explain specifically. plz

Question

from this section,
I don't get what this means....
plz explain specifically... 
It will be great...
if ($SERVER["REQUESTMETHOD"] == "POST") {
    $name = trim(filterinput(INPUTPOST,"name",FILTERSANITIZESTRING));  -----> why put "trim" and "filterinput"? 
    $email = trim(filterinput(INPUTPOST,"email",FILTERSANITIZEEMAIL));
    $category = trim(filterinput(INPUTPOST,"category",FILTERSANITIZESTRING));
    $title = trim(filterinput(INPUTPOST,"title",FILTERSANITIZESTRING));
    $format = trim(filterinput(INPUTPOST,"format",FILTERSANITIZESTRING));
    $genre = trim(filterinput(INPUTPOST,"genre",FILTERSANITIZESTRING));
    $year = trim(filterinput(INPUTPOST,"year",FILTERSANITIZESTRING));
    $details = trim(filterinput(INPUTPOST,"details",FILTERSANITIZESPECIALCHARS));
if ($name == "" || $email == "" || $category == "" || $title = "") {
  $error_message ="Please fill in the required fields: Name, Email and category, title";   ------> how this part related to above???
    exit;
}
if ($_POST["address"] != "") {    ---------> where this "address" is from????
    $error_message = "Bad form input";
    exit;
}

require("inc/phpmailer/class.phpmailer.php");

$mail = new PHPMailer;

if (!$mail->ValidateAddress($email)) {   
    echo "Invalid Email Address";
    exit;
}

Simon Coates · Accepted Answer

If Method is Post - using post means that the request came from the form
php
if ($SERVER["REQUEST_METHOD"] == "POST") {

Get sanitised variables and then trim any trailing or leading white space (eg "   My Name    " would become "My Name")
php
$name = trim(filter_input(INPUT_POST,"name",FILTER_SANITIZE_STRING)); -----> why put "trim" and "filter_input"? $email = trim(filter_input(INPUT_POST,"email",FILTER_SANITIZE_EMAIL)); 
$category = trim(filter_input(INPUT_POST,"category",FILTER_SANITIZE_STRING)); 
$title = trim(filter_input(INPUT_POST,"title",FILTERSANITIZE_STRING)); 
$format = trim(filter_input(INPUT_POST,"format",FILTER_SANITIZE_STRING)); 
$genre = trim(filter_input(INPUT_POST,"genre",FILTER_SANITIZE_STRING)); 
$year = trim(filter_input(INPUT_POST,"year",FILTER_SANITIZE_STRING)); 
$details = trim(filter_input(INPUT_POST,"details",FILTER_SANITIZE_SPECIAL_CHARS));

This bit is probably wrong. It's meant to test that you have all required fields. Problem is that the error message never displays. 
php
if ($name == "" || $email == "" || $category == "" || $title = "") {
  $error_message ="Please fill in the required fields: Name, Email and category, title";   ------> how this part related to above???
    exit;
}

This is testing for the address field. It's an field included to trick bots (should be in the HTML form but does not display to the user due to CSS). A machine would assume you need an address field. The requirement is that you dont submit an address field.
php
if ($_POST["address"] != "") {    ---------> where this "address" is from????
    $error_message = "Bad form input";
    exit;
}

Get access to PHPMailer, create a mail object, if address is invalid, stop.
```php
require("inc/phpmailer/class.phpmailer.php");
$mail = new PHPMailer; 
if (!$mail->ValidateAddress($email)) {   
    echo "Invalid Email Address";
    exit;
}
```

Welcome to the Treehouse Community

Looking to learn something new?

jinhwa yoo

jinhwa yoo

explain specifically. plz

Simon Coates

Simon Coates

1 Answer

Simon Coates

Simon Coates

jinhwa yoo

jinhwa yoo