Logo
Login
Welcome, Guest.
Login | Register

How to create Inbox system [color=green]Part2[/color]

E Avatar By M.J kInG
POSTED: 20 Nov 2012 17:57
CATEGORY: Educational
FEATURED: Yes (Danyelle)
(Go to comments)
Hello guys!, i'm back bring you guys Part2.

Hopefully you guys got the concept of my last tour which was Part1 if not here link to Part1.

How to creare Inbox system Part1:
http://dsipaint.com/memberblog.php?blog=84627



If you a person who need to improve your Php skills please click the following link. This site will introduce you to Php and everything you need to know about Php and more.

PHP Tutorial Introduction to Php
http://www.tizag.com/phpT/



Anyway we going to get started with Part2. To let you guys know this Part is advance and might not be understandable for some peoples who just learning Php.


First then first we need check to see if users input something with in the filed. And to do that we going to create Php script that checks that.

/ * Start tag */
<?php
session_start();

/* Created $_POST inputs please make sure to start session as will*/

$id = $_POST['id']
$To_user = $_POST['To_user'];
$From_user = $_SESSION['Username'];
$Subject = $_POST['Subject'];
$Message = $_POST['Message'];

/* Check to see if user input something in the values. To do that we need to use if( tag & else tage */

if($_POST['Submit'] ==""){
}
elseif($To_user ==""){
echo"ToUser field is blank";
}

elseif($Subject ==""){
echo"Subject field is blank";
}

elseif($Message ==""){
echo"Body field is blank";
}
/* Now if everything successful we need to insert everything into database. Now that when table we created in Part1 come into play */

else{
/* Make sure to have a database connection file setup, Because we going to need it
to send data to the database */

include("database.php");
/* Now we insert our values */

mysql_query
("INSERT
INTO Inbox(id,To_user,From_user,Subject,Message)
Values('$id','$To_user','$From_user','$Message')");

/* Now we create echo saying Message Send & then we end our php code by putting ?> */


echo"<font color=green>Message Send</font>";
}
?>


Now you done creating Php Part here full version of the script.


Example:

<?php
session_start();
$id = $_POST['id']
$To_user = $_POST['To_user'];
$From_user = $_SESSION['Username'];
$Subject = $_POST['Subject'];
$Message = $_POST['Message'];

if($_POST['Submit'] ==""){
}
elseif($To_user ==""){
echo"ToUser field is blank";
}

elseif($Subject ==""){
echo"Subject field is blank";
}

elseif($Message ==""){
echo"Body field is blank";
}
else{
include("database.php");

mysql_query
("INSERT
INTO Inbox(id,To_user,From_user,Subject,Message)
Values('$id','$To_user','$From_user','$Subject','$Message')");

echo"<font color=green>Message Send</font>";
}
?>


Hope you guys like tutorial next Monday we learn how to create Main Inbox file Which you be able to see all your message.

Post your feedback below or any other questions you have.


Bye and have a great Thankgiving!
+2 -0
Avatar Avatar

Comments

Avatar LinkZelda
21 Nov 2012 20:30
You could just merge all of the 'ifs' into one, fat if statement:

if ($_POST['submit']=="" or $To_user=="" or $Subject=="" or $Message=="") {
print "You didn't fill out all the required fields";
exit; }

Of course, this is generic and not helpful to the user but it looks more compact. Note that all the statements can be empty. If 'xor' was used, only one could be allowed to be empty to then complete the statement.

You could then write :
else {
mysql_query($SQL_Jargon);}

so that this only takes place if the original 'if' statement returns true.
Avatar M.J kInG
21 Nov 2012 19:44
This just basic messaging system they will have to input the protection them self's
Avatar EpicWayne
21 Nov 2012 17:40
Kwl,I will. Do it soon.
Avatar lilwayne1556
21 Nov 2012 01:19
Quoth GuitarBoy:
This has little to no security.

What I do for some security is a simple function:

function escstr($s){
$b=array("'",'"');
$g=array("'",""");
return str_ireplace($b,$g,$s);
}

This should completely take away any chances of SQL injection; it also makes the data being inserted look nicer when it's outputted to the browser. <img src="/chatrooms/smilies/alien1.gif" alt="">


Yeah when I saw this I was like here comes all the hackers
Avatar M.J kInG
21 Nov 2012 00:56
Quoth GuitarBoy:
This has little to no security.

What I do for some security is a simple function:

function escstr($s){
$b=array("'",'"');
$g=array("'",""");
return str_ireplace($b,$g,$s);
}

This should completely take away any chances of SQL injection; it also makes the data being inserted look nicer when it's outputted to the browser. <img src="/chatrooms/smilies/alien1.gif" alt="">


Ok
Avatar jsa005
20 Nov 2012 21:46
I said about Tizag lol
Good tutorial!
Avatar M.J kInG
20 Nov 2012 18:51
Sorry for posting this blog so late been busy with school work.
Home
Nintendo 3DS is ™ Nintendo Co. Ltd. This website is ©2009-2024 HullBreach Studios. All rights reserved. Members are responsible for their own content. No account information will be given to third-parties without your consent.