Again we are using MySQL database.Create a database(here i have created one called as “test”).Now create a table ‘login’ with two fields namely ‘username’ and ‘password’.Make ‘username’ the primary key as we do not want the same username to be used more than once.

CREATE TABLE `test`.`login1` (
`username` VARCHAR( 30 ) NOT NULL ,
`password` VARCHAR( 30 ) NOT NULL ,
PRIMARY KEY ( `username` )
)

Now all that is needed is a login form and some PHP code to read the values entered in the textboxes and to verify them against the values in the database. Here is the code of login.php:


<html>
<head>
<title>
<h2>Login Form</h2>
</title>
</head>
<body>
<?php
//display the form if it has not been submitted yet
if(!isset($_POST['submit'])){
?>
<form method="post" action="login.php">
Username:<input type="text" name="username"/></br>
Password:<input type="password" name="password"/></br>
<input type="submit" name="submit" value="Login"/>
</form>
<?php
//if the form has been submitted,check entered values against the database
}
else
{
$username=$_POST['username'];
$password=$_POST['password'];
//attempt the database connection
$mycon=mysql_connect("localhost","root","");
if(!$mycon)
{die('Could not connect'.mysql_error());}

mysql_select_db("test",$mycon);
$result=mysql_query("select * from login where username='$username' and password='$password'");
$num=mysql_numrows($result);
if($num==0)
{
echo "Incorrect Login Details";
}
else
{
echo "Login Sucessful";
}
mysql_close($mycon);
}
?>
</body>
</html>

Download the entire code

The below fig illustrates how the form will look like.

Here when the form is submitted,the secnd half of the script comes into play.First,we save the entered values into two variables and then run the query “select * from login where username=’$username’ and password=’$password’”. Now the idea behind this is that if there is a row satisfying the above query,the number of rows returned will be more than zero.Also,we only need to check if the number of rows is more than zero since the username is a primay key and hence there can be only one row that can satisfy the above query.

The $num=mysql_numrows($result); code will assign the number of rows to the $num variable.All we have to check now is whether the variable is zero or not.If it is zero,then the login credentials submitted are incorrect else you have submitted the right username and password.

Finally dont forget to close the connection.Even though it will not generate an error in the above case,it is always a good practice to close the connection to keep the server running well.

The above form is a very simple login form.However,we will be using encrypted passwords in most cases.In that case,before running the query,encrypt the entered password using the same encryption technique used when the values were submitted to the database.To learn more about encryption in PHP,follow this link.

The earliest version of PHP,codenamed as PHP/FI was a fairly primitive language with support for form input and mSQL database.It lacked the security features and other features of today’s available versions.It constituted of Perl like variables,automatic interpretation of form variables and HTML embedded syntax.The first improvement to the basic language came from developer Rasmus Lerdorf,(who actually created PHP/FI),who improved the PHP/FI and released the PHP/FI 2.0.

In 1997,developers Andi Gutmans and Zeev Suraski rewrote the PHP syntax to form the PHP/FI 3.0 and the popularity of the language began to rise.More and more people participated in the enrichment of the language as the project was open sourced.The PHP/FI 3.0′s syntax was more powerful and consistent and allowed independent developers to create their own add ons and extensions.


The next version PHP 4.0 was released in 2000 boasted an improved object model and various security and performance improvements.OOP concepts were now being supported by PHP and this made programming a lot easier and hence the popularity of the open sourced language rose even further.Abstract classes,constructors,destructors and other OOP concepts became available to use.The new engine called as ‘ZEND’(ZEev and ANdi) made it possible to improve the performance of complex applications.

PHP 5.0 introduced exception handling,data access layer and an integrated database engine to further enhance the already feature-rich language.The PHP 5.0 engine(Zend Engine 2.0) also came with an optimized memory manager which improved the performance of the language in terms of speed of execution.The newest versions now supports namespaces an built in support for SQLite 3.0 and much more.

Well all these features have prompted developers to use PHP on their websites and hence PHP is now used in almost 30 million websites.Feature rich(now with over 5000 built in functions) yet free of cost.What more would you want?

For this first we need to define the location of the images.This directory should be accessible by the script owner,meaning you should have read permissions on the directory.The directory can be defined as follows:

$photosDir = ‘./photos’;

If you are using Wamp server,create the folder ‘photos’ inside the ‘www’ root folder for the above code to work.Now set up an array containing the common file extensions for the images.
Initialize an array to read the directory contents and then build the photo list.

To open the directory,we use the opendir() function.The opendir() function takes the above formed variable $photosDir,that is the variable containing the location of the images.The openDir() returns a pointer to the directory named as the parameter.


Now using the above pointer,we iterate over the directory using the readdir() function,which returns a single entry each time.Once done,use the closedir() funcion to close the file pointer.

if (file_exists($photosDir)) {
$dp = opendir($photosDir) or die (‘ERROR: Cannot open directory’);
while ($file = readdir($dp)) {
if ($file != ‘.’ && $file != ‘..’) {
$fileData = pathinfo($file);
if (in_array($fileData['extension'], $photosExt)) {
$photosList[] = “$photosDir/$file”;
}
}
}
closedir($dp);

Now iterate through the above formed array-photoList[] and display each image.For that, run a ‘for’ loop and define the img src in each case:

<img height=”150″ width=”200″
src=”<?php echo $photosList[$x]; ?>” />

Here is the screen shot of what you will achieve.

Here is the entire code.

<html>
<head>
<title>Creating An Image Gallery</title>
</head>
<style type="text/css">
ul {
list-style-type: none;
}
li {
float: left;
padding: 10px;
margin: 10px;
font: bold 10px Verdana, sans-serif;
}
img {
display: block;
border: 1px solid #333300;
margin-bottom: 5px;
}
</style>
<body>
<h2>Creating An Image Gallery</h2>
<ul>
<?php
// define location of photo images
$photosDir = './photos';
// set up an array of known extensions
$photosExt = array('gif', 'jpg', 'jpeg', 'tif', 'tiff', 'bmp', 'png');
// initialize array to hold filenames of images found
$photosList = array();
// read directory contents and // build photo list
if (file_exists($photosDir)) {
$dp = opendir($photosDir) or die ('ERROR: Cannot open directory');
while ($file = readdir($dp)) {
if ($file != '.' && $file != '..') {
$fileData = pathinfo($file);
if (in_array($fileData['extension'], $photosExt)) {
$photosList[] = "$photosDir/$file";
}
}
}
closedir($dp);
} else {
die ('ERROR: Directory does not exist.');
}
// iterate over photo list and display each image
if (count($photosList) > 0) {
for ($x=0; $x<count($photosList); $x++) {
?>
<li>
<img height="150" width="200"
src="<?php echo $photosList[$x]; ?>" />
</li>
<?php
}
} else {
die('ERROR: No images found in directory');
}
?>
</ul>
</body>
</html>

Download the full code
Note:Don’t forget to change the path of the directory containing the images

<html>
<body>

<form action=”welcome.php” method=”post”>
Name: <input type=”text” name=”username” />
<input type=”submit” />
</form>

</body>
</html>

Now when the submit button is clicked,the “welcome.php” script is called,which looks something like this

<html>
<body>

Welcome <?php echo $_POST["username"]; ?>!

</body>
</html>

The above form passes values using the “post” method and hence the $_POST function is used to retrieve the form data.

The $_GET environment variable is used to retrieve data from forms with the “get” method.The main difference between the $_GET and $_POST is that the information that is passed from the form is visible to everyone,(it will be visible in the browser) and also there is a space limitation on the amount of information that can be send.

Lets see the above example using the $_GET function

<html>
<body>

<form action=”welcome.php” method=”get”>
Name: <input type=”text” name=”username” />
<input type=”submit” />
</form>

</body>
</html>

Here to retrieve the value,we use the $_GET function in the welcome.php script

<html>
<body>

Welcome <?php echo $_GET["username"]; ?>!

</body>
</html>

The difference between the $_GET and $_POST functions can be noticed in the URLs of the two.

URL using get

URL using post

As such,we should not use the $_GET function to pass sensitive data like password or credit card numbers.Also the amount of information that can be passed should not exceed 1024 characters.The variables are displayed in the URL and hence $_GET allows bookmarking of the web pages.Also,we cannot send binary data like images to the web server using get method.

When using $_POST,there is no limit in the amount of information that can be passed and also the data is invisible.But,since the variables are not available with the URL,we cannot bookmark the web page.

The $_REQUEST function can be used to collect information sent with both get or post methods.

<html>
<body>

Welcome <?php echo $_REQUEST["username"]; ?>!

</body>
</html>

$CurrentTime=time();
echo(date("F d Y",$CurrentTime));
?>

Output: January 1 2009

Another time function used is mktime().It is similar to the time() function except that it outputs a specified date and time and not the current time.In effect it artificially generates a timestamp based on inputed date and time.
The format for mktime() is

mktime ( hour, minute, second, month, day, year, is_dst).

hour: Specifies the hour
minute:Specifies the minute
second : Specifies the second
month :Specifies the month
day: Specifies the day
year: Specifies the year
is_dst: =1 if the time is during daylight savings time (DST),
=0 if it is not,
=-1 default value if DST is unknown

<?php echo(date("M-d-Y",mktime(0,0,0,12,32,2008)));
?>

The output is: Jan-1-2009

The date() function formats the date into a human readable format.
The syntax for the date() function is
date(format,timestamp);
The format parameter is used to specify the format in which you want to see the date.
The timestamp is optional.The current timestamp is taken if this parameter is not passed.

The format is specified by using different letters.Some of the widely used letters are
d-the day of the month in numeric
m-Month in numeric
Y-4 digit Year representation

<?php
echo date("Y-m-d");
echo date("D M d, Y");
?>

Output:
2009-06-17
Wed Jun 17,2009

Using the timestamp parameter,we can find dates either using the strtotime() function or the mktime() function.An example for this is if we want to find yesterday’s date using today’s date.

echo "Yesterday's Date: ".date("Y-m-d", strtotime("-1 days"));
?>

Output: 2009-06-16

For any operations to be performed,we need a file.Lets first create a file.
In PHP,a file is created using the fopen() function.It may seem odd,but i can clarify that.
When fopen() is called,it will check whether a filename(that was given as argument to fopen()) exists or not.If the file does not exist,it will create the file.
fopen() takes two arguments,the name of the file and the access mode(whether you are opening the file for reading,writing or appending)
In order to create the file,we should specify the access mode as “w” which stands for write.

Download File Creation Code

When fopen() is called,the function returns a handle,which is used for further manipulations on the file.
Now that we have created a file “test.txt”,lets do some operations on the same.

In the above code,we created test.txt using the fopen() function.Now lets use the fopen() to do some manipulations.

There are mainly three ways in which the file can be opened

The read mode,
The write mode and the
The append mode

The read mode
The read mode is specified using ‘r’ and the file is opened just for reading
the write mode
The write mode is specified using ‘w’.Here you should be careful.When ‘w’ is used,all the contents of the file are erased and the data will be written from the beginning of the file.
The append mode
The append mode is specified using ‘a’.Here the file pointer begins from the end of the file and hence we need not fear that the contents may be erased.

But,these are not the only access modes available.The file can also be opened in such a way that both reading and writing is allowed.For that we place a + sign after the file mode character.

Read/Write-’r+’
Here the file pointer is at the beginning of the file.
write/read-’w+’
It is like the r+,but it deletes all the contents of the file first.
Append-’a+’
The file pointer is at the end of the file.

fclose() should be called to free up the resources,even though the server will close all the files when the php code finishes execution.

Now,lets see how we can write to a file.To write to a file,the fwrite() function is used.First we need to open the file in write mode.fwrite() also takes two arguments,the file handle and the data to be written.So lets write some data into test.txt.

Download File Write Code

Note that if at all a test.txt file exists,the contents in the file is over written by “three2tango.com”.
If you want to add data into a file,you need to open the file in append mode instead of the write mode.

Download append to file Code

Here the contents are not over written.Instead the data “three2tango.com” is appended to the end of file.

Now,lets see how we can read from a file.
To read information from a file,the fread() is used.
For reading the file,the file should be opened in read mode.
fread() also takes two arguments,the fle handle and an integer value.The integer tells the function how much data is to be read.So if you want to read 10 characters from the file,you will have to specify the integer as 10(1 character=1 byte)

Download File read Code

To read the entire contents,you need to know the file size.For this,specify as the second argument,the filesize.The filesize() function can be used for this purpose.

Download code to read entire file

In addition,for reading line by line,the fgets() function can be used.This takes the filehandle as the argument.
Syntax:fgets($fileHandle);

Finally,lets see how we can delete a file.For deleting a file,the unlink() function is used.Make sure that you close the file before unlinking.

Download File deletion Code

Note:Be careful when you do operations on files.You may end up editing the wrong file,accidentally deleting a file’s contents or filling garbage values.

A Cookie is basically a message given by the web server to the web browser.This message is stored in a text file and the message is sent back to the server every time the browser requests a page from the web server.The main purpose is to identify the users.Here we will see how to set and retrieve values from a cookie in PHP.
In PHP, a cookie is set using the setcookie() function.

Syntax: setcookie(cookiename,value,expiration);

Lets see a simple example to set a cookie.

<?php
setcookie("username","vivek",time()+2592000);
?>
<html>
....
</html>

In the above example a cookie named “username” is created with value “vivek”.The Cookie expires in 30 days.
The setcookie() function url encodes the value so that it can be safely transmitted over the internet.url encoding converts the character to a format consisting of a % symbol followed by a 2 digit hexadecimal number.
Note that the cookie is set before the html tag.

You can also use the setrawcookie() function if the information to be transmitted is not so important.setrawcookie() does not url encode the cookie value.

Having set the cookie,lets see how we can retrieve the cookie.When the cookie was set using setcookie(),the value was url encoded and send.When retrieved,this value is automatically decoded.
To retrive the cookie value,the $COOKIE variable is used.
Lets retrieve the cookie we just created above.

<html>
<body>
<?php
if(isset($_COOKIE["username"]))
echo "Welcome back to three2tango.com". $_COOKIE("username");
else
echo "Welcome to three2tango.com";
?>
</body>
</html>


The isset() function checks whether the cookie exists.

To destroy a cookie,simply use setcookie() again with the expiration time set to the past.

<?php
setcookie("username","",time()-3600);
?>

The setcookie() function can be used only for browsers that supports cookies.

Sessions:

The difference between a session and a cookie is that a cookie is set in the user’s browser while the session is stored on the web server for later use.A common use is when you start an application and close it.The web server cannot retrieve your information because the HTTP address does not maintain state.The scope of the session is between
the time you enter the website and the time you leave the website.In effect, a session stores information of a session the website.

The session_start() function is used to start up the session. Like the setcokie(),the session_start() function should be placed before the html tag.
So,lets see how to start a session

<?php
session_start();
$_SESSION['username']=$_POST[username];
?>
<html>
...
</html>

This page accepts data from another page and sets the username as the session variable which will now be available throughout the application.
A session can be destroyed using the unset() or the session_destroy function
<?php
unset($_SESSION['username']);
?>

The difference between unset() and session_destroy is that unset() merely free up the session variable while session_destroy will completely reset your session and the session data becomes unavailable.

<?php
session_destroy();
?>

To get the session id you can use the session_id() function.It returns the session id for the curent session or an empty string if it is a new session.

Like most other programming languages, PHP also offers you a wave of in built functions.But here lets see how to create user defined functions in PHP.

A function as you will know will be executed when the function is called.The basic syntax for the function is the same as you would see in most of the programming languages

function function_name(list of parameters if any)
{
–function body—
}

Make sure that the function name does not start with a number.
Lets see our first PHP program with a function

<html>
<body>
<?php
function welcomemsg()
{
echo "and you are learning how to create functions in PHP" ;
}
echo "Welcome to three2tango.com";
welcomemsg();
?>
</body>
</html>

Output: Welcome to three2tango.com and you are learning how to create functions in PHP

This is a very basic example of a function with no parameters or returning any value.Now,lets create a function with parameters

<html>
<body>
<?php
function addnumbers($x,$y)
{
$sum=$x+$y;
return $sum;
}
$total=addnumbers(3,8);
echo "Result of addition:".$total;
</body>
<html>


Output: Result of addition:11

The above function addnumbers takes two arguments and also returns a value.Easy right?
To make your code more readable,you might want to use functions.It also can save a page to be loaded again and again as the function is executed only when it is called.

Classes:

To enhance the Object oriented concepts in PHP,it also supports the use of classes.Recall that a class is just an aggregation of variables and functions, or in more technical terms we can define classes as those which define objects.

The syntax of a class:

class class_name
{
//variables
//functions
}

Every class has a constructor and it is usually the first function inside the class.The constructor is a function that has the same name as that of the class and is run every time an object of the class is created.

Lets first see a simple class having only variables

<?php
class Country
{
var $states=28;
var $capital="New Delhi";
}
$india=new Country();//creating an object of the class
echo "India has ".$india->states."states and its capital is"$india->capital;
?>

Output: India has 28 states and its capital is New Delhi.

Note that variables declares in the class are preceded by the var keyword.Now lets see a class having a function

<?php
class Country
{
var $states=28;
var $capital="New Delhi";
function continent()
{
echo "Asia";
}
}
$india=new Country();
$india->region="Asia";
echo "India has ".$india->states."states and its capital is"$india->capital;
echo "India lies in the continent of ". india->continent;
?>


Output: India has 28 states and its capital is New Delhi India lies in the continent of Asia

Finally lets see an example of a php class with constructors

<?php
class Country
{
var $states=28;
var $capital="New Delhi";
function continent($region)
{
$this->region=$region;// $this allows us to refer to the object even before knowing its name.
}
function stats()
{
return "This".get_class($this)." has".$this->states."states" and has its capital in".$this->capital."and lies in".$this->region;
}
}
$india=new Country("Asia");
echo "India:";
echo $india->stats();
?>

Output: India: This Country has 28 states and has its capital in New Delhi and lies in Asia

The get_class() function is an in built function in PHP which will return the name of the classs of the object.Here the object created id India of the class Country and hence “Country” is returned.
Here we have also seen how to add attributes to the objects.Note that we add the attribute “Asia” to the object “india”

This post covered the basics in creating user defined functions and classes in PHP.Make use of the classes and functions to make your code more readable and ordered.The various object oriented concepts like inheritance etc can be used to enhance the functionlity of your application by the use of classes.

Basic syntax of the crypt() function is
crypt(your string,salt)

The salt parameter influences how the encryption will work

Mainly 4 types of salts are supported.
Two DES encryption salts
CRYPT_STD_DES(2 character salt)
CRYPT_EXT_DES(9 character salt)
and
CRYPT_MD5(12 character salt,starts with $1$)
CRYPT_BLOWFISH (16 character salt,starts with$2$ or $2a$)

Lets see the working of the crypt() in action
Read Basics about PHP and MySQL first.

Firstly i have create table in database “test”.
Table name=registration
Fields
uid varchar(255)
pwd varchar(255)

I am trying to insert into this table,with the password in the encrypted form.Here is the html form for this.

<html>
<body>
<form action="register.php" method="post">
UserName<input type="text" name="username" />
Password <input type="password" name="password" />
<input type="submit" />
</form>
</body>
</html>
Note that the form data is sent to register.php by the POST method.

Now lets see the register.php page

<?php
$mycon = mysql_connect("localhost","root","");
if (!$mycon)
{
die('Could not connect: ' . mysql_error());
}
mysql_select_db("test", $mycon);
$encryptedpwd=crypt($_POST['password'],'d4');
echo $encryptedpwd;
$sql="INSERT INTO Registration(uid,pwd) VALUES ('$_POST[username]','$encryptedpwd')";
if (!mysql_query($sql,$mycon))
{
die('Error: ' . mysql_error());
}
echo "Sucessfully registerd";
mysql_close($mycon)
?>
Note that here i have used a standard DES encryption which has a 2 character salt ‘d4′.
In the registration table,the password will be inserted in the encrypted format.

In the login form,we do the same thing.When crypt() is called,the password entered is encrypted and checked against the already encrypted password to see whether it matches. You will have to use the same salt you used earlier for this to work.

The crypt() using different types of salts

$encryptedpwd=crypt($_POST['password'] , ‘g477d.reg’);
$encryptedpwd=crypt($_POST['password'] , ‘g477d.reg’);
$encryptedpwd=crypt($_POST['password'] , ‘$1$ad235de$’);
$encryptedpwd=crypt($_POST['password'] , ‘$2$dads….$’);

What you need:

In order to code in PHP you will need to install

• PHP
• MySQL database
• Apache server(commonly used web server) or

You can install the WAMP server,which is a package that includes PHP,Apache and the MySQL database.

Follow this link to know how to install WAMP

Basic PHP syntax
A PHP block starts with the <?php tag and ends with the ?> tag.

Your first PHP program:

<html>
<body>
<?php
$txt1= “Welcome to www.three2tango.com”;
echo $txt1;
?>
</body>
</html>

echo is used for output to the screen.
As shown above,a PHP variable starts with the $ sign.You would have noticed that the variable is not declared anywhere.PHP is a loosely coupled language and we do not need to declare the variable to use it.Based on the input to the variable,PHP converts the variable into the correct datatype.

In the example above PHP automatically converts txt1 to a string variable when “Welcome to www.three2tango.com” is assigned to it.

<html>
<body>
<?php
$txt1= “Welcome to www.three2tango.com”;
$txt2=”And You are studying PHP”;
echo $txt1.”".$txt2;
?>
</body>
</html>

The above example will output “Welcome to www.three2tango.com And You are studying PHP”
‘.’ is the concatenation operator in PHP.

The $_GET and $_POST variables:

The $_GET variable is used to collect values from a form with method=”get”.
The $_POST variable is used to collect values from a form with method=”post”.
In addition you can make use of the $_REQUEST variable to get the results from a form data sent with both GET and POST methods.

MySQL and PHP:

To use MySQL from the WAMP server,click on the WAMP server icon and select localhost.click on the “phpmyadmin” link to open the interface to the mySQL database.Here you can create the database and tables.

I created a database “test” and added a table “persons” with the fields firstname,lastname,city and address.

Suppose you want to insert data into the table and the display the data.
First you create a html page from where you can input the values.The following is the html page.

<html>
<body>
<form action=”insert.php” method=”post”>
Firstname: <input type=”text” name=”firstname” />
Lastname: <input type=”text” name=”lastname” />
City: <input type=”text” name=”city” />
Address:<input type=”text” name=”address”/>
<input type=”submit” />
</form>
</body>
</html>

Note that i have used the POST method to send form data to insert.php.The insert.php file retrives values from the form using the $_POST variable, and also displays the inserted data.

Here is the insert.php code

<?php
$mycon = mysql_connect(“localhost”,”root”,”");
if (!$mycon)
{
die(‘Could not connect: ‘ . mysql_error());
}

mysql_select_db(“test”, $mycon);

$sql=”INSERT INTO Persons (LastName,FirstName,City,Address)
VALUES
(‘$_POST[lastname]‘,’$_POST[firstname]‘,’$_POST[city]‘,’$_POST[address]‘)”;

if (!mysql_query($sql,$mycon))
{
die(‘Error: ‘ . mysql_error());
}
echo “1 record added”;

$result=mysql_query(“select * from persons order by firstname”);

echo “<table border=’1′>
<tr>
<th>Firstname</th>
<th>Lastname</th>
<th>City</th>
<th>Address</th>
</tr>”;

while($row = mysql_fetch_array($result))
{
echo “<tr>”;
echo “<td>” . $row['FirstName'] . “</td>”;
echo “<td>” . $row['LastName'] . “</td>”;
echo “<td>” . $row['City'].”</td>”;
echo “<td>” . $row['Address'].”</td>”;
echo “</tr>”;
}
echo “</table>”;
mysql_close($mycon)
?>

Here the output of the above code:

mysql_connect is used to conect to the database.
mysql_close closes the connection.
mysql_select_db connects to the database-in the above example,itr connects to the test database.
mysql_query performs the query on the selected database
mysql_fetch_array gets the result of the query row after row in an associative array