[RESOLVED] Form to Upload Image - Unable to Insert Data into Database

tone72

I am attempting to create a form for the uploading of images. I want the 'userfile' name to be stored in the MYSQL database and the image file itself to be copied into a folder named 'uploads'. I'm not going very well with it as I can't even manage to get the data to be inserted into the database... 🙁

Once I get this part working, including the file saved into the folder, I will also be adding steps to limit file type to JPEG and file size to <1000. Plus, I also want to rename the uploaded file to prevent overriding an existing file if users upload a file with the same name.

If anyone can tell me why I am unable to insert the data into the database that will be my first step in moving closer to my goal. Thanks!

This is what I have so far:

<?php
	session_start();
	require("../admin/config.php");
	$db = mysql_connect($dbhost, $dbuser, $dbpassword);
	mysql_select_db($dbdatabase, $db);

$target = "../uploads/";

$name = (isset($_POST['name']) ? strip_tags($_POST['name']) : NULL);
$displayname = (isset($_POST['displayname']) ? strip_tags($_POST['displayname']) : NULL); 
$email = (isset($_POST['email']) ? strip_tags($_POST['email']) : NULL);
$phone = (isset($_POST['phone']) ? (int)($_POST['phone']) : NULL);
$country = (isset($_POST['country']) ? strip_tags($_POST['country']) : NULL);
$phototitle = (isset($_POST['phototitle']) ? strip_tags($_POST['phototitle']) : NULL);
$phototext = (isset($_POST['phototext']) ? nl2br($_POST['phototext']) : NULL);
$userfile = (isset($_POST['userfile']) ? strip_tags($_POST['userfile']) : NULL);
$gallerycheckbox = (isset($_POST['gallerycheckbox']) ? (int)($_POST['gallerycheckbox']) : NULL);

if(isset($_POST['submit'])){
$sql = sprintf(
    "INSERT INTO gallery (name, display_name, email, phone, country, phototitle, phototext, userfile, gallerycheckbox)
                  VALUES(%s,%s, %s, %d, %s, %s, %s, %s, %d)",
        "'" . mysql_real_escape_string($name) . "'",
        "'" . mysql_real_escape_string($displayname) . "'",
        "'" . mysql_real_escape_string($email) . "'",
		"'" . $phone . "'",
        "'" . mysql_real_escape_string($country) . "'",
		"'" . mysql_real_escape_string($phototitle) . "'",
		"'" . mysql_real_escape_string($phototext) . "'",
		"'" . mysql_real_escape_string($userfile) . "'",
		"'" . $gallerycheckbox . "'"
);

$result = mysql_query($sql);

move_uploaded_file($_FILES['userfile']['tmp_name'], $target . basename($_FILES['userfile']['name']));

header("Location: pages/gallery-sent.php");

}

else{

require("../pages/header.php");
?>

tone72

P.S. I fixed the extra underscore in the display_name and made it displayname, but I am still unable to insert displayname, phone, phototitle, phototext, userfile, and galelrycheckbox is always '0' even when checked. 🙁

Undrium

Please provide us with your form-HTML aswell.

tone72

Thanks so much for taking a look at my problem.

My form is as follows:

<table>
<form action="<?php echo $_SERVER['SCRIPT_NAME'] ?>" enctype="multipart/form-data" method="post">
<tr>
<td><label>your name</label>
<input name="name" id="photoName" type="text" size="22" maxlength="60" /></td>
</tr>
<tr>
<td><label>display name</label>
<input name="displayname" id="photoDisplayName" type="text" size="22" maxlength="60" /></td>
</tr>
<tr>
<td><label>your email</label>
<input name="email" id="photoEmail" type="text" size="22" maxlength="130" /></td>
</tr>
<tr>
<td><label>your phone</label>
<input name="phone" id="photoPhone" type="text" size="22" maxlength="60" /></td>
</tr>
<tr>
<td><label>country of residence</label>
<input name="country" id="photoCountry" type="text" size="22" maxlength="130" /></td>
</tr>
<tr>
<td><label>photo title</label>
<input name="phototitle" id="photoName" type="text" size="22" maxlength="25" /></td>
</tr>
<tr>
<td><label>about your photo</label>
<textarea name="phototext" id="photoMessage" cols="20" rows="10" ></textarea></td>
<tr>
<td><label>photo file location</label>
<input name="userfile" id="photoBrowse" type="file" size="22" /></td>
</tr>
<tr>
<td><input name="gallerycheckbox" type="checkbox" value="1" /> Yes, I have read and accept the <a href="terms-and-conditions.php">terms &amp; conditions</a></td>
</tr>
<tr>
<td><input type="submit" name="submit" value="submit" /></td>
</tr>
</form>

bradgrafelman

$POST['userfile'] won't exist - $FILES['userfile'] will, however. All of the information you need (including the error status/code, something you should be checking before you do any of the processing you're currently doing). See [man]features.file-upload[/man] for more info.

tone72

Opps! missed that one! Thanks! I will take another look at the manual, I'm just not getting this easily. Will keep trying and see how I go. 🙂

bradgrafelman

Feel free to post here once you get stuck, but note that the specific manual page you'll want to reference while working with uploaded files is most likely this one: [man]features.file-upload.post-method[/man].

On that page, the structure of an entry in the $_FILES] array is explained.

tone72

Finally got this working. Just needing to validate the phone in PHP now but should be able to figure it out.

I was going to mark this resolved but can't seem to find resolved under thread tools atm... 🙁

opps! I had Javascript disabled for some testing! I can see the resolved link now 🙂