HTML form with a PHP variable test -


i'm trying add simple php captcha code existing html web forms, using same server side php form mailer.

example form simple captcha:

<? session_start(); ?> <html> number challange test<br /> <br /> </html> <body> <? // check login - code if (isset($_request['submit'])) {      echo "running code comparison  ";     if ($_session['captcha']==$_request['code']) echo 'login ok';     else echo 'login failed'; } else { ?> <form action="<? echo $php_self ?>" method="post"> username: <input type="text" name="username" /><br /> password: <input type="text" name="password" /><br /> <img src="example.php" /> code: <input type="text" name="code" /><br /> <input type="submit" name="submit" value="login" />  </form> <? } ?> </body> </html>

my specific question is, how can modify above form concept submit form data server-side form_mailer.php, (not submit itself) , validate 'captcha' value = 'code'?

i have tried read/display value of $_session['captcha'] (its 4 digit number) nothing echo displays value. think if (could read/display) value validate code on fly.

i'm testing use of validate button separate submit button. i'm trying accomplish 1 submit button.

example.php code:

<? session_start();  include('captcha_numbers.php'); $captcha = new captchanumbers(4); $captcha -> display();  $_session['captcha'] = $captcha -> getstring(); ?>

source: source of code this

insted of 

if (isset($_request['submit'])) {

use 

if (isset($_post['submit'])) {

becouse using post method in form.

we don’t know code. captcha code can generated every time starts session , different then. try else.
captcha there’s simple trick placing hidden md5.
http://us2.php.net/manual/pl/function.md5.php
or stronger sha1
http://pl1.php.net/manual/en/function.sha1.php 

<input type="hidden" name="captcha_md5" value="<?php echo md5($my_number); ?>"/>

after make md5 out of code gives in form , compare it. 

if ($_post['captcha_md5']==md5($_post['code'])) echo 'login ok';

captcha gives different number every time, , md5 generates shortcut that's not possible revers. :)
luck.


Comments

Post a Comment

Popular posts from this blog

php - SPIP: From Tag directly to an article -

i work spip , plugin called tagsphere works fine tags in spip. have tag groupe put 1 article tag. when click on tag in tagsphere send me before menu can see articles linked tag. want send me directly article without see tag menu before. here code model of thagsphere: <div id="tagsphere-#env{id_article}"> <ul> <boucle_mot(mots){id_groupe ?}> <li>[<a href="#url_mot">(#titre)</a>]</li> </boucle_mot> </ul> </div> anybody idea? if want skip tag page, have link directly article. <b_article> block prevents display tag if no article linked. <div id="tagsphere-#env{id_article}"> <ul> <boucle_mot(mots){id_groupe ?}> <b_article> <li> <a<boucle_article(articles){...
Read more

jquery - isAjaxRequest always return false -

i got error message 404,'model has not been saved' following code my action controller public function actionextend($id) { $model=$this->loadmodel($id); if(yii::app()->request->isajaxrequest) { $model->todate = date('y-m-d h:i:s a',(strtotime('next month',strtotime(date('y-01-d'))))); if($model->save()) { yii::app()->end(); } else { throw new chttpexception(404,'model has not been saved'); } } } the jquery call $("#buttonextend<?php echo $this->post_row;?>").click(function(e){ $.ajax({ type: "post", url: "<?php echo yii::app()->createurl('post/extend', array('id' => $data['id'])); ?>", }); }); why not ajax call ? thank help i found response, missed } , function ...
Read more

ruby on rails - In a controller spec, how to find a specific tag in the generated view? -

i know integration tests preferred need ran in controller test, i'm testing gem injecting html code in view, xhr can't run in feature spec (if can, please explain me how :) ) so rspec controller tests can assert selector present (with capybara) : response.body.should have_selector('#foobar') has_selector? call all method capybara find selector. what want last child of body , assert id in particular. afaik it's not possible have_selector. what : all('body:first-child').first.id.should == '#foobar' however, capybara dsl, defined (more or less): def all(*args) page.all(*args) end and page empty unless use visit it's integrations specs. how can use capybara all method inside rspec controller test ? i can't test right after googling seems trick def page capybara::node::simple.new(response.body) end source
Read more