PHP Survey

hoogeebear

Hi!

Im new to this forum, its been such a great help and ivenonly been usng in for 2 days! Anyways....Im currently completing an online survey as part of my college work. I was wondering if anyoe would be able to help me out a little with these problems Im having. They are:

I've decided to do just one login for users, i.e - i want to have a set password for all people. Any ideas on how I can do this?
Im trying to connect my survey results to a mysql database that I have already created.

Any help at all will be of the greatest benefit to me!

Tanx and Regards,

Hoogeebear!

bradgrafelman

hoogeebear wrote:
1. I've decided to do just one login for users, i.e - i want to have a set password for all people. Any ideas on how I can do this?

Well that depends on how 'fancy' you want to make it; you could store a hash of the password (e.g. using SHA1) in a file or even a DB, or you could just hardcode it into the script itself (perhaps in a separate config file?).

hoogeebear wrote:
2. Im trying to connect my survey results to a mysql database that I have already created.

What do you mean by "connect" them? Do you simply mean store the responses in a table? If so, that seems pretty straightforward, just make sure you read up on database normalization and that you protect yourself from SQL injection by using [man]mysql_real_escape_string/man and whatnot.

hoogeebear

Yes I want to hard core my username and password. How would I do this using a config file?

bradgrafelman

Well that's as simple as making a separate PHP file, e.g. config.php, that looks like:

<?php
$auth_user = 'user';
$auth_pass = 'pass';
?>

Then simply [man]include/man/[man]require/man it in your main script to check passwords:

require_once 'config.php';
if(!isset($_POST['username'], $_POST['password'])) {
    // one or the other wasn't set... display form
} elseif($_POST['username'] == $auth_user && sha1($_POST['password']) == $auth_pass) {
    // authenticated!
} else {
    // invalid credentials!
}

Note that in my example above, I used the SHA1 hash of the password instead of having the password stored in plain text in the config file.

hoogeebear

Thanx so much dude! absolutely brilliant!!!!😃

bradgrafelman

No problem. Don't forget to mark this thread resolved (if it is).