html - PHP and AVS: Video comment form customization? -


I am trying to modify a form on a framework, and I really do not know what's going on is.

The form looks like this: 

  & lt; Form name = "postVideo comment" id = "postVideo comment" method = "post" action = "#" & gt; & Lt; Input type = "text" id = "user_handle" name = "user_handle" class = "video_comment" & gt; & Lt; Textarea name = "video_comment" id = "video_comment" cols = "100" rows = "5" class = "video_comment" & gt; & Lt; / Textarea & gt; & Lt; Div id = "post_message" class = "post_message" style = "display: none;" & Gt; {TC = 'global.comment_empty'} & lt; / Div & gt; & Lt; Div class = "action" & gt; & Lt; Span id = "chars_left" & gt; 1000 & lt; / Span & gt; {Tc = 'global.chars_left'} & lt; / Div & gt; & Lt; Div class = "action" & gt; & Lt; Input name = "submit_comment" type = "button" value = "{cc c = 'global.post'}" id = "post_video_comment _ {$ video.VID}" class = "button" /> & Lt; / Div & gt; & Lt; Div class = "clear_left" & gt; & Lt; / Div & gt; & Lt; / Form & gt;   
 However, in some way the input form with id user_handle has not been passed. This form presents a video video_comment.php file that I do not understand (for example, it's using $ filter-> get ('comment') for comments; 'I am not aware but it is ignoring my user_handle, apart from this it is actually working for comments:   array =' $ '=' & Gt; '', 'code' = & gt; '', 'vid' (= $ 0 ['' cid ''> & gt;;); if (isset ($ _ POST ['video_id']) and ; Issued ($ _ POST ['Comment'])) {if ($ config ['video_comments ($$ [[V_ {$ Delay = interval ($ _ session ['v_comment_added']) + 30; if (time ()) delay $ {$ spam = true; $ _SESSION ['v_comment_added'] = time ();}} $ Filter = new VFilter ($ Uid = '1'; $ vid = $ filter- & gt; get ('video_id', 'INTEGER'); $ user_handle = $ _POST ['user_handle']; $ Comment = $ filter- & gt; comment '); var_dump ($ _ POST); $ sql = "insert in video_ comments (VID, UID, comment, user_h and end, price)" ($. ",". $ UID "," ". Mysql_real_escape_string ($ comment). "','". Mysql_real_escape_string ($ user_handle) "','". "')"; $ Conn- & gt; Execution ($ sql);   
 appreciate any help !!! Thanks!  
 
 
 I think the "VFilter" class can clean POST data to ensure that Look at that class, that data can be accessed through just $ filter example, I think the post variable is mapping for small people like 'comment' by name.

Comments

Post a Comment