My Form does not work. Here's why.

[Redcircle]

I would like to address a problem that I have seen time and time again by newcomers that are posting for answers to why thier form does not post.

register_globals=on is your enemy. Starting with PHP version 4.2 the php.ini is set to off. What this means is that any book or tutorial that has been published before 4.2 was released is probably telling you a big lie on how to handle POST, GET, SYSTEM, SESSION, COOKIES. I know this is the case if you are using the book published by sams titles "PHP and MySQL Web Development" I know. I own the book. It does give you a good overview of the php/mysql language, but some of it is incorrect. There is a blurb in there stating that the way they are teaching you is wrong. They even reference to you that by turning register_globals=off in the php.ini is the correct way. Why they did that I don't know.

The point of my post is to be a possible reference to those wondering why they do not see thier variables after they hit the submit button. I will try and give some examples so that you will overcome your teachings of miss-information.

1. Sessions
Sessions are your friend. They allow you to preserve certain data across subsequent accesses. Which means you can transfer information from page to page. How this works is by using the session_start() function that is built into PHP. What this does is create a unique id that is sent to the clients computer in either the form of a cookie or through the URL. Please note that there has been talk of removing the method to set it from the URL.

If you are somewhat firmilar with sessions and are using session_register() this is not the best way to do it. Not only is there more code involved it also may confuse the living s@!$% out of you. There is a much easier way to do this.

Introduced into PHP 4.1 are Predefined Variables. These are a set of reserved variables that have made working with sessions and other functions as easy as simple arrays.

Using this method to set a session variable all you have to do is use the $_SESSION super global.

Code: Select all

<?php
session_start();
$_SESSION['new_variable'] = 1;
?>

This will create a session variable that will remain untill you use session_destroy(), the user closes the browser, or the time you have specified times out. The information that is set within the $_SESSION[] can be accessed from page to page. This is good when using a shopping cart, restricting access to different pages, or even making sure that your webpage counter doesn't keep increasing when they hit the refresh button.

2. $_POST, $_GET
One of the most common problem that I see is people do not realize that they need to use these when posting a form. Just like $_SESSION this is a super global that is reserved in the PHP language. In a form tag it will have a method that you would like to use to post information if you use a post method your information will be contained in the $_POST variable as an array. If you use a GET method it will be in the $_GET variable once again as an array. Below is an example on how you would use this with a POST method form and a $_SESSION['error'].

Code: Select all

<?php
   session_start();
   if(isset($_POST['submit']))
   {
      if(empty($_POST['post_firstname']) || empty($_POST['post_lastname']) ||
         empty($_POST['post_email']))
      {
         
         $_SESSION['error'] = '<strong>You must enter all information</strong>';
      }
      else
      {
         echo 'First Name: '.$_POST['post_firstname'].'<br>';
         echo 'Last Name: '.$_POST['post_lastname'].'<br>';
         echo 'Email Address: '.$_POST['post_email'].'<br>';
         exit;
      }

   }
   
   if(!empty($_SESSION['error']))
   {
      echo $_SESSION['error'];
      $_SESSION['error'] ='';
   }
?>

<html>
<head>
<title>Untitled Document</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>

<body>


<form method="post" action="<?php echo $_SERVER['PHP_SELF'];?>">
   First Name: <input type="text" name="post_firstname"
      <?php if(!empty($_POST['post_firstname'])) echo 'value="'.$_POST['post_firstname'].'"';?>><br>
   Last Name: <input type="text" name="post_lastname"
      <?php if(!empty($_POST['post_lastname'])) echo 'value="'.$_POST['post_lastname'].'"';?>><br>
   Email: <input type="text" name="post_email"
      <?php if(!empty($_POST['post_email'])) echo 'value="'.$_POST['post_email'].'"';?>><br>
   <input type="submit" name="submit" value="submit">
</form>


</body>
</html>

That is a simple post form that when submitted it will check to see if there is actually information inputted into the text boxes and error out if any one of them is blank.

Conclusion
I wanted this post to be a little longer. I did not cover $_SERVER, or $_ENV super global but you can follow some of the links I put in there and find some good information. I hope this has helped to shed some light a little. If there are errors in my code please let me know. This post was kinda on the fly so I have not actually tested the code. I may have missed a ; here or there so if the code don't work right out the box look for that. Peace out.

NOTE: if you want to put this as a sticky post please do so more people will see it and might save some repeat posts.

[Oleg Butuzov]

GOOD VERY GOOD!

[Romantik]

I use http://www.php.net/extract

[Osaou]

Wow, Redcircle, you are my new fan...
I just wish those bloody authors of big-title reference books were as deeply involved into their writing material as you are about php... ;)
Great review!

[Mazerman]

Thank you for a good explanation of this problem. Tried the code, and corrected some syntax errors, this code would now work:

Code: Select all

<?php 
   session_start(); 
   if(isset($_POST['submit'])) 
   { 
      if(empty($_POST['post_firstname']) || empty($_POST['post_lastname']) || 
         empty($_POST['post_email'])) 
      {
         
         $_SESSION['error'] = '<strong>You must enter all information</strong>'; 
      }
      else 
      { 
         echo 'First Name: '.$_POST['post_firstname'].'<br>'; 
         echo 'Last Name: '.$_POST['post_lastname'].'<br>'; 
         echo 'Email Address: '.$_POST['post_email'].'<br>'; 
         exit; 
      } 

   } 
   
   if(!empty($_SESSION['error']))
   {
      echo $_SESSION['error']; 
      $_SESSION['error'] =''; 
   }
?> 

<html>
<head>
<title>Untitled Document</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>

<body>


<form method="post" action="<?php echo $_SERVER['PHP_SELF'];?>"> 
   First Name: <input type="text" name="post_firstname" 
      <?php if(!empty($_POST['post_firstname'])) echo 'value="'.$_POST['post_firstname'].'"';?>><br> 
   Last Name: <input type="text" name="post_lastname" 
      <?php if(!empty($_POST['post_lastname'])) echo 'value="'.$_POST['post_lastname'].'"';?>><br> 
   Email: <input type="text" name="post_email" 
      <?php if(!empty($_POST['post_email'])) echo 'value="'.$_POST['post_email'].'"';?>><br> 
   <input type="submit" name="submit" value="submit">
</form> 


</body>
</html>

[asvur]

Hi

that is a very good example.
But can you give me a example how to create a login.wml
and validate the login with php and postgresql.
I have tried and searched a lot but i do not know how to send two variables that i get from my login.wml to the php file.
you can have a look at the topic:
PHP WML POSTGRESQL.

thanks

[cesarcesar]

Great post for sure.

I changed my scripts to work with registered globals off. Things work well on my PHP5 server, but donot on my PHP4.3 server. Any ideas? Both php.ini files are as similiar as possible.

is there any difference between $_SESSION['foo'] and $_SESSION[foo] besides lazy coding?

[swirlee]

is there any difference between $_SESSION['foo'] and $_SESSION[foo] besides lazy coding?

$_SESSION[foo] isn't just lazy, it's syntactically incorrect. If you have error_reporting set to report notices, you'll see the Notice.

[cesarcesar]

let me beter ask my question. this is my code, it works fine just am wondering what errors may occur if any in the future. I learned how to code like this in school, but i see that others do it defferently.

if($_SERVER['REQUEST_METHOD']=="GET"){
$_vars = $HTTP_GET_VARS;
}else if($_SERVER['REQUEST_METHOD']=="POST"){
$_vars = $HTTP_POST_VARS;
}

myFunction($_SESSION[SessionID], $_vars[ProductID]);

In the if stament im using quotes when calling the array. In the functin and when calling the arrays other places i usually donot use quotes similiar to $_vars[ProductID]. Like i said everything works fine, but as the last reply it is incorrect. WHY

[swirlee]

You should always use quotes when referring to items in an associative array. If you set error_reporting to E_ALL, you'll see that you are causing errors (notices, actually), you're just not seeing them.

I don't really understand why you'd ever have code like this:

Code: Select all

if($_SERVER['REQUEST_METHOD']=="GET"){
$_vars = $HTTP_GET_VARS;
}else if($_SERVER['REQUEST_METHOD']=="POST"){
$_vars = $HTTP_POST_VARS;
}

If you're coding your application correctly, you'll always know whether data is coming via GET or POST, so you'll know whether to use the $_GET or $_POST superglobal.

[cesarcesar]

i do this for ease of coding for myself. by calling that if() stament on my pages i can easily use the same array name $_vars throught my site. yes i know that i can use POST an GET superglobals, but what i use seems to works just the same.

U are a super PHP guru, I am just a newbie. Am i doing something super wrong by calling my POST or GET vars that way?

thansk for your wisdom.

[swirlee]

You're not doing something "super wrong", but it could be done better.

The reason I advocate using $_POST and $_GET is so that you always know where your variables are coming from. It's just a good habit and gives you a little peace of mind. Another thing to consider is that with your code, if both POST and GET data are submitted in the same request (e.g. if your form has a POST method and and your action looks like "script.php?a=1&b=2"), only the GET data will wind up in your $_vars array.

[cesarcesar]

i see, and will remember your wisdom. currently i have bno get variable in the action of a from. i use hidden input tags within the form to pass my vars. but i will keep in mind. thank you soo much for the wisdom

[Alexej Kubarev]

True... this will let you make clean codes.. or atleast avoid such incorrect usages..

Using code analyzier and debugger will lt you create even better codes... and after you are done with codding: check everything (every single line) and optimize it as much as you can..

[VARUN006]

<html>
<head>
<title>
hii
</title>
</head>
<body>
<form action="post2.php" method="post">
<p>First Name:<input type="text"

name="first_name" size="10"></p>
<p>Last Name:<input type="text"

name="name2" size="10"></p>
<p>Email:<input type="text" name="email"

size="15">
<p>Posting:<textarea name="posting"

rows="15" cols="20"></textarea></p>
<input type="submit" name="submit"

value="Send my feedback" />
</body>
</html>



-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
<?php
$first_name=$_POST['first_name'];
$last_name=$_POST['name2'];
$email=$_POST['email'];
$posting=$_POST['posting'];
$name=$first_name .". $last_name;
print '$posting';
?>


pls help...

[TheProdigyGuy]

Great Article & great Thx to Author!
@Varun006

Code: Select all

<?php
error_reporting('OFF');
$html=<<<HTMl
<html>
<head>
<title>
hii
</title>
</head>
<body>
<form action="" method="post">
<p>First Name*:<input type="text"
name="first_name" size="20"></p>
<p>Last Name*:<input type="text"

name="name2" size="20"></p>
<p>Email addr*:<input type="text" name="email"
size="20">
<p>Posting*:<textarea name="posting"
rows="15" cols="40"></textarea></p>
<input type="submit" name="submit"
value="Send my feedback" />
</body>
</html>
HTMl;
echo $html;
if (count($_POST)==0) die;
if (count($_POST)==5 && !empty($_POST['first_name']) && !empty($_POST['name2']) && !empty($_POST['email']) && !empty($_POST['posting']))
{
    
$mailaddr='test@192.168.0.15'; // Your Mail address goes here.
$first_name=$_POST['first_name'];
$last_name=$_POST['name2'];
$email=$_POST['email'];
$posting=$_POST['posting'];
$name=$first_name . ' ' .$last_name;
      @mail($mailaddr,htmlspecialchars($name),wordwrap("~~~~~ Feedback from your site: ~~~~~" . PHP_EOL . htmlspecialchars($name) . " wrote: " . PHP_EOL .
      htmlspecialchars($posting) .
      PHP_EOL .
      htmlspecialchars($name) . "'s email: " . htmlspecialchars($email) . PHP_EOL . "~~~~~~~~~~~~~~~~~~~~~~~~",70));
      die("<script>alert(\"TY for your Feedback.I will contact with you ASAP.)\");</script>");

}
else
{
    die("<script>alert(\"Can't send your Feedback!Try again...\");</script>");
}

?>

[Acesystech]

hi varun

plz try this one..

<?php
if(isset($_REQUEST['submit']))
{
$first_name=$_POST['first_name'];
$last_name=$_POST['name2'];
$email=$_POST['email'];
$posting=$_POST['posting'];
$name=$first_name.$last_name;
echo $posting;
}
?>

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Untitled Document</title>
</head>

<body>
<form action="post2.php" method="post">
<p>First Name:<input type="text" name="first_name" size="10"></p>
<p>Last Name:<input type="text" name="name2" size="10"></p>
<p>Email:<input type="text" name="email" size="15">
<p>Posting:<textarea name="posting" rows="15" cols="20"></textarea></p>
<input type="submit" name="submit" value="Send my feedback" />
</body>
</html>

[PreetiGarg]

hi varun

plz try this one..

<?php
if(isset($_REQUEST['submit']))
{
$first_name=$_POST['first_name'];
$last_name=$_POST['name2'];
$email=$_POST['email'];
$posting=$_POST['posting'];
$name=$first_name.$last_name;
echo $posting;
}
?>

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Untitled Document</title>
</head>

<body>
<form action="post2.php" method="post">
<p>First Name:<input type="text" name="first_name" size="10"></p>
<p>Last Name:<input type="text" name="name2" size="10"></p>
<p>Email:<input type="text" name="email" size="15">
<p>Posting:<textarea name="posting" rows="15" cols="20"></textarea></p>
<input type="submit" name="submit" value="Send my feedback" />
</body>
</html>

Thank you Its really working...

[seoitc]

Thank you for the article . I see there are so many interesting in your article.

[Nicknnick]

Thank You, for this great post and thank for all other programmer who reply on this post...!

[virinchisoftware]

Hi,
This is very useful.