edrackham

Solution to Form Submit 403 Error

Ed — Tue, 10 Feb 2009 14:51:25 +0000

Have you ever had a problem where you get a HTTP 403 error from submitting a form?
Does this form have a field that submits a URL?

If yes to the above two questions, I think I know the problem you're having, and have a solution. It's to do with mod_security (an Apache module) and the 'http://' part of the URL.

(more…)

PHP Date Picker

Ed — Fri, 16 Jan 2009 13:38:18 +0000

This is a simple to use script that can be called at anytime to insert a date picker into your form.

Example

Your browser does not support IFRAMES. Please view the date picker at http://edrackham.com/tutorials/php-date-picker/

Usage

Just make a call to

echo DatePicker();

wherever you want the date picker to show. If you want to use it multiple times, just call it multiple times like

echo DatePicker();
echo DatePicker();

but make sure you have the first line of the code un commented.

The Code

$iDatePickerCounter = "; // Used for having multiple date pickers
// comment it out if you're only going to
// use ONE datepicker call on this page.
// (It'll make the form element names
// nicer to work with).
$sYearName = 'Year'; // Base name for the Year form element
$sMonthName = 'Month'; // Base name for the Month form element
$sDayName = 'Day'; // Base name for the Day form element

$iFromYear = 1985; // Starting Year
$iToYear = 2030; // Ending Year

function DatePicker(){
// Call up the global variables
global $iDatePickerCounter,
   $sYearName,
   $sMonthName,
   $sDayName,
   $iFromYear,
   $iToYear;

// Set up some base variables
$sPostFix = ";
$sNL = "\r\n";

// If we're using the counter (for more than one
// date picker), increment the counter and create
// the postfix string.
if(isset($iDatePickerCounter)){
$iDatePickerCounter++;
$sPostFix = '_' . $iDatePickerCounter;
}

// Start the coding of the SELECT areas
$sYearDropDown = '$sMonthName . $sPostFix . '" id="' . $sMonthName . $sPostFix . '">' . $sNL;
$sDayDropDown = '' . $sNL . $sNL;

// Month Loop
$sDummyDate = '2008-01-01';
for($i = 0; $i < 12; $i++){
$sMonthDropDown .= "\t" .'' . $sNL;
}
$sMonthDropDown .= '' . $sNL . $sNL;

// Day loop
for($i = 1; $i <= 31; $i++){
$sDayDropDown .= "\t" .' . '"';

// Here we're checking if a POST or GET variable with
// the same name as this SELECT element is set. If it
// is, then we're going to see if the values of the
// SELECT element (in this iteration) matches the
// value of the request element. If it does, well set
// this option as selected by default.
$sDayDropDown .= (isset($_REQUEST[$sDayName . $sPostFix])) ?
   (($_REQUEST[$sDayName . $sPostFix] == $i) ? ' selected="selected"' : ") :
   ";
$sDayDropDown .= '>' . $i . '' . $sNL;
}
$sDayDropDown .= '' . $sNL . $sNL;

// Return all three dropdowns
return $sYearDropDown . $sMonthDropDown . $sDayDropDown;
}

Functions Inc.

Ed — Sun, 04 Jan 2009 21:12:17 +0000

Functions Inc. is a new site I've started for all you guys to add your code snippets to. It's an online code snippet repository where you can add your useful snippets, as well as view others. You can keep your snippets private, just using the site as an online code library, or choose to share them with others.

Why not head over there now and check it out. It's free!

Awesome Form Validation

Ed — Wed, 25 Jun 2008 13:33:00 +0000

I don't know about you, but I always work hard on my form validation (and would never use just JUST JavaScript to validate input locally). It puts a smile on my face when a form is technically valid, yet won't submit:

Simple Web 2.0 Design and CSS Tutorial

Ed — Mon, 17 Mar 2008 16:37:28 +0000

This tutorial aims at teaching you how to make a simple "Web 2.0" design.

Setup

To start, let's create a new document in Photoshop, 1024px (width) by 700px (height).

Guides

Now, lets set up predefined areas (for areas like the header, and content) using guides. We will be creating four guides for now.

First Guide: Horizontal, position: 160px
Second Guide: Horizontal, position: 620px
Third Guide: Vertical, position: 62px
Fourth Guide: Vertical, position: 962px

You should now have something that resembles the following (ignore the fact that there's the BG coloured in there, that wasn't supposed to be there just yet):

Background

"Web 2.0" seems to be all about gradients, so choose a foreground and background colour. I used foreground: #6d6657 and background: #302a1d. Use the gradient tool, then click at the top of the document, and drag down to the first horizontal guide (160px down). You should have something like the following:

Content Area

Choose the rounded rectangle tool, and set a corner radius of 10px. Now make sure that your window is expanded a little more than the actual document size so that you can begin to draw your content area just outside the top of the document. Start about 15px above the document, and at the first vertical guide (62px in). Drag out a rounded rectangle down to the bottom horizontal guide, and aligned with the right hand vertical guide (962px in). You should see the following:

Now, add the following layer style to the rounded rectangle:

Header

Now lets set up the header. Create a new layer and use the Rectangular Marquee Tool and draw from the top left of the document all the way to the right, and down to the first horizontal guide. Fill with a colour of your choice. If you're following this guide, I used #918977. Change the blend mode to 'Darker Color' and add a drop shadow using the following settings:

Now grab a decent pattern, there are some nice ones at SquidFingers. Choose one, open it in photoshop and define it as a pattern (steps 1 & 2 only). IMPORTANT: Remember the width of the image. Mine is 34px. Once you have your pattern defined, bring up the main layout document we're working on and Ctrl+Click on the image part of the header layer in the layers panel. This should have selected the header section. Create a new layer above and choose Edit > Fill. Select your newly defined pattern, and fill this header area.

Now, set the Blending Mode to Luminosity, and press Q to enter Quick Mask mode. In Quick Mask mode, with the new layer selected (with the nice pattern on it) - choose the Gradient tool.

Drag a gradient from the top of the screen, down to the first horizontal guide (160px down). You'll have a red gradient, don't worry about that - we're in Quick Mask mode and it's supposed to do that. Now press Q to exit the Quick Mask mode, then press delete. Your pattern should now fade out as it gets closer to the bottom of the header section:

Saving your Slices

That's your layout basically done (without any content / images). Now to save the slices for our XHTML layout. Create two new horizontal guides, the first one set with a position of 170px, and the second with a position of 610px. Now, use the slice tool, and create a slice from the top left, across the entire width, and down to the first new horizontal guide (170px down). Create a second slice starting from the left and down at 170px, drag it all the way to the right and down to the second new horizontal guide. Create a third slice with the remaining space. You should have the following:

Now choose 'File > Save for Web & Devices' and save the images. This process will create a folder in your directory you chose to save them in. Within this folder will be your three sliced images. Browse to that folder, and delete the middle image. We don't need this. Name the header slice 'header' and the footer image 'footer'. Move both the header and footer images to your web image directory.

Now, back in photoshop, using the Rectangular Marquee tool select from the top left, all the way to the bottom and go in the number of pixels that match the width of your pattern you used earlier from the left edge of the document. Goto Edit > Copy Merged, then click File > New Document and make sure the dimensions are <width of pattern>px by 700px. Paste in the copied image, then File > Save for Web & Devices. Save this image as 'main_bg'. This is your main background image. Now, choose the Single Row Marquee Tool, and click once in the middle section of your main document (anywhere that the second slice contains). Do the same as before with the vertical slice… copy merged, open a new document, paste it in and save for web as 'content_bg'.

You should now have 4 main images:

header
footer
main_bg
content_bg

Creating the XHTML / CSS

Firstly, lets set up our directory structure. We will be needing the following:

index.html
design.css
folder for images

We will be wanting a final directory structure that resembles the following:

+-my layout/
  |
  +-img/
  | |
  | +- content_bg.png
  | +- footer.png
  | +- header.png
  | +- main_bg.png
  |
  +- design.css
  +- index.html

Navigate to your root folder for this tutorial (where the files are going to be saved). Create a new folder called img and copy your images into it.

Now create the XHTML document (index.html). Let's use the following Dreamweaver default as a nice structure to work from:

xmlns="http://www.w3.org/1999/xhtml">

http-equiv="Content-Type" content="text/html; charset=utf-8" />
</span></a></span>My Web2.0 Layout<span class="sc2"><span class="kw2">

Add the following div tags between the BODY tags:

id="wrapper">
id="header">

id="content">

id="footer">

Now it's time for the CSS. Create the new CSS file (design.css) and add the following CSS code:

@charset "utf-8";
/* CSS Document */

body {
margin: 0;
padding: 0;
font-family: "Century Gothic", Arial, sans-serif;
color: #333333;
font-size: 12px;
text-align: center;
background: url(img/main_bg.png) repeat-x #302a1d;
}

#wrapper {
width: 1024px;
margin: auto;
text-align: left;
}

#header {
background: url(img/header.png) no-repeat;
height: 170px;
}

#content {
background: url(img/content_bg.png) repeat-y;
}

#content h1 {
font-weight: normal;
font-size: 36px;
color: #918977;
margin: 0 80px 5px 80px;
}

#content p {
margin: 0 80px 5px 80px;
}

#footer {
background: url(img/footer.png) no-repeat;
height: 90px;
}

Now, attach the stylesheet to your XHTML document using:

href="design.css" rel="stylesheet" type="text/css" media="screen" />

anywhere between the HEAD tags.

Voila! We're done!

Extras

Play around with this simple layout design, create new images, change colours and edit the CSS. Take a look at my final design.

I changed the header image to include a logo and some links, and also added some images to the footer. It seems to be the web2.0 style that you incorporate faint logos at the bottom of your layout.

Online .htpasswd Generator

Ed — Fri, 07 Mar 2008 13:51:25 +0000

Use the following .htpasswd generator to secure your Apache web directories.

Your browser does not support IFRAMES. Please view the generator at http://edrackham.com/tutorials/online-htpasswd-generator/

Make sure you have a .htaccess and .htpasswd file in the directory you want to secure, then add the entries once you've generated your password.

Online MD5 Hash Generator

Ed — Fri, 07 Mar 2008 10:38:41 +0000

Here is a simple MD5 hash generator I created quickly as part of a useful toolset I'm planning to build up.

Your browser doesn't support IFRAMES. You can see the MD5 hash generator here.

The code to generate an MD5 hash using PHP is simple:

md5($string_to_convert);

Top 10 .htaccess Tips and Tricks

Ed — Thu, 06 Mar 2008 00:23:39 +0000

Custom Error Documents

Creating custom documents gives your site a more professional look, as not only are you providing a 'net' to catch unsuspecting visitors when they follow a bad link and such like, but they also allow you to customise the style of the page so you can maintain your basic site design by adding HTML.

# custom error documents
ErrorDocument 401 /error/401.php
ErrorDocument 403 /error/403.php
ErrorDocument 404 /error/404.php
ErrorDocument 500 /error/500.php

Control Access

Being able to control access to certain areas of your server can be very useful. The following example demonstrates how to only allow access from those connecting from a 192.168.0 LAN IP pool. This could be easily modified to only allow access from a single remote IP address or addresses.

# no nasty crackers in here!
order deny,allow
deny from all
allow from 192.168.0.0/24
# this would do the same thing..
#allow from 192.168.0

Hide and Deny Files

Hiding and denying access to files is crucial to servers that have sensitive data held within files that may be accessible via the website(s) on it. The following example demonstrates how to prevent acces to any files ending with .log - and is case insensitive (i.e. .LoG / .lOG / .loG).

"^.*\.([Ll][Oo][Gg])">
Order allow,deny
Deny from all
Satisfy All

Basic Rewriting

I have written a mod_rewrite tutorial, but this is worth a mention as a top 10 tip for .htaccess files as it's becoming more and more commonly used these days - primarily for SEO purposes.

This example will redirect a request for http://edrackham.com/page_one.htm to http://edrackham.com/page_one.php. The r=301 tells apache to send a proper HTTP Permanently Moved redirection (301), which will update the address bar in the browser window to show 'page_one.php'. Without this, you'd still see 'page_one.htm' even though you're seeing a PHP page. This helps SEO, as spiders and search engines will update their listings to reflect the PHP versions.

Options +FollowSymlinks
RewriteEngine on
RewriteRule ^(.+)\.htm$ http://edrackham.com/$1.php [r=301,nc]

Shorter URLs

Shorter URLs are beneficial, as visitors that persist in typing full URLs won't have to type as much, and they're more memorable. Do they benefit SEO, even though the full URL contains the same keywords? I don't know, maybe someone can tell me.

This example will rewrite a page requested as http://edrackham.com/files/code/apache.zip to http://edrackham.com/download.php?type=code&file=apache.

Options +FollowSymlinks
RewriteEngine on
RewriteRule ^files/(.+)/(.+).zip download.php?type=$1&file=$2 [nc]

Prevent Hotlinking

Preventing hotlinking can reduce bandwidth, by disallowing other websites from displaying images hosted on your server. The following rule basically says that if the referer is NOT edrackham.com, run the following rule. The rule (on the next line) says that if the request is for a .gif, .jpg or.png then redirect the visitor to http://edrackham.com/img/hotlink_f_o.png. I'll leave you to work out what the 'f_o' stands for.

Options +FollowSymlinks
# no hot-linking
RewriteEngine On
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^http://(www\.)?edrackham\.com/ [nc]
RewriteRule .*\.(gif|jpg|png)$ http://edrackham.com/img/hotlink_f_o.png [nc]

Hiding Page Extension

Similar to the mod_rewrite code above, this will redirect a request for product-3.html to products.php?id=3. As we're not using r=301, the requested page will remain in the browser's address bar.

Options +FollowSymlinks
RewriteEngine on
RewriteRule ^product-([0-9]+)\.html$ products.php?id=$1

Ban Selected User Agents

In my opinion, it'd be ace to block all requests from a Microsoft user agent, but alas, that wouldn't be too cool as some people are still hell-bent on using a non-standards compliant browser. Having said that, Microsoft is making their new IE8 release standards compliant by default.

The following provides some examples for blocking requests to your server from certain user agents.

#####################################
# Deny Useragents
#####################################

RewriteCond %{HTTP_USER_AGENT} ^FrontPage [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^Java.* [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^Microsoft.URL [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^MSFrontPage [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^Offline.Explorer [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^[Ww]eb[Bb]andit [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^Zeus [NC]
RewriteRule ^.*$ - [F]

Making Other Filetypes Executable

Ever wanted to make your site look like it runs off a new language such as .w00t files? Well you can with .htaccess! Adding this neat one-liner, you can request .w00t files, which will be served and interpreted as .php type files.

AddType application/x-httpd-php .w00t

Force Media Downloads

Sometimes, when clicking on media files, the browser wants to play or stream it directly from itself. Using the following rules, media files (.avi/.mpg/.wmv/.mp3 in this example) will provide a download dialog box instead.

# instruct browser to download multimedia files
AddType application/octet-stream .avi
AddType application/octet-stream .mpg
AddType application/octet-stream .wmv
AddType application/octet-stream .mp3

Require SSL

Sometimes you will require an SSL connection. This following snippet will do just that!

# require SSL
SSLOptions +StrictRequire
SSLRequireSSL
SSLRequire %{HTTP_HOST} eq "domain.tld"
ErrorDocument 403 https://domain.tld

# require SSL without mod_ssl
RewriteCond %{HTTPS} !=on [NC]
RewriteRule ^.*$ https://%{SERVER_NAME}%{REQUEST_URI} [R,L]

Sources:
http://corz.org/serv/tricks/htaccess.php
http://roshanbh.com.np/2008/02/hide-php-url-rewriting-htaccess.html
http://expressproducts.net/htaccess.htm
http://perishablepress.com/press/2006/01/10/stupid-htaccess-tricks/#usa4
http://phpsecurity.wordpress.com/2007/12/22/htaccess-tips-and-tricks/

Get Random Row with MySQL Without ORDER BY RAND()

Ed — Wed, 05 Mar 2008 12:12:24 +0000

This is an update to a previous post of mine which uses the RAND() method. Using the following code, you can retrieve a random row much, much faster (MySQL 4.1.x/5.0.x), with thanks to Jan Kneschke:

SELECT FROM AS r1
JOIN(SELECT ROUND(
RAND() * (
SELECT MAX( id )FROM

)
)AS id
)AS r2
WHERE r1.id >= r2.id
ORDERBY r1.id ASC
LIMIT1;

Replace:

with the name of the column(s) you wish to retrieve

with the name of the table you wish to retrieve the data from

I've tested this with a table with over 660,000 records, and got a response in 0.0200 seconds, whereas with ORDER BY RAND() i got a response in 2.1599 seconds.

Total Number of Rows:

Old Method:

New Method:

Standards Compliant Internet Explorer (IE8)

Ed — Tue, 04 Mar 2008 21:36:00 +0000

We’ve decided that IE8 will, by default, interpret web content in the most standards compliant way it can. This decision is a change from what we’ve posted previously.

Don your glad rags and party hats, it's time to celebrate! Microsoft have announced that their new interoperable release of Internet Explorer (IE8) will be standards compliant by default.

Their explaination for change still hints at their stubborness though: "While we do not believe any current legal requirements would dictate which rendering mode a browser must use, this step clearly removes this question as a potential legal and regulatory issue.".

So what does this mean for us as designers?

Don't misconceive me - I'm not primarily a designer, but I do design all sites I build …in pure CSS. This change will mean that we should know that our designs will render the same in all mainstream browsers such as FireFox, Opera, Safari and of course IE8 (provided we use valid CSS1, 2 or 3 [when fully supported] code). The days of running both FireFox and IE6/7, uploading your new CSS file and hitting F5 to find that the bug you just fixed in IE6/7 has now broken something else layout-wise should now be gone.

IE8 will support standards compliant mode as default, but will be backward compatible with our already 'IE Bug-Fixed' CSS files. So, to save us backtracking to make our previously written CSS files - which have no doubt taken us hours upon hours to write thanks to IE7- rendering modes - we can insert a meta tag into IE8 to set it to "Quirks Mode" for this exact purpose.

A final note

All in all, I don't have much confidence in Microsoft and the web. This confidence decreases even more after hearing any one of Steve Ballmer's semitars, especially the one about Microsoft winning the web. In my opinion, they never will, but this is a fantastic step in the right direction which leads me to say two things; Well done Microsoft, and two, Let's get used to the days of IE7-.