Jump to content

DavidCampbell

Member
  • Posts

    37
  • Joined

  • Last visited

  • Days Won

    4

DavidCampbell last won the day on November 21 2022

DavidCampbell had the most liked content!

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

DavidCampbell's Achievements

Newbie

Newbie (1/14)

12

Reputation

  1. no worries I found them, there was a link in the PDF
  2. ah its these templates I'm looking for. I'm not sure how to get back to them.
  3. Hi Stef. Thanks for replying. I'll check the PDF. But I'm sure there was some files. In particular a basic terms and conditions for dealing with clients. And a basic contract outlining the 1/3 upfront, 1/3 on delivery of first draft, etc. Am I mistaken? My memory is pretty foggy. Dave
  4. Hi, I hope Stef you can help me out, or anyone. Back in 2018 I bought Complete Entrepreneur and Complete Freelancer course. My hard drive died since where I had downloaded all the files. Today I've just re-downloaded the mp3 a pdf course outline. I was sure there was more than this, video files maybe? But definitely some docs; example terms and conditions, contracts and various other useful files. Splitting the payment into three, all those sort of things. Would be really useful for me to get again right now. Where can I find this files? Thanks in advance
  5. I had some time to return to this today - fixed it. The bug arrises because of the subtle difference between get_data in the Template class. in the oopLogin the method does not have the option to echo out the data, whereas the one in phpCart, it does. so much confusion over something so simple.
  6. Hi Stefan, I haven't solved it yet, I'm a little stumped. My local version of OOP Login works as expected. Obviously there are differences in the file structure and the use of DPO instead of MYSQLI. My next move was to just refactor the code and use MYSQLI. But It would be nice to get DPO working though.
  7. the admin index.php, is very simple: <?php // ==================================================== // INDEX // // ==================================================== /* * Are we loged in? * YES - redirect to admin home * NO - redirect to login */ include("app/init.php"); // check authorization if ($Auth->checkLoginStatus() == FALSE) { $Template->redirect('login.php'); } else { echo "redirect to home.php"; // $Template->redirect('home.php'); }
  8. v_login.php (view) <!DOCTYPE html> <html> <head> <title>Login In</title> <meta http-equiv="Content-type" content="text/html; charset=utf-8"> <link href="resources/css/style.css" media="screen" rel="stylesheet" type="text/css"> </head> <body> <h1>Log In</h1> <div id="content"> <form action="" method="post"> <div> <? $alerts = $this->get_alerts(); if ($alerts != '') { echo "<ul class=\"alerts\">\n"; echo $alerts; echo "</ul>\n"; } ?> </div> <div class="row"> <label for="username">Username: *</label> <input type="text" name="username" value="<? echo $this->get_data('input_user'); ?>"> <div class="error"><? echo $this->get_data('error_user'); ?></div> </div> <div class="row"> <label for="password">Password: *</label> <input type="password" name="password" value="<? echo $this->get_data('input_pass'); ?>"> <div class="error"><? echo $this->get_data('error_pass'); ?></div> </div> <div class="row"> <p class="required">* required</p> <input type="submit" name="submit" class="submit" value="submit"> </div> </form> </div> </body> </html>
  9. login.php <?php // ==================================================== // LOGIN // // ==================================================== include("app/init.php"); $Template->set_data('page_class', 'login'); if (isset($_POST['submit'])) { // get data $Template->set_data('input_user', $_POST['username']); $Template->set_data('input_pass', $_POST['password']); // validate data if ($_POST['username'] == '' || $_POST['password'] == '') { // show error if ($_POST['username'] == '') { $Template->set_data('error_user', 'required');} if ($_POST['password'] == '') { $Template->set_data('error_pass', 'required');} $Template->set_alert('Please fill in all required fields', 'error'); $Template->load("app/views/v_login.php", "Login"); } else if ($Auth->validateLogin($Template->get_data('input_user'), $Template->get_data('input_pass')) == FALSE ) { // invalid login $Template->set_alert('Invalid username or password', 'error'); $Template->load("app/views/v_login.php", "Login"); } else { // successful log in $_SESSION['username'] = $Template->get_data('input_user'); $_SESSION['loggedin'] = TRUE; $Template->set_alert('Welcome <i>' . $Template->get_data('input_user') . '</i>'); $Template->redirect('home.php'); // send to admin home } } else { // echo "template load v_login.php"; $Template->load("app/views/v_login.php", "Login"); }
  10. auth.php <?php // ==================================================== // AUTHORIZATION CLASS // Deals with auth tasks // ==================================================== class Auth { // ========================== // Class scope vars // ========================== private $salt = 'j4H9?s0d'; // ========================== // Constructor // ========================== function __construct() { // do nothing } // ========================== // Methods // ========================== // ============= // validate login // ============= function validateLogin($user, $pass) { /* // access db global $Database; // create query if ($stmt = $Database->prepare("SELECT * FROM users WHERE username = ? AND password = ?")) { $passPlusSalt = $pass . $this->salt; $passPlusSalt = md5($passPlusSalt); $stmt->bind_param("ss", $user, $passPlusSalt); $stmt->execute(); $stmt->store_result(); // check for num rows if ($stmt->num_rows > 0) { // success $stmt->close(); return TRUE; } else { // failure $stmt->close(); return FALSE; } } else { die("ERROR: Could not prepare MySQLi statement."); } */ $sql = "SELECT * FROM users WHERE userName = :user AND password = :passPlusSalt AND adminUser = :isAdmin"; $user = $user; $passPlusSalt = $pass . $this->salt; $passPlusSalt = md5($passPlusSalt); $isAdmin = "true"; // access database global $connection; try { $statement = $connection->prepare($sql); $statement->bindParam(':user', $user, PDO::PARAM_STR); $statement->bindParam(':passPlusSalt', $passPlusSalt, PDO::PARAM_STR); $statement->bindParam(':isAdmin', $isAdmin, PDO::PARAM_STR); $statement->execute(); $result = $statement->fetchAll(); } catch(PDOException $error) { echo $sql . "<br>" . $error->getMessage(); } if ($result && $statement->rowCount() > 0) { // success return TRUE; } else { // failure return FALSE; } } // ============= // check login status // ============= function checkLoginStatus() { if (isset($_SESSION['loggedin'])) { return TRUE; } else { return FALSE; } } // ============= // logout // ============= function logout() { session_destroy(); session_start(); } // END Auth Class }
  11. template.php <?php // ==================================================== // TEMPLATE CLASS // Handling all templating tasks - displaying views, alerts, erros and view data // ==================================================== class Template { // ========================== // Class scope vars // ========================== private $data; private $alert_types = array('success', 'error'); // ========================== // Constructor // ========================== function __construct() { // do nothing } // ========================== // Methods // ========================== /** * Loads specified url * * @access public * @param string, string * @return null **/ public function load($url, $title) { if($title != ''){ $this->set_data('page_title', $title); } include($url); } /** * Redirects to specified url * * @access public * @param string * @return null **/ public function redirect($url) { header("Location: $url"); exit; } /* Get / Set Data */ /** * Saves provided data for use by the view later * * @access public * @param string, string, bool * @return null **/ public function set_data($name, $value, $clean = FALSE) { if ($clean == TRUE) { $this->data[$name] = htmlentities($value, ENT_QUOTES); } else { $this->data[$name] = $value; } } /** * Retrieves data based on provided name for access by view * * @access public * @param string, bool * @return string **/ public function get_data($name, $echo = TRUE) { if(isset($this->data[$name])) { if($echo) { echo $this->data[$name]; } else { return $this->data[$name]; } } return ''; } /* Get / Set Alerts */ /** * Sets an alert message stored in the session * * @access public * @param string, string (optional) * @return null **/ public function set_alert($value, $type = 'success') { $_SESSION[$type][] = $value; } /** * Returns string, containing multiple list items of alerts * * @access public * @param * @return string **/ public function get_alerts() { $data = ''; foreach ($this->alert_types as $alert) { if(isset($_SESSION[$alert])) { foreach ($_SESSION[$alert] as $value) { $data .= '<li class="' . $alert . '">' . $value . '</li>'; } unset($_SESSION[$alert]); } } // echo $data; return $data; } // END Template Class }
  12. <?php // =========================================== // INIT // Basic configuration settings // =========================================== // connect to database (PDO) $host = "localhost"; $username = "root"; $password = "yes"; $dbname = "recordLabel"; $dsn = "mysql:host=$host;dbname=$dbname"; $options = array(PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION); $connection = new PDO($dsn, $username, $password, $options); // set up constants define('SITE_NAME', 'My Record Label'); define('SITE_PATH', 'http://recordLabel.local/admin/'); // local/admin define('IMAGE_PATH', 'http://recordLabel.local/admin/resources/images/'); // local/admin // include objects include('app/models/m_template.php'); include('app/models/m_auth.php'); // create objects $Template = new Template(); $Auth = new Auth(); session_start(); my init.php
  13. Here is a screenshot of the bug: This login is based on the KillerSites OOP Login tutorial. But I've made some differences. Firstly is in a sub directory 'admin' as i'm building that first. Secondly the most important change is I've changed it to PDO instead of MySQLi. I've gone all through my code and cant see where this would decide to print out like this. Feel a bit dumb not being able to find out why this is performing like this. Hoping someone has a quick answer. I'm just at the beginning of this build and I wanted to adapt the code to use DPO, although I have had no experience with DPO. So I was thinking that is prob the route of the problem. Otherwise I'll switch back to MYSQLI, which I want to avoid.
×
×
  • Create New...