Is there any way to secure the actual form generator from being accessed by anybody? I originally installed phpFormGenerator using cPanel and it worked fine; except unless a person had a username and password to get in, they could not get to the form I wanted submitted. So, after reading through the posts, I read that I should not use cPanel to install phpFormGenerator, instead I should install it myself, which I did.
Of course everything works fine now, but the problem I have is that anybody can access the form generator. Is there any way to prevent this?
Basically, this is what I am looking for:
1. I want to be the only person that can access the form generator.
2. Users must be able to get to the forms to fill out and submit without needing a user name/password.
I am looking into the code and trying to figure out what can be changed to accomodate this (I am completely new to PHP, but have some programming experience). What I am trying to accomplish is this directory structure:
phpform (Main Directory)
forms (Sub Directory - non password protected)
formgen (Sub Directory - password protected)
I have had some success by changing all references to "forms\xxx" to "..\forms\xxx" in the .php files located in the main directory. I can create the forms and they do get posted to the correct folder. The problem comes when actually trying to submit the form. Error logs show this:
Premature end of script headers - seems to be dying at the process.php file, but not sure what the problem is. Anyone want to help out with this?
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Anonymous
-
2004-04-19
Shouldn't you be moving your created form to a new location? Otherwise it will get overwritten on the next gen... Says so in the Readme...
Move the formgen app outside your served docs. Copy the generated forms to an appropriate directory ...
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
I've read both the articles in the Docs section as well as the readme file and do not see what you are referring to. Can you tell me what Readme you are referring to? This is what I see (in the most current version):
Optional Recommended Steps:
5. After creating a form, take a look at the form1.html for cutomizations
6. *Advance Users*: Open process.php in a text editor and scroll all the way to the bottom. You will see that the content of the "Thank You" page is located there. You can edit this portion according to your liking. Be careful while doing this as it might break your form.
For script modifications, customizations and other programming services, please see the 'Services' section on the projects website at: http://phpformgen.sourceforge.net
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Create a new folder(directory), in your website directory, name it something like "contact form", put your form and the supporting script"process.php" in the new folder. Update any links on your website that link to the page it is on, for example http://yoursite/contact form/your form.html . Point your browser at it(http:yoursite/contact form/"your form".html and if your server(test server?)is up , it will serve up that page.
If you are using more than one form, the new directory can be something generic, like "forms" with seperate folders inside it for each form i.e.-http://yourwebsite/forms/contact form/"your form.html
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Is there any way to secure the actual form generator from being accessed by anybody? I originally installed phpFormGenerator using cPanel and it worked fine; except unless a person had a username and password to get in, they could not get to the form I wanted submitted. So, after reading through the posts, I read that I should not use cPanel to install phpFormGenerator, instead I should install it myself, which I did.
Of course everything works fine now, but the problem I have is that anybody can access the form generator. Is there any way to prevent this?
Basically, this is what I am looking for:
1. I want to be the only person that can access the form generator.
2. Users must be able to get to the forms to fill out and submit without needing a user name/password.
I am looking into the code and trying to figure out what can be changed to accomodate this (I am completely new to PHP, but have some programming experience). What I am trying to accomplish is this directory structure:
phpform (Main Directory)
forms (Sub Directory - non password protected)
formgen (Sub Directory - password protected)
I have had some success by changing all references to "forms\xxx" to "..\forms\xxx" in the .php files located in the main directory. I can create the forms and they do get posted to the correct folder. The problem comes when actually trying to submit the form. Error logs show this:
Premature end of script headers - seems to be dying at the process.php file, but not sure what the problem is. Anyone want to help out with this?
Shouldn't you be moving your created form to a new location? Otherwise it will get overwritten on the next gen... Says so in the Readme...
Move the formgen app outside your served docs. Copy the generated forms to an appropriate directory ...
I've read both the articles in the Docs section as well as the readme file and do not see what you are referring to. Can you tell me what Readme you are referring to? This is what I see (in the most current version):
phpFormGenerator 2.05
Author: Musawir Ali <musawir@users.sourceforge.net>
URL: http://phpformgen.sourceforge.net
DEMO: http://phpformgen.sourceforge.net/phpform
=================================================
INSTALLATION:
1. Download the file and untar/unzip it as follows
UNIX:
tar zxvf phpFormGenerator-php-x.xx.tar.gz
(replace x.xx with the version number)
Windows:
use winrar or some other unzipping utility
2. Upload the unpacked directory to your web host
3. Set read+write+execute file permissions on the 'forms' directory and *everything* inside it (including all subdirectories and files)
UNIX:
chmod -R 777 forms
4. Point your browser to http://my.server.com/phpform/index.php
(or where ever you uploaded the program)
Optional Recommended Steps:
5. After creating a form, take a look at the form1.html for cutomizations
6. *Advance Users*: Open process.php in a text editor and scroll all the way to the bottom. You will see that the content of the "Thank You" page is located there. You can edit this portion according to your liking. Be careful while doing this as it might break your form.
Thats it! Enjoy!!
====================================================
For script modifications, customizations and other programming services, please see the 'Services' section on the projects website at: http://phpformgen.sourceforge.net
How do I move the form so it works? For some reason, every time I try to move it, I get internal server error messages when I try to submit.
Thanks!
Create a new folder(directory), in your website directory, name it something like "contact form", put your form and the supporting script"process.php" in the new folder. Update any links on your website that link to the page it is on, for example http://yoursite/contact form/your form.html . Point your browser at it(http:yoursite/contact form/"your form".html and if your server(test server?)is up , it will serve up that page.
If you are using more than one form, the new directory can be something generic, like "forms" with seperate folders inside it for each form i.e.-http://yourwebsite/forms/contact form/"your form.html