|
Title: PHP Coding question in regards to validat user input before passing it into mysq Post by: retteDenTierpark on December 10, 2019, 11:19:31 PM I have a small programm where i take in a users Bitcoin address as input and than insert it into mysql database.
user inputs bitcoin address and clicks submit button which than validates the bitcoin address and if address is valid- he can click submit button and gets redirected to a different part of my site- and if address is valid it gets added to mysql database. If input isn't valid - display an error message Im using php for everything I just dont know how to put this together into a working project you find the code to my question here https://pastebin.com/DpPgp2Xi i wasnt able to post mysql code here in the forum Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: lulucrypto on December 10, 2019, 11:29:14 PM Hello,
I am able to provide you with the code you want. I will not have time to do it today. I will try to arrange to write the script tomorrow normally ;) Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: TryNinja on December 10, 2019, 11:29:27 PM What exactly is missing?
You already know how to verify if the address is valid. If it is, insert it into the table (as you already know), if it doesn't, do something like this: Code: if (!valid) {An working example: Code: <**php And then, the addAddressToDb($address) function simply receives the address as a parameter and add it to the database with the INSERT sql command. Or something like this. Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: retteDenTierpark on December 10, 2019, 11:40:14 PM What exactly is missing? You already know how to verify if the address is valid. If it is, insert it into the table (as you already know), if it doesn't, do something like this: Code: if (!valid) {An working example: Code: <**php And then, the addAddressToDb($address) function simply receives the address as a parameter and add it to the database with the INSERT sql command. Or something like this. this makes no sense How are you validating if its a valid BTC address? Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: TryNinja on December 10, 2019, 11:43:27 PM this makes no sense With your code. Your pastebin code has the function checkAddress($address) which I call before deciding to add the address to the table. If it returns true (address is valid), it calls addAddressToDb($address), adding it to the db (just create that function and put the mysqli code there, which you already have). And if it returns false (invalid), it just shows the error "Address is invalid" through the $error variable.How are you validating if its a valid BTC address? I just didn't copy the whole function here for obvious reasons (it has over 40 lines). Also, please don't quote that huge reply for a 2 line answer. Either just reply normally or remove the big part of the quote, leaving only enough to point out what you are answering to. Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: retteDenTierpark on December 10, 2019, 11:53:36 PM yes all the code snippets work
right now user inputs address and clicks submit and the input(address) is put into mysql also the code for verifying if btc address is valid works however i cant figure outhow to put this together into a working project this is from the checkAddress function the address variable is empty $address = ""; $eth = mysqli_real_escape_string($conn,$_POST['address']); so i dont know what to use here- do i need to change this to $address = $eth; $eth is actually $btc Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: TryNinja on December 10, 2019, 11:59:36 PM ~ I don't get it. I don't know what you are trying to do. You are the one that should know how to put this into a working project. What are you trying to do? Only you know this. I can't figure out what is the problem/your question. I already wrote a working code for you. It already checks the address the user inputs on the form, and if its valid, it calls the function to add it to the db or do whatever you want. What else you want? What's up with issue with the $address = "" meaning it's "empty"? Because it is not. That's part of the code to check if the address is valid, which you took it from here (https://stackoverflow.com/questions/21559851/bitcoin-address-form-validation-javascript-and-php), so you probably don't know exactly what it does. It's hard to explain exactly what you should do when you don't really know PHP to begin with. Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: retteDenTierpark on December 11, 2019, 12:08:31 AM in this function the address variable is happy
and i dont understand your code you not validating the input or at least i cant figure out how you validate it and where you just posted this if (isset($_POST["address"])) { $address = $_POST["address"]; if (checkAddress($address) { addAddressToDb($address); } else { $error = "Invalid address."; } } else { $error = "Please input an address."; } where does it get validated and how does this go into my database if its valid i posted the complete check address function but i see nowhere how you pass the input through it Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: TryNinja on December 11, 2019, 12:12:05 AM in this function the address variable is happy Dude...and i dont understand your code you not validating the input or at least i cant figure out how you validate it and where you just posted this if (isset($_POST["address"])) { $address = $_POST["address"]; if (checkAddress($address) { addAddressToDb($address); } else { $error = "Invalid address."; } } else { $error = "Please input an address."; } where does it get validated and how does this go into my database if its valid Code: if (checkAddress($address) {checkAddress is the function from your pastebin code. Code: function checkAddress($address) When you call this function passing the address (which comes from the $address = $_POST["address"] variable, which is passed through the input on the form), it checks if its valid. If it's valid, the rest of the code runs. If it's not, runs the ELSE code. If you don't get this, you probably don't know PHP. The code I posted above IS 100% WORKING. Everything is there. You just need to read the code and see what is doing. Edit: i posted the complete check address function but i see nowhere how you pass the input through it if (isset($_POST["address"])) { $address = $_POST["address"]; if (checkAddress($address) { addAddressToDb($address); } else { $error = "Invalid address."; } } else { $error = "Please input an address."; } Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: retteDenTierpark on December 11, 2019, 12:20:39 AM i understand that
I just dont understand where you write all this i dont know where i need to put the check address function since i have 2 files 1 is the container.php file with this in it <form class="" action="submit.php" method="post"> <input type="text" name="address" placeholder="your Bitcoin address"> <button type="submit" name="submit" class="btn btn-info">Submit</button> </form> and once clicking submit it uses the info from the submit.php which is this file include_once 'db.php'; $eth = mysqli_real_escape_string($conn,$_POST['address']); $sql = "INSERT INTO address(address) VALUES('$eth');"; mysqli_query($conn, $sql); now where do i put the checkAddress function so that i can check if address is valid? Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: TryNinja on December 11, 2019, 12:26:36 AM now where do i put the checkAddress function so that i can check if address is valid? The container.php send the address to the submit.php page through a POST request, so obviously in the submit.php file; that's where you receive the address through $_POST["address"] and do all the logical back-end part of the code (verify address and insert into db).I suggest that you see/read some PHP tutorial to understand what is happening there. That's the most basic stuff, and it's hard to make other people clear that part to you (and write the code) since they don't even know how your project is structured and what you are trying to do (e.g: you never told me your form was in a .php file, and the logical part, which receives the data, was in another one. So how would I guess?). Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: retteDenTierpark on December 11, 2019, 12:36:08 AM it says at least 5 times that i use php and mysql and also the $ sign says that i use php
anyways where in the submit.php file do i need to write all of that? my submit.php is this include_once 'db.php'; $eth = mysqli_real_escape_string($conn,$_POST['address']); $sql = "INSERT INTO address(address) VALUES('$eth');"; mysqli_query($conn, $sql); so where goes the checkAddress function? and why should i echo out anything in the submit.php file i need to echo that out on the container.php file since this has all the html isnt there a better way to do this cause if i put it in the submit.php i need to go back and forth and if valid is invalid i need to let them know on the cointainer.php file Why is this so compliated to validate a simple address? thats all i need user inputs bitcoin address- i check if its valid - if it is valid user gets redirected to a success message and address goes into a databse if invalid user gets a message that input is invalid this is supposed to be simple Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: retteDenTierpark on December 11, 2019, 12:53:50 AM and what is this?
addAddressToDb($address); and when i paste your code this thing breaks Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: retteDenTierpark on December 11, 2019, 01:00:08 AM Hello, I am able to provide you with the code you want. I will not have time to do it today. I will try to arrange to write the script tomorrow normally ;) yes that would be great cause i dont understand his stupid code he posts and than he stops replying in the middle of the conversation Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: TryNinja on December 11, 2019, 01:43:14 AM yes that would be great cause i dont understand his stupid code he posts That's because I'm having to teach you basic PHP and my patient is over. No one here owns you anything. I spent basically 1 hour helping you:and than he stops replying in the middle of the conversation 1. For free; 2. Just because I tried to be a nice guy. And yet, - even that you don't know basic PHP, can't read and interpret 2 lines of text and have someone literally coding everything for you for free - you still think it's ok to call this person and his code stupid. Good bye. And next time, try to show some respect to people that are wasting their time to help you. and what is this? Try reading my posts instead of wanting me to craft a working project to you.addAddressToDb($address); // peace, i'm out Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: bitconnect-returns on December 11, 2019, 10:31:08 AM i appreciate your help
but how does this help me if i still cant use your code? And than you are getting butthurt just you think you help someone by posting jibbersish that noone understands doesnt help anyone Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: TryNinja on December 11, 2019, 11:57:11 AM i appreciate your help Wrong account.but how does this help me if i still cant use your code? And than you are getting butthurt just you think you help someone by posting jibbersish that noone understands doesnt help anyone I’m not coding any “Bitconnect 2.0” for you. Now I’m happy you didn’t get any of my basic PHP code. Go away, scammer. edit: fuck you you piece of shit- bitconnect.io is the realest crypto out there That escalated quickly. :Dnow go and work on real scam projects you fucking loser- fuck you Sieg heil Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: bitconnect-returns on December 11, 2019, 06:58:31 PM i appreciate your help Wrong account.but how does this help me if i still cant use your code? And than you are getting butthurt just you think you help someone by posting jibbersish that noone understands doesnt help anyone I’m not coding any “Bitconnect 2.0” for you. Now I’m happy you didn’t get any of my basic PHP code. Go away, scammer. fuck you you piece of shit- bitconnect.io is the realest crypto out there now go and work on real scam projects you fucking loser- fuck you Sieg heil Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: mgoz on December 11, 2019, 09:16:23 PM Don't expect everything handed to you. What you are asking is very basic PHP and already provided a solution that would allow nice SQL injection. You do not need a separate submit.php file to POST to. You can just POST to self and do all the processing in the same file. For the code you have in pastebin, you are making database calls before you even use your checkAddress function. You are also redirecting to transfer.php regardless of any specific condition. I advise going to php.net and reading up on the documentation.
Say you put all of your code and form in the same file called phpnoob.php and have form submit to self. In pseudo code, all you want is this: Code:
Based on your responses, I'm guessing you just copy/pasted the checkAddress function from somewhere and don't understand PHP. Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: lulucrypto on December 12, 2019, 07:04:44 PM Based on all posted messages, here is an example of a ready-to-use file ( For example, create a file with name "save_address.php" and post this code is there ) :
- https://pastebin.com/zR42RyEk But a tip, if you do not know PHP, entrust the work to someone who master the field, because it's a blow to integrate security vulnerabilities in your code ( And potential errors ). Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: retteDenTierpark on December 14, 2019, 08:56:52 PM Based on all posted messages, here is an example of a ready-to-use file ( For example, create a file with name "save_address.php" and post this code is there ) : - https://pastebin.com/zR42RyEk But a tip, if you do not know PHP, entrust the work to someone who master the field, because it's a blow to integrate security vulnerabilities in your code ( And potential errors ). dude its not working and why would i echo out the input form if the input isnt valid i need the input formhow else can suers input the address i appreciate your help but honestly what should i do with this half ass script? if you know how to do it post everthing and not just some random shit that isnt doing anything everybody that posts a question gets an answer everytime i ask a question i get bullshit answer that i cant use for shit Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: mgoz on December 18, 2019, 06:38:03 PM Goto php.net (http://php.net) and read. What he posted would work just fine provided you have db.php and your database table is named address and has a single field called address.
The form is displayed if it hasn't been submitted. It displays confirmation or error based on if address valid or not. Even with the include commented out, I see the form, can submit a non-valid address, and receive an error, with form now hidden, since it was posted. If you're expecting someone to do all of your work for you and just copying and pasting code from various sources, your db.php include is probably broken too. I would recommend not directly inserting form variables into the database unless you like SQL injection. You should probably also modify what he provided to check whether the data was successfully inserted or not and display error/confirmation based on that. Right now it displays nothing (blank page) when submitting a valid address if the insert fails. That's probably where your confusion lies because you are not reading or understanding the code presented to you, however, it is a perfectly fine working example. People aren't going to want to help you if you make no attempt to learn and are rude. Title: Re: PHP Coding question in regards to validat user input before passing it into mysq Post by: Initscri on December 18, 2019, 07:01:01 PM Based on all posted messages, here is an example of a ready-to-use file ( For example, create a file with name "save_address.php" and post this code is there ) : - https://pastebin.com/zR42RyEk But a tip, if you do not know PHP, entrust the work to someone who master the field, because it's a blow to integrate security vulnerabilities in your code ( And potential errors ). dude its not working and why would i echo out the input form if the input isnt valid i need the input formhow else can suers input the address i appreciate your help but honestly what should i do with this half ass script? if you know how to do it post everthing and not just some random shit that isnt doing anything everybody that posts a question gets an answer everytime i ask a question i get bullshit answer that i cant use for shit I'll make this simple, either go learn PHP yourself (or come back with a better attitude) OR go hire someone to do it for you. As of this point, no one should be giving code with the way you have treated the community. TryNinja put a valid effort in to helping you. Your inability to understand the code he provided doesn't make his code bad, it just means you have absolutely zero clue what you are doing, and are expecting everyone to hand code to you while being rude to them at the same time. |