Inserting files into mySQL

Anon

My objective is:

Upload a file
Be able to turn that file into a web link for download(easy)
Just insert the location of the file on the server after its been uploaded.

I have been smacking my head against the wall and my keyboard for days on this..

I can get a link, but the file isn't uploaded, and the link does this:

http://yourdomain.com/C:\blah\blah.doc

That isn't going to work..

If you need to see the code I will post it. I just wanted to see some fresh code and have someone else to help me out on this..

thanks!!

Anon

Try this :

file://c:\test\test.txt
not
Http://

crislewis

If you are using a file input type to specify the file to be uploaded then you will also have specified the server location that your uploads go to.

You need to check where this is to find the uploaded files. Be sure the directory has the right permissions to receive the file.

Let's assume the upload location is yourdomain.com/public/uploads

The file uploaded will have come from c:/mydocs/excelsheet.xls. say.

To construct the link use

base name gives you the filename excelsheet.xls by stripping the path off it.

Hope this helps.

Cris

Anon

well, neither helps...

my first problem is that the file isn't being uploaded. the second problem is that the file isn't being stripped of its original location.

I created the form with the <input type="file" then with the hidden field as well.

the form's action goes to another page where I was hoping it was being uploaded...

This is what I came up with:

$db = @mysql_select_db("williamsen", $connection) or die("Could not select database");
$sql ="INSERT INTO Canidate (id, FirstName, LastName, Industry, Address1, Address2, City, State, Zip, LocationPref, Phone, Email, ResumeUp)
VALUES
(\"$id\", \"$FirstName\", \"$LastName\", \"$Industry\", \"$Address1\", \"$Address2\", \"$City\", \"$State\", \"$Zip\", \"$LocationPref\", \"$Phone\", \"$Email\", \"$userfile\" )";
$result = @($sql,$connection) or die("OOPS!! Couldn't Execute Query!");

exec("cp '$userfile', 'home/sites/site190/web/resumes/$userfile'");

crislewis

Todd,

I suspect you have a permissions problem. I don't use the exec command. Here is the code and html I use on my site - it works for me:

$save_location_dir = "../uploadfiles";

function saveuploaddetails($description, $filename, $user, $location) {

$db_link_id = db_connect();

$sql_query = "INSERT INTO o_uploads VALUES (";
$sql_query .= "NULL, ";
$sql_query .= "'$filename', ";
$sql_query .= "'$description', ";
$sql_query .= "'$location', ";
$sql_query .= "'$user', ";
$sql_query .= "NULL)";

$result = mysql_query($sql_query);

if (!$result) die (sql_error());

}
function upload_file() {

global $userfile,
$userfile_name,
$userfile_size,
$userfile_type,
$description,
$save_location_dir,
$WINDIR;

if(isset($WINDIR)) $userfile = str_replace("\\","\", $userfile);

$filename = basename($userfile_name);

if($userfile_size <= 0) die ("$filename is empty.");

if(!@copy($userfile, "$save_location_dir/$filename")) die("Can't copy $userfile_name to $filename.");

if(!isset($WINDIR) && !@unlink($userfile)) die ("Can't delete the file $userfile_name.");

saveuploaddetails($description, $filename, $user, "$save_location_dir/$filename");

echo "<BR>$filename has been successfully uploaded.<BR>";
echo "Filesize: " . number_format($userfile_size) . "<BR>";
echo "Filetype: $userfile_type<BR>";

}

if($action == 'upload') upload_file();

<table width="400" border="0" cellspacing="1" cellpadding="3" bgcolor="#0099FF">
<tr>
<td colspan="2" class="columnheadc">Upload File to Orlando4families Server
<input type="HIDDEN" name="action" value="upload">
</td>
</tr>
<tr>
<td class="rowheadings">Description</td>
<td class="rowheadings" > <br>
<textarea name="description" cols="40" rows="8" class="formfield"></textarea>
<br>
</td>
</tr>
<tr>
<td class="rowheadings">File</td>
<td class="rowheadings"> <br>
<input type="FILE" name="userfile" class="formfield" size="30">
<br>
  </td>
</tr>
<tr>
<td colspan="2" class="columnheadc"> <br>
<input type="SUBMIT" name="SUBMIT" value="upload"><br>
  </td>
</tr>
</table>
</FORM>

crislewis

Oh, and another thing. The file will be uploaded into the temporary directory shown in the php.ini file. Make sure this directory exists and has the right permissions.

Anon

I am not sure about where the temp folder is, since its on my hosting provider, which if they install PHP4 with "safemode" then I am screwed right?

Anon

cris...

what column names do you have in your datatbase?

I tried to duplicate what you have done, and I get this error:

"is empty"

weird... this thing is driving me up a wall!

crislewis

This message is output when the file size of the uploaded file is 0 bytes. This is pointing to a PHP config problem. The global $userfile_size should be set by php as part of the form request handling (because the form submitted had an input field of type file.

Have you managed to get the code working locally on your development system? The code I gave is designed to work on windows as well as Linux/unix.

Also, run php_info() against your web server and look for upload_tmp_path value.

You may have to contact your host.

Cheers,

Cris

crislewis

Todd,

I've just noticed something about your roginal code. The variable $userfile will not contain the original filename that the user has uploaded. This is contained in $userfile_name. When PHP uploads a file it gives it a temporary filename in the format php-###. So when you do the copy you need to use:

$filename = basename($userfile_name)
exec(cp '$userfile', 'home/sites/site190/web/resumes/$filename'");

the code

exec("cp '$userfile', 'home/sites/site190/web/resumes/$userfile'");

will fail as $userfile as the full path to the temporty directory and the copy to therefore won't be a valid location.

Sorry I didn't spot this earlier.

Cheers,

Cris