passe_membre"> <br /><br />
    <input type="submit" name="Submit" value="Login">
    </font></b>
</form>
<font face="Verdana" size="2" color="#e1e2d4"><a href="adduser.html">Not A Member Yet, Register</a></font>
</div>
															<!--
															<form action="mail.php" method="post">
															Your Name: <input type="text" name="name"><br>
															E-mail: <input type="text" name = "email"><br><br>
															Comments<br>
															<textarea name="comments"></textarea><br><br>
															<input type="submit" value="Submit">
															</form>-->
</body>
</html>

<?php
// we must never forget to start the session
session_start();  

if(isset($_SESSION['views']))
    $_SESSION['views'] = $_SESSION['views']+ 1;
else
    $_SESSION['views'] = 1;

echo "views = ". $_SESSION['views']; 



require("conf.php3");
global $pseudo_membre, $passe_membre, $id;
/*-----------------------------------------------------------------*/
/*	PROGRAMME PRINCIPAL			*/
/*-----------------------------------------------------------------*/

function checkOK($field){
  if (eregi("\r",$field) || eregi("\n",$field)){ die("Invalid Input!"); }
}global $id;
$id=$_POST['id'];
//checkOK($id);
$pseudo_membre=$_POST['pseudo_membre'];
checkOK($pseudo_membre);
$passe_membre=$_POST['passe_membre'];
checkOK($passe_membre);
//$comments=$_POST['comments'];
//checkOK($comments);
//$to="wcherubin@gmail.com";
//$message="$name just filled in your comments form. They said:\n$comments\n\nTheir e-mail address was: $email";
//if(isset($to,"Comments From Your Site",$message,"From: $email\n")) {
if ((ARRAY_KEY_EXISTS("pseudo_membre", $_POST)) || (ARRAY_KEY_EXISTS("passe_membre", $_POST))){ 

    // CONNEXION A LA BASE DE DONNEE

	$db_link = mysql_connect($sql_serveur,$sql_user,$sql_passwd);
	if(!$db_link) {
		echo "Connexion impossible à la base de données <b>$sql_bdd</b> sur le serveur <b>$sql_server</b><br>Vérifiez les paramètres du fichier conf.php3"; 
		exit;
		}

	mysql_select_db ($sql_bdd) or die ("I cannot select the database '$sql_bdd' because: " . mysql_error());
	// ON SELECTIONNE L'ENREGISTREMENT CONTENANT LE LOGIN ET
	// MOT DE PASSE SAISIS A LA PAGE INDEX.HTM
	//$sql = 'EXPLAIN SELECT id , pseudo , passe FROM membre where id = \'$id\' ';
	//$sql = "select id,pseudo,passe from membre where pseudo='$pseudo_membre' and passe = '$passe_membre' and id = '$id'";
	$sql = 'SELECT id , pseudo , passe FROM membre where pseudo = \'$pseudo_membre\' and passe = \'$passe_membre\' ';		
	$result = mysql_query($sql) or die('query failed. ' . mysql_error()); 
	echo " ". $pseudo_membre. " ". $passe_membre . $id . " ";
	echo $result = mysql_query($sql);

	$num_rows = mysql_num_rows($result);
		//echo "$num_rows";
	//$requete=mysql_query($sql_bdd,"select pseudo,passe from membre where pseudo=\"$pseudo_membre\" and passe=\"$passe_membre\"",$db_link) or die(mysql_error());
	//$num_rows = mysql_num_rows($result);		
	//echo $num_rows;
	// SI AUCUN ENREGISTREMENT NE CORRESPOND
	if($num_rows == 0){
		     echo "<br> " ."what is it? <br />";
			echo "There is/are " . $num_rows . " row(s)";
		// REDIRECTION VERS LA PAGE ERREUR
		//header("Location:$url_erreur");
		//header('location: toi/erreur.htm');
		//header('location: login.php3');
		}else {
		echo "the login name is: $pseudo_membre, and the password is: $passe_membre" . "\n\n";
		// SI LE LOGIN ET MOT DE PASSE SONT EXACTES	
		// CREATION D'UN IDENTIFIANT ALEATOIRE
		$taille = 20;
		$lettres = "abcdefghijklmnopqrstuvwxyz0123456789";
		srand(time());
		for ($i=0;$i<$taille;$i++)
			{
			$id.=substr($lettres,(rand()%(strlen($lettres))),1);
			}

		// MISE A JOUR DE L'IDENTIFIANT DANS LA TABLE 
		$query = "UPDATE membre 
		          SET id        = '$id'
				  WHERE pseudo = '$pseudo_membre' and passe='$passe_membre'";

	    mysql_query($query) or die('Error, modifying table membre failed : ' . mysql_error());    
		//$requete=mysql_query($sql_bdd,"update membre set id=\"$id\" where pseudo=\"$pseudo_membre\" and passe=\"$passe_membre\"",$db_link) or die(mysql_error());

		// REDIRECTION VERS UNE PAGE PROTEGEE AVEC L'IDENTIFIANT SERVANT DE CLE
		header("Location:zonemembre.php3?id=$id");
		//header("location:$zone_membre");
		}	

	// DECONNEXION MYSQL
	mysql_close($db_link);
	//echo $_POST;
//echo "Thanks for logging in:" . $pseudo_membre;
} else {
echo "There was a problem sending the mail. Please check that you filled in the form correctly.";
echo "There is a problem with the login.";
}
?>

So please help get this resolve.
Thanks in advance!

$id supposed to store an id automatically generated when a user sign up.

These info are stored in the db.

maxpup979

and where is your code to pull that info from the DB? And how do you know to pull that particular ID when the user hasn't logged in?

chewan

maxpup979 wrote:
and where is your code to pull that info from the DB? And how do you know to pull that particular ID when the user hasn't logged in?

this is the php code

<?php
// we must never forget to start the session
session_start();  

if(isset($_SESSION['views']))
    $_SESSION['views'] = $_SESSION['views']+ 1;
else
    $_SESSION['views'] = 1;

echo "views = ". $_SESSION['views'];



require("conf.php3");
global $pseudo_membre, $passe_membre, $id;
/*-----------------------------------------------------------------*/
/*    PROGRAMME PRINCIPAL            */
/*-----------------------------------------------------------------*/

function checkOK($field){
  if (eregi("\r",$field) || eregi("\n",$field)){ die("Invalid Input!"); }
}global $id;
$id=$_POST['id'];
//checkOK($id);
$pseudo_membre=$_POST['pseudo_membre'];
checkOK($pseudo_membre);
$passe_membre=$_POST['passe_membre'];
checkOK($passe_membre);
//$comments=$_POST['comments'];
//checkOK($comments);
//$to="wcherubin@gmail.com";
//$message="$name just filled in your comments form. They said:\n$comments\n\nTheir e-mail address was: $email";
//if(isset($to,"Comments From Your Site",$message,"From: $email\n")) {
if ((ARRAY_KEY_EXISTS("pseudo_membre", $_POST)) || (ARRAY_KEY_EXISTS("passe_membre", $_POST))){

    // CONNEXION A LA BASE DE DONNEE

    $db_link = mysql_connect($sql_serveur,$sql_user,$sql_passwd);
    if(!$db_link) {
        echo "Connexion impossible à la base de données <b>$sql_bdd</b> sur le serveur <b>$sql_server</b><br>Vérifiez les paramètres du fichier conf.php3";
        exit;
        }

    mysql_select_db ($sql_bdd) or die ("I cannot select the database '$sql_bdd' because: " . mysql_error());
    // ON SELECTIONNE L'ENREGISTREMENT CONTENANT LE LOGIN ET
    // MOT DE PASSE SAISIS A LA PAGE INDEX.HTM
    //$sql = 'EXPLAIN SELECT id , pseudo , passe FROM membre where id = \'$id\' ';
    //$sql = "select id,pseudo,passe from membre where pseudo='$pseudo_membre' and passe = '$passe_membre' and id = '$id'";
    $sql = 'SELECT id , pseudo , passe FROM membre where pseudo = \'$pseudo_membre\' and passe = \'$passe_membre\' ';        
    $result = mysql_query($sql) or die('query failed. ' . mysql_error());
    echo " ". $pseudo_membre. " ". $passe_membre . $id . " ";
    echo $result = mysql_query($sql);

    $num_rows = mysql_num_rows($result);
        //echo "$num_rows";
    //$requete=mysql_query($sql_bdd,"select pseudo,passe from membre where pseudo=\"$pseudo_membre\" and passe=\"$passe_membre\"",$db_link) or die(mysql_error());
    //$num_rows = mysql_num_rows($result);        
    //echo $num_rows;
    // SI AUCUN ENREGISTREMENT NE CORRESPOND
    if($num_rows == 0){
             echo "<br> " ."what is it? <br />";
            echo "There is/are " . $num_rows . " row(s)";
        // REDIRECTION VERS LA PAGE ERREUR
        //header("Location:$url_erreur");
        //header('location: toi/erreur.htm');
        //header('location: login.php3');
        }else {
        echo "the login name is: $pseudo_membre, and the password is: $passe_membre" . "\n\n";
        // SI LE LOGIN ET MOT DE PASSE SONT EXACTES    
        // CREATION D'UN IDENTIFIANT ALEATOIRE
        $taille = 20;
        $lettres = "abcdefghijklmnopqrstuvwxyz0123456789";
        srand(time());
        for ($i=0;$i<$taille;$i++)
            {
            $id.=substr($lettres,(rand()%(strlen($lettres))),1);
            }

        // MISE A JOUR DE L'IDENTIFIANT DANS LA TABLE
        $query = "UPDATE membre
                  SET id        = '$id'
                  WHERE pseudo = '$pseudo_membre' and passe='$passe_membre'";

        mysql_query($query) or die('Error, modifying table membre failed : ' . mysql_error());    
        //$requete=mysql_query($sql_bdd,"update membre set id=\"$id\" where pseudo=\"$pseudo_membre\" and passe=\"$passe_membre\"",$db_link) or die(mysql_error());

        // REDIRECTION VERS UNE PAGE PROTEGEE AVEC L'IDENTIFIANT SERVANT DE CLE
        header("Location:zonemembre.php3?id=$id");
        //header("location:$zone_membre");
        }    

    // DECONNEXION MYSQL
    mysql_close($db_link);
    //echo $_POST;
//echo "Thanks for logging in:" . $pseudo_membre;
} else {
echo "There was a problem sending the mail. Please check that you filled in the form correctly.";
echo "There is a problem with the login.";
}
?>

and the html code for the form


 <?php // we must never forget to start the session session_start(); if(isset($_SESSION['views'])) $_SESSION['views'] = $_SESSION['views']+ 1; else $_SESSION['views'] = 1; echo "views = ". $_SESSION['views']; ?> <?php // we must never forget to start the session session_start(); if(isset($_SESSION['views'])) $_SESSION['views'] = $_SESSION['views']+ 1; else $_SESSION['views'] = 1; echo "views = ". $_SESSION['views']; ?> <?php // we must never forget to start the session session_start(); if(isset($_SESSION['views'])) $_SESSION['views'] = $_SESSION['views']+ 1; else $_SESSION['views'] = 1; echo "views = ". $_SESSION['views']; ?> <html> <head> <title>Chewan Web Design - Login Member Space</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> </head> <body bgcolor="#FFFFFF"><br /><br /> <div align="center"><b><font face="Verdana" size="2" color="#e1e2d4">To Enter the Member Space, You Have To Login By Using A Username And A Password:</font></b><br /><br /> <form method="post" action="login.php3"> <input type="hidden" name="id" value="<?php echo $id; ?>" />  <b><font face="Verdana" size="1">  Your Login :<br /><input type="text" name="pseudo_membre" id="pseudo_membre"> <br /><br />  Your Password :<br /><input type="password" name="passe_membre" id="passe_membre"> <br /><br />  <input type="submit" name="Submit" value="Login">  </font></b> </form> <font face="Verdana" size="2" color="#e1e2d4"><a href="adduser.html">Not A Member Yet, Register</a></font> </div>  <!-- <form action="mail.php" method="post">  Your Name: <input type="text" name="name"><br>  E-mail: <input type="text" name = "email"><br><br>  Comments<br>  <textarea name="comments"></textarea><br><br>  <input type="submit" value="Submit">  </form>--> </body> </html>

dagon

that does not answer the question, you have no code getting the id

foyer

chewan wrote:
<input type="hidden" name="id" value="<?php echo $id; ?>" />

right, this $id variable is not defined. To check this, when you are on the page in your internet browser testing and troubleshooting. Go to view -> page source, then look through the HTML and see if id has a value.