You are here: Re: Right way to check POST parameters? « PHP Programming Language « IT news, forums, messages
Re: Right way to check POST parameters?

Posted by yawnmoth on 01/18/08 04:17

On Jan 17, 7:03 pm, Jerry Stuckle <jstuck...@attglobal.net> wrote:
> Gilles Ganault wrote:
> > Hello
>
> > I need customers to be able to send us e-mails from our VB
> > Classic application using the MSWinsock ActiveX control.
>
> > Since there's no easy way to find the address of their SMTP server, I
> > figured it'd be easier to have it call a PHP script, and send data
> > with the POST method.
>
> Why on earth would you need the address of their SMTP server? Even if
> you had it, you wouldn't be able to send a message through it if it were
> correctly configured.

I think you misunderstand the request. I think, although I can't say
for sure, that what Gilles Ganault would be doing if he had a
customers SMTP server is that he'd be using the VB Classic app to send
out the email through their SMTP server. Since the VB Classic app
would be running on the customers computer, using their SMTP server
shouldn't be a problem.

What is a problem is that he doesn't know how to get the customers
SMTP server, so he's planning on having the VB Classic app send an
HTTP POST request to a PHP script that'll send the email, instead.

As for ways around this... well, Gilles Ganault could set up an SMTP
server that his customers could use. This SMTP server could require a
valid username and password for emails to be sent out. Or the PHP
script could require the username and password.

But that wasn't exactly what Gilles Ganault asked for, either. So to
answer the question that was asked... you could just do something
like this:

$required_keys = ...;
for ($i=0;$i<count($required_keys);$i++) {
if (!isset($_POST[$required_keys[$i]])) {
return false;
}
}
return true;

Of course, that only tests whether or not the appropriate keys are
set. If, in order to qualify as being "correctly sent", these
parameters need to be checked against a regular expression, or
something... well, you could just test them on a case by case basis.
eg.

if (!preg_match('#...#', $_POST['whatever'])) {
return false;
}

if (!preg_match('#...#', $_POST['whatever2'])) {
return false;
}

return true;

Or you could have two arrays. One with required parameter names and
another that uses select parameter names as keys and sets those keys
to certain regular expressions.

There are lots of solutions...

 

Navigation:

[Reply to this message]


Удаленная работа для программистов  •  Как заработать на Google AdSense  •  England, UK  •  статьи на английском  •  PHP MySQL CMS Apache Oscommerce  •  Online Business Knowledge Base  •  DVD MP3 AVI MP4 players codecs conversion help
Home  •  Search  •  Site Map  •  Set as Homepage  •  Add to Favourites

Copyright © 2005-2006 Powered by Custom PHP Programming

Сайт изготовлен в Студии Валентина Петручека
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация