Jump to content
Larry Ullman's Book Forums


  • Content Count

  • Joined

  • Last visited

Community Reputation

0 Neutral

About exodia

  • Rank
  1. I see.. so there's no solution for it except to tell them not to doing it. ok then thanks Hartley.
  2. I'm just afraid if my client which have a slow connection or have connection is interrupted they will refresh the pages. it will cause the data will be resubmitted. I can't say to them to click on URL and hit enter. I know that jQuery will solve this, but what is the trick for PHP if I only use PHP.
  3. it's the same. i use this code as part of my script too. i think this is the risk using single page to submit and receive form using php.
  4. i think i found the problem. this problem occur because i use the same page to submit a form by using this code } elseif ($values === 'POST') { so when i do refresh the page it will resubmit the form. i read some book and found that to prevent this to happen is by using HTTP redirect. but i wonder is it any other effective way to prevent this beside using HTTP redirect.
  5. I just notice when i refresh the pages, data that i've entered before is resubmitted. is it because your sticky form function? is it any way to prevent this to happen? thanks.
  6. one more question, is it any PHP or other script that I can use to detect post_max_size or upload_max_size so i can make error handler from it, or is it checking my client hosting setting is the only way to prevent this error? thanks.
  7. it's not just for me, but for my client if I have to write a script for them. it should be any warning to show them that the upload file fail because some problem. it will confusing for my client if the upload is failing, but the page show nothing. at least it give a notice that upload is error and to contact administrator.
  8. i'm runing on my computer. because you mention that there's other setting i was go search and check my php setting again and found that the one that cause the error was post_max_size. now the only thing i can't understand is why error handler that you make or switch error in the script is showing nothing? is it anything we can do to check and show if there is an error at post_max_size or upload_max_size? thanks.
  9. i think i know the error, it's always error when i'm upload the file more than 3MB, this is really confuse me, i check my php.ini again and my upload_max_filesize = 64M, meanwhile your code is allow file to be upload 5MB. if the file is too large your code suppose show error that the file is too large right? then why it isn't instead it print the form code? when the file is succeed the print_r is work it print like this: Array ( [name] => GoogleCash - Using Google AdWords 3.1.pdf [type] => application/pdf [tmp_name] => E:\wamp\tmp\phpB1AA.tmp [error] => 0 [size] => 1838466 ) , so it seems form is not submitted right? because it's not print any error when it fail.
  10. i already put the code: // Check for a form submission: if ($_SERVER['REQUEST_METHOD'] === 'POST') { print_r($_FILES['pdf']); but i still got the warning and nothing to show: and at the form i got some error which tell me that i should write the file and description although i already do it:
  11. i'm changing the switch error code as you said like this: } elseif (!isset($_SESSION['pdf'])) { // No current or previous uploaded file. print_r($_FILES['pdf']); } // End of $_FILES IF-ELSEIF-ELSE. am I doing it right? because i still saw nothing.
  12. when i disable Larry error-handler that code is disappear but i got this messages:
  13. here's the code for that add_pdf.php <?php // This page is used by an administrator to add a PDF to the site. // This script is created in Chapter 5. // Require the configuration before any PHP code as the configuration controls error reporting: require('./includes/config.inc.php'); // If the user isn't logged in as an administrator, redirect them: redirect_invalid_user('user_admin'); // Require the database connection: require(MYSQL); // Include the header file: $page_title = 'Add a PDF'; include('./includes/header.html'); // For storing errors: $add_pdf_errors = array(); // Check for a form submission: if ($_SERVER['REQUEST_METHOD'] === 'POST') { // Check for a title: if (!empty($_POST['title'])) { $t = escape_data(strip_tags($_POST['title']), $dbc); } else { $add_pdf_errors['title'] = 'Please enter the title!'; } // Check for a description: if (!empty($_POST['description'])) { $d = escape_data(strip_tags($_POST['description']), $dbc); } else { $add_pdf_errors['description'] = 'Please enter the description!'; } // Check for a PDF: if (is_uploaded_file($_FILES['pdf']['tmp_name']) && ($_FILES['pdf']['error'] === UPLOAD_ERR_OK)) { // Get a reference: $file = $_FILES['pdf']; // Find the size: $size = ROUND($file['size']/1024); // Validate the file size (5MB max): if ($size > 15120) { $add_pdf_errors['pdf'] = 'The uploaded file was too large.'; } // Validate the file type: // Create the resource: $fileinfo = finfo_open(FILEINFO_MIME_TYPE); // Check the file: if (finfo_file($fileinfo, $file['tmp_name']) !== 'application/pdf') { $add_pdf_errors['pdf'] = 'The uploaded file was not a PDF.'; } // Close the resource: finfo_close($fileinfo); // Move the file over, if no problems: if (!array_key_exists('pdf', $add_pdf_errors)) { // Create a tmp_name for the file: $tmp_name = sha1($file['name']) . uniqid('',true); // Move the file to its proper folder but add _tmp, just in case: $dest = PDFS_DIR . $tmp_name . '_tmp'; if (move_uploaded_file($file['tmp_name'], $dest)) { // Store the data in the session for later use: $_SESSION['pdf']['tmp_name'] = $tmp_name; $_SESSION['pdf']['size'] = $size; $_SESSION['pdf']['file_name'] = $file['name']; // Print a message: echo '<div class="alert alert-success"><h3>The file has been uploaded!</h3></div>'; } else { trigger_error('The file could not be moved.'); unlink ($file['tmp_name']); } } // End of array_key_exists() IF. } elseif (!isset($_SESSION['pdf'])) { // No current or previous uploaded file. switch ($_FILES['pdf']['error']) { case 1: case 2: $add_pdf_errors['pdf'] = 'The uploaded file was too large.'; break; case 3: $add_pdf_errors['pdf'] = 'The file was only partially uploaded.'; break; case 6: case 7: case 8: $add_pdf_errors['pdf'] = 'The file could not be uploaded due to a system error.'; break; case 4: default: $add_pdf_errors['pdf'] = 'No file was uploaded.'; break; } // End of SWITCH. } // End of $_FILES IF-ELSEIF-ELSE. if (empty($add_pdf_errors)) { // If everything's OK. // Add the PDF to the database: $fn = escape_data($_SESSION['pdf']['file_name'], $dbc); $tmp_name = escape_data($_SESSION['pdf']['tmp_name'], $dbc); $size = (int) $_SESSION['pdf']['size']; $q = "INSERT INTO pdfs (title, description, tmp_name, file_name, size) VALUES ('$t', '$d', '$tmp_name', '$fn', $size)"; $r = mysqli_query($dbc, $q); if (mysqli_affected_rows($dbc) === 1) { // If it ran OK. // Rename the temporary file: $original = PDFS_DIR . $tmp_name . '_tmp'; $dest = PDFS_DIR . $tmp_name; rename($original, $dest); // Print a message: echo '<div class="alert alert-success"><h3>The PDF has been added!</h3></div>'; // Clear $_POST: $_POST = array(); // Clear $_FILES: $_FILES = array(); // Clear $file and $_SESSION['pdf']: unset($file, $_SESSION['pdf']); } else { // If it did not run OK. trigger_error('The PDF could not be added due to a system error. We apologize for any inconvenience.'); unlink ($dest); } } // End of $errors IF. } else { // Clear out the session on a GET request: unset($_SESSION['pdf']); } // End of the submission IF. // Need the form functions script, which defines create_form_input(): require('includes/form_functions.inc.php'); ?><h1>Add a PDF</h1> <form enctype="multipart/form-data" action="add_pdf.php" method="post" accept-charset="utf-8"> <input type="hidden" name="MAX_FILE_SIZE" value="5242880"> <fieldset><legend>Fill out the form to add a PDF to the site:</legend> <?php create_form_input('title', 'text', 'Title', $add_pdf_errors); create_form_input('description', 'textarea', 'Description', $add_pdf_errors); // Add the file input: echo '<div class="form-group'; // Add classes, if applicable: if (array_key_exists('pdf', $add_pdf_errors)) { echo ' has-error'; } else if (isset($_SESSION['pdf'])) { echo ' has-success'; } echo '"><label for="pdf" class="control-label">PDF</label><input type="file" name="pdf" id="pdf">'; // Check for an error: if (array_key_exists('pdf', $add_pdf_errors)) { echo '<span class="help-block">' . $add_pdf_errors['pdf'] . '</span>'; } else { // No error. // If the file exists (from a previous form submission but there were other errors), // store the file info in a session and note its existence: if (isset($_SESSION['pdf'])) { echo '<p class="lead">Currently: "' . $_SESSION['pdf']['file_name'] . '"</p>'; } } // end of errors IF-ELSE. echo '<span class="help-block">PDF only, 5MB Limit</span> </div>'; ?> <input type="submit" name="submit_button" value="Add This PDF" id="submit_button" class="btn btn-default" /> </fieldset> </form> <?php // Include the HTML footer: include('./includes/footer.html'); ?>
  • Create New...