Registration form - upload picture

Question

Registration form - upload picture

I am working on a registration form for a website, I am trying to upload a photo to the server and transfer the file path to the database.

This is probably a simple problem, since I'm pretty new to php and mysql.

Here is my standard form, which we will call register.php . I cut out all other input than image.

<form name="reg" action="code_exec.php" onsubmit="return validateForm()" method="post"> <input type="file" id="inputImage" Name="photo"> <button class="btn btn-large btn-success" type="submit">Register</button> </form>

This is an executable file that we will call code_exec.php

 <?php session_start(); include('connection.php'); $fname = $_POST['fname']; $lname = $_POST['lname']; $mname = $_POST['mname']; $address = $_POST['address']; $contact = $_POST['contact']; $pic = $_POST['pic']; $username = $_POST['username']; $password = $_POST['password']; $skype = $_POST['skype']; $email = $_POST['email']; //This is the directory where images will be saved $target = "upload/"; $target = $target . basename( $_FILES['photo']['name']); //This gets all the other information from the form $pic = ($_FILES['photo']['name']); //Writes the photo to the server if (move_uploaded_file($_FILES['photo']['tmp_name'], $target)) { //Tells you if its all ok echo "The file ". basename( $_FILES['uploadedfile']['name']). " has been uploaded, and your information has been added to the directory"; } else { //Gives an error if its not echo "Sorry, there was a problem uploading your file."; } mysql_query("INSERT INTO member(fname, lname, gender, address, contact, picture, username, password, skype, email, photo)VALUES('$fname', '$lname', '$mname', '$address', '$contact', '$pic', '$username', '$password', '$skype', '$email', '$pic')"); header("location: index.php?remarks=success"); mysql_close($con); ?>

How to find the path to the image file?

+4

html php mysql forms registration

user2462645 Jun 14 '13 at 15:02

source share

5 answers

Brijesh dubey · Answer 1 · 2017-05-14T01:53:28+0000

In code

Front

 <form name="reg" action="code_exec.php" onsubmit="return validateForm()" method="post"> <input type="file" id="inputImage" Name="photo"> <button class="btn btn-large btn-success" type="submit">Register</button> </form>

After changes

 <form name="reg" action="code_exec.php" onsubmit="return validateForm()" method="post" enctype="multipart/form-data"> <input type="file" id="inputImage" Name="photo"> <button class="btn btn-large btn-success" type="submit">Register</button> </form>

You just add enctype="multipart/form-data" in the html form tag

Description

1. When you load any type of file from the form, you must write the enctype attribute on the form element.

thanks

xfix · Answer 2 · 2013-06-14T15:19:12+0000

It's easy, just add $target in your SQL query.

 // Escape the string, so you wouldn't be affected by SQL injection. // Move to MySQLi or PDO, and follow guide http://bobby-tables.com/php.html // to have your queries automatically escaped, as it easy to forget about // using mysql_real_escape_string() (also, it annoying to type it). $target = mysql_real_escape_string($target); mysql_query("INSERT INTO member(..., target) VALUES (..., '$target')");

Saqib malik · Answer 3 · 2016-12-21T21:56:21+0000

just use the layout I provided:

to use html, remember that you can always improve it:

 <form action="nameofthepage.php" method="post" enctype="multipart/form-data"> <table align="center" width="750"> <tr align="center"> <td colspan="6"><h2>Create an Account</h2></td> </tr> <tr> <td align="right">Customer Name:</td> <td><input type="text" name="c_name" required/></td> </tr> <tr> <td align="right">Customer Email:</td> <td><input type="text" name="c_email" required/></td> </tr> <tr> <td align="right">Customer Password:</td> <td><input type="password" name="c_pass" required/></td> </tr> <tr> <td align="right">Customer Image:</td> <td><input type="file" name="c_image" required/></td> </tr> <tr> <td align="right">Customer Country:</td> <td> <select name="c_country"> <option>Select a Country</option> <option>Afghanistan</option> <option>India</option> <option>Japan</option> <option>Pakistan</option> <option>Israel</option> <option>Nepal</option> <option>United Arab Emirates</option> <option>United States</option> <option>United Kingdom</option> </select> </td> </tr> <tr> <td align="right">Customer City:</td> <td><input type="text" name="c_city" required/></td> </tr> <tr> <td align="right">Customer Contact:</td> <td><input type="text" name="c_contact" required/></td> </tr> <tr> <td align="right">Customer Address</td> <td><input type="text" name="c_address" required/></td> </tr> <tr align="center"> <td colspan="6"><input type="submit" name="register" value="Create Account" /></td> </tr> </table> </form>

and for using php:

 <?php if(isset($_POST['register'])){ $ip = getIp(); $c_name = $_POST['c_name']; $c_email = $_POST['c_email']; $c_pass = $_POST['c_pass']; $c_image = $_FILES['c_image']['name']; $c_image_tmp = $_FILES['c_image']['tmp_name']; $c_country = $_POST['c_country']; $c_city = $_POST['c_city']; $c_contact = $_POST['c_contact']; $c_address = $_POST['c_address']; move_uploaded_file($c_image_tmp,"customer/customer_images/$c_image"); $insert_c = "insert into customers (customer_ip,customer_name,customer_email,customer_pass,customer_country,customer_city,customer_contact,customer_address,customer_image) values ('$ip','$c_name','$c_email','$c_pass','$c_country','$c_city','$c_contact','$c_address','$c_image')"; $run_c = mysqli_query($con, $insert_c); $sel_cart = "select * from cart where ip_add='$ip'"; $run_cart = mysqli_query($con, $sel_cart); $check_cart = mysqli_num_rows($run_cart); if($check_cart==0){ $_SESSION['customer_email']=$c_email; echo "<script>alert('Account has been created successfully, Thanks!')</script>"; echo "<script>window.open('customer/my_account.php','_self')</script>"; } else { $_SESSION['customer_email']=$c_email; echo "<script>alert('Account has been created successfully, Thanks!')</script>"; echo "<script>window.open('checkout.php','_self')</script>"; } } ?>

BUT DO NOT FORGET CHANGING THE NAME OF TABLES AND VALUES HOPE IS HEPLE!

AGM Tazim · Answer 4 · 2017-02-22T08:28:42+0000

When you used move_uploaded_file($_FILES['photo']['tmp_name'], $target) , the image moved to your $target path. So the path for the image is $target . Now just use $target instead of $pic for the request function you used. Like-

 $target = mysql_real_escape_string($target); //escape string for sql injection mysql_query("INSERT INTO member(fname, lname, gender, address, contact, picture, username, password, skype, email, photo)VALUES('$fname', '$lname', '$mname', '$address', '$contact', '$target', '$username', '$password', '$skype', '$email', '$pic')");

ajay ramgarhia · Answer 5 · 2017-09-02T06:40:58+0000

When you need to add the <form method="" action="" enctype = "multipart/form-data"> attribute to the <form method="" action="" enctype = "multipart/form-data"> to upload the photo / media from the form. Without this, media loading will not work.

Also remember to use the post method only to download media

Registration form - upload picture

More articles: