I have searched the forum, and found some threads about this, but none of them applies to my problem. (as far as I can understand).
I have created a widget (PHP Direct Execution) with this content:
the file (addApplication.php) that the widget refers to is this:
But for some reason, I just can't get the security token to work.
When I look at the source, it just comes up empty ("")...
What am I doing wrong?
I have created a widget (PHP Direct Execution) with this content:
PHP Code:
// UNTESTED
ob_start();
include("test/addApplication.php");
echo "<br />\n";
$output .= ob_get_contents();
ob_end_clean();
PHP Code:
<?php
if(isset($_POST['add_Application_Submit']))
{
include 'dbConnection.php';
$firstname = mysql_real_escape_string($_POST['add_Application_Firstname']);
$lastname = mysql_real_escape_string($_POST['add_Application_Lastname']);
$pnumber = mysql_real_escape_string($_POST['add_Application_p-number']);
$bnumber = mysql_real_escape_string($_POST['add_Application_b-number']);
$dnumber = mysql_real_escape_string($_POST['add_Application_d-number']);
$mobilephone = mysql_real_escape_string($_POST['add_Application_Mobilephone']);
$presentation = mysql_real_escape_string($_POST['add_Application_Presentation']);
$district = mysql_real_escape_string($_POST['add_Application_district']);
$application_date = "2010-01-01";
$userID = get_magic_quotes_gpc($_POST['add_Application_UserID']);
$status = "0";
#$query = "INSERT INTO ovse_applications (firstName, lastName, pnumber, bnumber, dnumber, mobile, presentation, district, application_date, vbUserID, applications_status) VALUES ('$firstname', '$lastname', '$pnumber', '$bnumber', '$dnumber', '$mobilephone', '$presentation', '$district', '$application_date', '$userID', '$status')";
#mysql_query($query) or die('Error, insert query failed 1.<br/>'.mysql_error().'<br/>'.$query);
mysql_close($conn);
}
else
{
?>
<html>
<head></head>
<body>
ny
<form id="form1" method="post" action="">
<table border="0" cellpadding="0" cellspacing="0">
<tr>
<td> Förnamn </td>
<td><input type="text" name="add_Application_Firstname" id="add_Application_Firstname" /></td>
</tr>
<tr>
<td> Efternamn </td>
<td><input type="text" name="add_Application_Lastname" id="add_Application_Lastname" /></td>
</tr>
<tr>
<td>Mobilnummer: </td>
<td><input type="text" name="add_Application_Mobilephone" id="add_Application_Mobilephone" /></td>
</tr>
<tr>
<td>Personnummer: </td>
<td><input type="text" name="add_Application_p-number" id="add_Application_p-number" /></td>
</tr>
<tr>
<td>Bricknummer: </td>
<td><input type="text" name="add_Application_b-number" id="add_Application_b-number" /></td>
</tr>
<tr>
<td>Diarienummer: </td>
<td><input type="text" name="add_Application_d-number" id="add_Application_d-number" /></td>
</tr>
<tr>
<td>Län: </td>
<td><select name="add_Application_district" id="add_Application_district">
<option value="Inget län valt">Inget län valt</option>
<option value="Blekinge">Blekinge</option>
<option value="Dalarna">Dalarna</option>
<option value="Gotlands län">Gotlands län</option>
<option value="Gävleborg">Gävleborg</option>
<option value="Halland">Halland</option>
<option value="Jämtland">Jämtland</option>
<option value="Jönköpings län">Jönköpings län</option>
<option value="Kalmar län">Kalmar län</option>
<option value="Kronoberg">Kronoberg</option>
<option value="Norrbotten">Norrbotten</option>
<option value="Skåne">Skåne</option>
<option value="Stockholms län">Stockholms län</option>
<option value="Södermanland">Södermanland</option>
<option value="Uppsala län">Uppsala län</option>
<option value="Värmland">Värmland</option>
<option value="Västerbotten">Västerbotten</option>
<option value="Västernorrland">Västernorrland</option>
<option value="Västmanland">Västmanland</option>
<option value="Västra Götaland">Västra Götaland</option>
<option value="Örebro län">Örebro län</option>
<option value="Östergötland">Östergötland</option>
</select>
<!-- Data from vBulletin start -->
<input name="add_Application_UserID" type="hidden" id="add_Application_UserID" value="<? print(vB::$vbulletin->userinfo['userid']); ?>" />
<input type="hidden" name="s" value="<?php echo $_COOKIE['bb_sessionhash'];?>" />
<input type="hidden" name="securitytoken" value="<?php echo $bbuserinfo['securitytoken'];?>" />
<!-- Data from vBulletin end -->
</td>
</tr>
<tr>
<td>Kort personlig presentation:</td>
<td><textarea name="add_Application_Presentation" rows="10" id="add_Application_Presentation"></textarea></td>
</tr>
<tr>
<td> </td>
<td><input type="submit" name="add_Application_Submit" id="add_Application_Submit" value="Ansök" /></td>
</tr>
</table>
</form>
</body>
</html>
<?php
}
?>
When I look at the source, it just comes up empty ("")...
What am I doing wrong?
Comment