Docs
PHP
Unit4

1. What is form? How to create it?

A form is an interactive element in HTML that allows users to input data and interact with a website.

Forms can be used to collect data from users, such as their name, email address, and other information. To create a form in HTML, you can use the <form> tag, along with various form controls such as text fields, radio buttons, checkboxes, and submit buttons.

Here's an example of a simple form that asks for a user's name and email:

vros.php
<form action="process.php" method="post">
  <label for="name">Name:</label>
  <input type="text" id="name" name="name"><br>
 
  <label for="email">Email:</label>
  <input type="email" id="email" name="email"><br>
 
  <input type="submit" value="Submit">
</form>

In this example, the <form> tag is used to create the form, with the action attribute specifying the URL where the form data will be submitted, and the method attribute specifying the HTTP method to use (in this case, POST). The form contains two text input fields (<input type="text"> and <input type="email">) with corresponding labels (<label>) for the user's name and email, and a submit button (<input type="submit">) to submit the form data.

2. What is form control?

A form control is a user interface element that allows users to interact with a web form. Form controls can be used to collect input from the user, such as text, numbers, dates, and selections from a list of options.

Some common form controls in PHP include:

  1. Text Input: Allows users to enter text information such as name, email, phone number, etc.
  2. Radio Buttons: Allow users to select one option from a group of predefined options.
  3. Checkboxes: Allow users to select one or more options from a group of predefined options.
  4. Select Lists: Allow users to select one option from a drop-down list of predefined options.
  5. Textareas: Allow users to enter larger amounts of text, such as comments or messages.
  6. Buttons: Allow users to submit the form, reset the form, or perform other actions.

In PHP, you can use the $_POST or **$_GET** superglobal arrays to retrieve the values submitted by form controls. You can also use various functions and techniques to validate and sanitize user input to prevent security vulnerabilities in your application.

3. Write short note on: Server role.

In the context of web development, the server role refers to the responsibilities and tasks that a server performs in handling client requests and delivering content over the internet.

A server can play many different roles depending on its configuration and the type of requests it receives. Some common server roles include:

  1. Web server: A web server is responsible for hosting and serving websites to clients over the internet. Popular web servers include Apache, Nginx, and Microsoft IIS.
  2. Database server: A database server is responsible for storing and managing data for web applications. Popular database servers include MySQL, PostgreSQL, and Microsoft SQL Server.
  3. Mail server: A mail server is responsible for handling email traffic, including sending, receiving, and storing emails.
  4. File server: A file server is responsible for storing and sharing files over a network.
  5. Application server: An application server is responsible for running and managing web applications, including handling client requests and executing application logic.

Each of these server roles has specific requirements and configurations that are necessary for optimal performance and security. For example, a web server may need to be configured with specific modules and settings to support certain types of content or authentication methods. Similarly, a database server may require specific security measures and optimization techniques to ensure efficient data access and storage.

4. Explain processing forms with example.

Processing a form in PHP involves collecting the data submitted by the user in a form and using it to perform some action on the server side.

This typically involves validating the data, sanitizing it to prevent security issues, and storing it in a database or sending it in an email.

Here's an example of how to process a simple form in PHP:

  1. Create an HTML form with the appropriate input fields and a submit button. For example:
vros.php
<form action="process-form.php" method="post">
  <label for="name">Name:</label>
  <input type="text" id="name" name="name">
  <br>
  <label for="email">Email:</label>
  <input type="email" id="email" name="email">
  <br>
  <input type="submit" value="Submit">
</form>
  1. In the form's action attribute, specify the PHP script that will process the form data. In this example, the script is called process-form.php.
  2. In the process-form.php script, retrieve the form data using the $_POST superglobal array. For example:
vros.php
$name = $_POST['name'];
$email = $_POST['email'];
  1. Validate the form data to ensure that it meets your requirements. For example, you might check that the name field is not empty and that the email field is a valid email address.
  2. Sanitize the form data to prevent security issues such as SQL injection attacks. For example, you might use the filter_var() function to sanitize the email address:
vros.php
$email = filter_var($_POST['email'], FILTER_SANITIZE_EMAIL);
  1. Use the form data to perform the desired action on the server side. For example, you might store the data in a database or send it in an email.
  2. Finally, return a response to the user to let them know whether the form submission was successful or not. This might involve displaying a success message on the same page or redirecting the user to a different page.

Overall, processing a form in PHP involves retrieving the form data, validating and sanitizing it, and using it to perform an action on the server side.

5. When to use GET and POST method.

In PHP, the two commonly used methods for submitting form data to the server are GET and POST.

The GET method is used to retrieve data from the server. When a form is submitted using the GET method, the form data is appended to the URL as a query string. For example, if a user submits a form with the name "Vros" using the GET method, the resulting URL would look something like this:

vros.php
http://example.com?name=Vros

GET requests are typically used for retrieving data that already exists on the server, such as search results or product listings. Since the form data is included in the URL, it is easy to bookmark and share the resulting page.

The POST method is used to submit data to the server. When a form is submitted using the POST method, the form data is sent as part of the request body. This method is useful for situations where the form data contains sensitive information, such as login credentials or credit card numbers.

In general, you should use the POST method when submitting form data that will create, update, or delete information on the server, and use the GET method when retrieving data that already exists on the server.

However, there may be situations where you need to use the GET method to submit form data, such as when working with APIs that require GET requests. In these cases, it is important to ensure that the form data is not sensitive and does not contain any sensitive information.

6. How to maintain state in PHP?

Maintaining state in PHP involves preserving information between multiple requests from the same user. This is important for web applications that require users to log in, remember their preferences, or keep track of their progress.

Here are some common techniques for maintain state in PHP:

  1. Sessions: Sessions allow you to store data on the server that is associated with a specific user. This data is stored in a unique session ID that is passed between the server and the client using cookies or URL parameters. You can use the session_start() function to start a new session and the $_SESSION superglobal array to store and retrieve session data.
  2. Cookies: Cookies are small pieces of data that are stored on the client's computer and are sent back to the server with each request. You can use the setcookie() function to create a new cookie and the $_COOKIE superglobal array to access the value of an existing cookie.
  3. Hidden form fields: Hidden form fields are input fields that are not visible to the user but can be submitted with a form. You can use hidden fields to store data between requests, such as a user ID or a session token.
  4. URL parameters: URL parameters are key-value pairs that are appended to the end of a URL. You can use URL parameters to pass data between pages, such as a search query or a page number.

It's important to note that while these techniques can be useful for maintaining state in PHP, they also have their own security considerations. For example, cookies can be vulnerable to cross-site scripting (XSS) attacks, and hidden form fields can be manipulated by attackers. Therefore, it's important to use these techniques carefully and securely.

7. What is cookie? How to create it? Explain with example.

A cookie is a small piece of data that is sent from a website to a user's web browser and is stored on the user's computer.

Cookies are often used to store user preferences or other data that needs to be remembered between visits to a website.

In PHP, you can create a cookie using the setcookie() function. The function takes up to six parameters:

  1. name: the name of the cookie
  2. value: the value of the cookie
  3. expire: the expiration time of the cookie, expressed as a Unix timestamp
  4. path: the path on the server where the cookie is valid (optional)
  5. domain: the domain where the cookie is valid (optional)
  6. secure: whether the cookie should only be transmitted over a secure HTTPS connection (optional)

Here's an example of how to create a cookie in PHP:

vros.php
// Set a cookie with the name "username" and the value "vros"
setcookie("username", "vros");
 
// Set a cookie with an expiration time of one hour
setcookie("username", "vros", time() + 3600);
 
// Set a cookie that is only valid on the /admin path and the example.com domain
setcookie("username", "vros", time() + 3600, "/admin", "example.com");
 
// Set a cookie that is only transmitted over HTTPS
setcookie("username", "vros", time() + 3600, "/", "", true);

Once you have set a cookie, you can retrieve its value using the $_COOKIE superglobal array. For example:

vros.php
// Get the value of the "username" cookie
$username = $_COOKIE["username"];
 
// Output the value of the "username" cookie
echo "Welcome back, $username!";

8. What is session? Explain with example.

A session is a way to store data on the server that is associated with a specific user.

A session allows you to keep track of user information and preferences between requests, such as a user's login status or shopping cart contents.

Here's an example of how to use sessions in PHP:

vros.php
// Start a new session
session_start();
 
// Store data in the session
$_SESSION["username"] = "vros";
$_SESSION["cart"] = array("item1", "item2", "item3");
 
// Retrieve data from the session
$username = $_SESSION["username"];
$cart = $_SESSION["cart"];
 
// Output the data
echo "Welcome back, $username!<br>";
echo "Your cart contains: " . implode(", ", $cart);

In this example, we first start a new session using the session_start() function. We then store some data in the session using the $_SESSION superglobal array. We store the user's username and an array of items in their shopping cart.

Later on, we retrieve the data from the session and output it to the user. We use the $_SESSION superglobal array to retrieve the data and the implode() function to concatenate the items in the shopping cart array into a comma-separated string.

9. How we can get the cookie values and destroy the cookies?

In PHP, you can retrieve the value of a cookie using the $_COOKIE superglobal array.

The $_COOKIE array contains key-value pairs for each cookie that has been set. The key corresponds to the name of the cookie, and the value corresponds to the value of the cookie.

Here's an example of how to retrieve the value of a cookie:

vros.php
// Set a cookie with the name "username" and the value "vros"
setcookie("username", "vros");
 
// Retrieve the value of the "username" cookie
$username = $_COOKIE["username"];
 
// Output the value of the "username" cookie
echo "Welcome back, $username!";

To destroy a cookie, you can set its expiration time to a time in the past using the setcookie() function. Here's an example of how to destroy a cookie:

vros.php
// Set a cookie with the name "username" and the value "vros"
setcookie("username", "vros");
 
// Destroy the "username" cookie by setting its expiration time to the past
setcookie("username", "", time() - 3600);

In this example, we first set a cookie with the name "username" and the value "johndoe". Later on, we destroy the "username" cookie by setting its expiration time to a time in the past using the time() function.

It's important to note that when you destroy a cookie, you should set its value to an empty string ("") to ensure that the browser removes the cookie from its cookie jar.

10. How to check whether a variable is set with a session?

To check whether a variable is set in a session, you can use the isset() function in combination with the $_SESSION superglobal array.

Here's an example of how to check whether a variable named "username" is set in a session:

vros.php
// Start the session
session_start();
 
// Check if the "username" variable is set in the session
if (isset($_SESSION["username"])) {
  // The "username" variable is set
  $username = $_SESSION["username"];
  echo "Welcome back, $username!";
} else {
  // The "username" variable is not set
  echo "Please log in to continue.";
}

In this example, we first start the session using the session_start() function. We then use the isset() function to check whether the "username" variable is set in the $_SESSION superglobal array. If the variable is set, we retrieve its value and output a welcome message. If the variable is not set, we output a message asking the user to log in.

11. What is form validation? Explain with suitable example.

Form validation is the process of ensuring that user input submitted through a form meets certain criteria, such as being of the correct format or within a certain range of values.

Form validation is important to prevent security vulnerabilities, improve user experience, and ensure the accuracy of data.

Here's an example of how to validate a form in PHP:

vros.php
// Define variables and set to empty values
$name = $email = $message = "";
$nameErr = $emailErr = $messageErr = "";
 
// Check if the form has been submitted
if ($_SERVER["REQUEST_METHOD"] == "POST") {
  // Validate name
  if (empty($_POST["name"])) {
    $nameErr = "Name is required";
  } else {
    $name = test_input($_POST["name"]);
    // Check if name contains only letters and whitespace
    if (!preg_match("/^[a-zA-Z ]*$/",$name)) {
      $nameErr = "Only letters and white space allowed";
    }
  }
 
  // Validate email
  if (empty($_POST["email"])) {
    $emailErr = "Email is required";
  } else {
    $email = test_input($_POST["email"]);
    // Check if email is valid
    if (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
      $emailErr = "Invalid email format";
    }
  }
 
  // Validate message
  if (empty($_POST["message"])) {
    $messageErr = "Message is required";
  } else {
    $message = test_input($_POST["message"]);
  }
}
 
// Function to sanitize and validate input
function test_input($data) {
  $data = trim($data);
  $data = stripslashes($data);
  $data = htmlspecialchars($data);
  return $data;
}

In this example, we define variables for the name, email, and message fields, as well as corresponding error variables that will be set if the fields are not valid.

We then check if the form has been submitted using the $_SERVER["REQUEST_METHOD"] variable. If the form has been submitted, we use the empty() function and regular expressions to validate the name and message fields, and the filter_var() function to validate the email field.

Finally, we define a function to sanitize and validate the input using the trim(), stripslashes(), and htmlspecialchars() functions.

12. Is it possible to create many forms using single web page. How?

Yes, it's possible to create multiple forms on a single web page in PHP. Here's an example of how to do it:

vros.php
<!DOCTYPE html>
<html>
<head>
	<title>Multiple Forms Example</title>
</head>
<body>
	<!-- Form 1 -->
	<form action="form1.php" method="post">
		<label for="name1">Name:</label>
		<input type="text" name="name1" id="name1">
		<label for="email1">Email:</label>
		<input type="email" name="email1" id="email1">
		<button type="submit" name="submit1">Submit Form 1</button>
	</form>
 
	<!-- Form 2 -->
	<form action="form2.php" method="post">
		<label for="name2">Name:</label>
		<input type="text" name="name2" id="name2">
		<label for="email2">Email:</label>
		<input type="email" name="email2" id="email2">
		<button type="submit" name="submit2">Submit Form 2</button>
	</form>
</body>
</html>

In this example, we have two forms on the same web page, each with its own set of input fields and submit button. The action attribute of each form specifies the URL of the script that will process the form data, and the method attribute specifies the HTTP method to use (in this case, POST).

When the user submits one of the forms, the corresponding script (specified in the action attribute) will be executed, and the form data will be accessible using the $_POST superglobal array. For example, in form1.php, you could access the values of the name1 and email1 fields like this:

vros.php
$name1 = $_POST['name1'];
$email1 = $_POST['email1'];

Similarly, in form2.php, you could access the values of the name2 and email2 fields using $_POST['name2'] and $_POST['email2'], respectively.

It's important to note that each form on the page should have a unique name attribute for each input field, so that the form data can be correctly identified when the form is submitted.

13. Enlist different types of Form Controls. Explain any two of them with example.

There are several types of form controls that can be used in HTML forms:

  1. Text input: Allows users to enter a single line of text.
  2. Text area: Allows users to enter multiple lines of text.
  3. Checkbox: Allows users to select one or more options from a list of choices.
  4. Radio button: Allows users to select one option from a list of choices.
  5. Select: Allows users to select one option from a drop-down list.
  6. Button: Triggers a specific action when clicked.
  7. Submit button: Submits the form data to the server.
  8. Reset button: Resets the form to its initial values.

Two commonly used form controls are the text input and the select control.

Text input: This control allows users to enter a single line of text. It is created using the <input> tag with a type attribute of text. Here's an example:

vros.php
<label for="name">Name:</label>
<input type="text" id="name" name="name">

In this example, we're creating a text input field for the user's name. The id attribute is used to uniquely identify the control, and the name attribute is used to specify the name of the form field when the form is submitted.

Select control: This control allows users to select one option from a drop-down list. It is created using the <select> tag, along with one or more <option> tags to specify the available choices. Here's an example:

vros.php
<label for="gender">Gender:</label>
<select id="gender" name="gender">
  <option value="male">Male</option>
  <option value="female">Female</option>
  <option value="other">Other</option>
</select>

In this example, we're creating a select control for the user's gender. The id and name attributes are used in the same way as with the text input control. The <option> tags are used to specify the available choices, along with their corresponding values. When the form is submitted, the selected value will be sent to the server as the value of the gender form field.

14. How to send e-mail? Describe with example.

To send an email in PHP, you can use the built-in mail() function. Here's an example of how to use it:

vros.php
$to = "recipient@example.com";
$subject = "Test Email";
$message = "This is a test email.";
$headers = "From: sender@example.com";
 
// Send the email
if (mail($to, $subject, $message, $headers)) {
    echo "Email sent successfully.";
} else {
    echo "Failed to send email.";
}

In this example, we're sending a test email to recipient@example.com, with the subject "Test Email" and the message "This is a test email." The From header is set to sender@example.com.

To use the mail() function, you need to specify at least three parameters: the recipient email address ($to), the email subject ($subject), and the email message ($message). You can also include additional headers, such as the From header, as a string in the fourth parameter ($headers).

Once you've set up the parameters, you can call the mail() function to send the email. The function will return true if the email was sent successfully, or false otherwise. In this example, we're using an if statement to check whether the email was sent successfully, and displaying a message to the user accordingly.

Note that the mail() function requires a functioning email server on your system to work. If you're having trouble sending email, make sure that your system is properly configured to send email, and check any error messages that the mail() function may have generated.

Unit3Unit5