StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POdisplay option to delete files if user type is correct
text
Body
copied!<p>I have a simple file-sharing page that allows the user to upload images and display the directory contents in a list. I have 2 users in my Database, an I want to make it so only one can delete files. My database has a type column for the users and these values are 1 or 2. Here is my code:</p> <pre><code> <body> <?php include "view/header.php" ?> <div id="main"> <h2>Image to be uploaded</h2> <form id="upload_form" action="." method="POST" enctype="multipart/form-data"> <input type="hidden" name="action" value="upload"> <input type="file" name="file1"><br /> <input id="upload_button" type="submit" value="Upload"> </form> <h2>Images in the directory</h2> <?php if (count($files) == 0) : ?> <p>No images have been uploaded.</p> <?php else: ?> <ul> <?php foreach($files as $filename) : $file_url= $image_dir . '/' . $filename; $delete_url= '.?action=delete&filename=' . urlencode($filename); ?> <li> <a href= "<?php echo $delete_url;?>"> <img src= "images/delete.png" alt= "Delete"></a> <a href= "<?php echo $file_url;?>"> <?php echo $filename;?></a> </li> <?php endforeach; ?> </ul> <?php endif; ?> </div> <div id="footerholder"> <div id="footer"> <?php include "view/footer.php" ?> </div> </code></pre> <p> </p> <p>This is what my login page refers to:</p> <pre><code><?php $dsn= 'mysql:host=localhost; dbname=file_share'; $username= 'root'; $password= ''; try { $db= new PDO($dsn, $username, $password); } catch (PDOException $e) { $error_message= $e->getMessage(); echo "<p>An error occured while connecting to the database: $error_message </p>"; } //Only run code below if form has been posted if($_SERVER['REQUEST_METHOD'] == 'POST') { if( isset($_POST['username'], $_POST['password']) && !empty($_POST['username']) && !empty($_POST['password']) ) { $username = $_POST['username']; $password = $_POST['password']; $sql= 'SELECT * FROM `users` WHERE `username` = :username AND `password` = :password LIMIT 1'; //SQL query with named placeholders $stmt = $db->prepare($sql); //Returns a PDOStatement class object $stmt->bindParam(':username',$username,PDO::PARAM_STR,16); $stmt->bindParam(':password',$password,PDO::PARAM_STR,16); $stmt->execute(); $result = $stmt->fetch(PDO::FETCH_ASSOC); $error = $stmt->errorInfo();//Debug if($error[0] != '00000') printf('SQL Error: <pre>%s</pre>', print_r($error, true)); if($stmt->rowCount() > 0) { $_SESSION['loggedIn']= "true"; header("Location: uploader.php"); } else { echo 'Sorry username/password wrong'; echo '<br><a href="login.php">Try Again</a></br>'; } </code></pre>

Querying!

Guidance

An individual column

Larger individual text columns get their own page to allow for proper reading.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload