Form Validation CS382 1. What is form validation?  validation: ensuring that form's values are correct  some types of validation:  preventing blank.

Slides:



Advertisements
Similar presentations
Session 3BBK P1 ModuleApril 2010 : [#] Regular Expressions.
Advertisements

FORM VALIDATION Faheem Ahmed Khokhar. FORM VALIDATION Faheem Ahmed Khokhar.
BBK P1 Module2010/11 : [‹#›] Regular Expressions.
CSCI 6962: Server-side Design and Programming Input Validation and Error Handling.
1 CSE 390a Lecture 7 Regular expressions, egrep, and sed slides created by Marty Stepp, modified by Jessica Miller and Ruth Anderson
1 CSE 303 Lecture 7 Regular expressions, egrep, and sed read Linux Pocket Guide pp , 73-74, 81 slides created by Marty Stepp
1 CSE 390a Lecture 7 Regular expressions, egrep, and sed slides created by Marty Stepp, modified by Jessica Miller
Using regular expressions Search for a single occurrence of a specific string. Search for all occurrences of a string. Approximate string matching.
IS 1181 IS 118 Introduction to Development Tools Chapter 4 String Manipulation and Regular Expressions.
Form Validation CS What is form validation?  validation: ensuring that form's values are correct  some types of validation:  preventing blank.
CS 174: Web Programming February 26 Class Meeting Department of Computer Science San Jose State University Spring 2015 Instructor: Ron Mak
CSE 154 LECTURE 11: REGULAR EXPRESSIONS. What is form validation? validation: ensuring that form's values are correct some types of validation: preventing.
slides created by Marty Stepp
Regular Expressions A regular expression defines a pattern of characters to be found in a string Regular expressions are made up of – Literal characters.
Last Updated March 2006 Slide 1 Regular Expressions.
JavaScript Form Validation
PHP : Hypertext Preprocessor
Telerik Software Academy ASP.NET Web Forms Data Validation, Data Validators, Validation Groups Telerik Software Academy
Regular Expressions Dr. Ralph D. Westfall May, 2011.
Overview of the grep Command Alex Dukhovny CS 265 Spring 2011.
Faculty of Sciences and Social Sciences HOPE JavaScript Validation Regular Expression Stewart Blakeway FML
PHP Workshop ‹#› Data Manipulation & Regex. PHP Workshop ‹#› What..? Often in PHP we have to get data from files, or maybe through forms from a user.
Web Application and Development Digital Media Department Unit Credit Value : 4 Essential Learning time : 120 hours Digital Media.
More Events and Validation CS Page/window events CS380 2.
CIS 451: Regular Expressions Dr. Ralph D. Westfall January, 2009.
Regular Expressions Regular expressions are a language for string patterns. RegEx is integral to many programming languages:  Perl  Python  Javascript.
CS 174: Web Programming September 30 Class Meeting Department of Computer Science San Jose State University Fall 2015 Instructor: Ron Mak
Regular Expressions.
Kirkwood Center for Continuing Education Introduction to PHP and MySQL By Fred McClurg, Copyright © 2015, Fred McClurg, All Rights.
PHP with Regular Expressions Web Technologies Computing Science Thompson Rivers University.
Regular Expressions in PHP. Supported RE’s The most important set of regex functions start with preg. These functions are a PHP wrapper around the PCRE.
Kirkwood Center for Continuing Education Introduction to PHP and MySQL By Fred McClurg, Copyright © 2010 All Rights Reserved. 1.
Regular Expressions for PHP Adding magic to your programming. Geoffrey Dunn
AUC Technologies Projects Consulting, Development, Mentoring, and Training Company ASP.NET Validation Control Presented By : Muhammad Atif Hussain Deputy.
1 Validating user input is the bane of every software developer’s existence. When you are developing cross-browser web applications (IE4+ and NS4+) this.
Introduction to Programming the WWW I CMSC Winter 2004 Lecture 13.
An Introduction to Regular Expressions Specifying a Pattern that a String must meet.
Arrays Strings and regular expressions Basic PHP Syntax CS380 1.
Lesson 4 String Manipulation. Lesson 4 In many applications you will need to do some kind of manipulation or parsing of strings, whether you are Attempting.
Regular Expressions.
IS1500: Introduction to Web Development
Regular Expressions Upsorn Praphamontripong CS 1110
CS 330 Class 7 Comments on Exam Programming plan for today:
Regular expressions, egrep, and sed
Regular expressions, egrep, and sed
Looking for Patterns - Finding them with Regular Expressions
HTML Forms and Server-Side Data
Regular expressions, egrep, and sed
Affinity Program | Client Approved Copy| Native App Landing Page
Chapter 19 PHP Part II Credits: Parts of the slides are based on slides created by textbook authors, P.J. Deitel and H. M. Deitel by Prentice Hall ©
CSE 390a Lecture 7 Regular expressions, egrep, and sed
Web Programming– UFCFB Lecture 17
Error Handling and Validation
Working with Forms and Regular Expressions
MIS Professor Sandvig MIS 324 Professor Sandvig
CSE 390a Lecture 7 Regular expressions, egrep, and sed
JavaScript Form Validation
CS 1111 Introduction to Programming Fall 2018
Regular expressions, egrep, and sed
Form Validation (with jQuery, HTML5, and CSS)
Data Manipulation & Regex
Regular expressions, egrep, and sed
Regular expressions, egrep, and sed
Regular Expressions and Grep
Regular expressions, egrep, and sed
Lecture 25: Regular Expressions
Regular expressions, egrep, and sed
Regular expressions, egrep, and sed
CSE 390a Lecture 7 Regular expressions, egrep, and sed
Lecture 23: Regular Expressions
Presentation transcript:

Form Validation CS382 1

What is form validation?  validation: ensuring that form's values are correct  some types of validation:  preventing blank values ( address)  ensuring the type of values integer, real number, currency, phone number, Social Security number, postal  address, address, date, credit card number,...  ensuring the format and range of values (ZIP code must be a 5-digit integer)  ensuring that values fit together (user types twice, and the two must match) CS382 2

A real Form that uses validation CS382 3

Client vs. server-side validation  Validation can be performed:  client-side (before the form is submitted) can lead to a better user experience, but not secure (why not?)  server-side (in PHP code, after the form is submitted) needed for truly secure validation, but slower  both  best mix of convenience and security, but requires most effort to program CS382 4

An example form to be validated 5 City: State: ZIP: HTML  Let's validate this form's data on the server... CS382

Basic server-side validation code 6 $city = $_REQUEST["city"]; $state = $_REQUEST["state"]; $zip = $_REQUEST["zip"]; if (!$city || strlen($state) != 2 || strlen($zip) != 5) { ?> Error, invalid city/state submitted. <?php } ?> PHP  basic idea: examine parameter values, and if they are bad, show an error message and abort CS382

Basic server-side validation code  validation code can take a lot of time / lines to write  How do you test for integers vs. real numbers vs. strings?  How do you test for a valid credit card number?  How do you test that a person's name has a middle initial?  How do you test whether a given string matches a particular complex format? CS382 7

Regular expressions 8 [a-z]at #cat, rat, bat… [aeiou] [a-zA-Z] [^a-z] #not a-z [[:alnum:]]+ #at least one alphanumeric char (very) *large #large, very very very large… (very){1, 3} #counting “very” up to 3 ^bob #bob at the beginning com$ #com at the end PHPRegExp  Regular expression: a pattern in a piece of text  PHP has:  POSIX  Perl regular expressions CS382

Delimiters 9 /[a-z]/at #cat, rat, bat… #[aeiou]# /[a-zA-Z]/ ~[^a-z]~ #not a-z /[[:alnum:]]+/ #at least one alphanumeric char #(very) *#large #large, very very very large… ~(very){1, 3}~ #counting “very” up to 3 /^bob/ #bob at the beginning /com$/ #com at the end / // # #better readability PHPRegExp  Used for Perl regular expressions (preg) CS382

Basic Regular Expression  in PHP, regexes are strings that begin and end with /  the simplest regexes simply match a particular substring  the above regular expression matches any string containing "abc":  YES: "abc", "abcdef", "defabc", ".=.abc.=.",...  NO: "fedcba", "ab c", "PHP",... CS /abc/

Wildcards  A dot. matches any character except a \n line break  "/.oo.y/" matches "Doocy", "goofy", "LooNy",...  A trailing i at the end of a regex (after the closing /) signifies a case-insensitive match  "/xen/i" matches “Xenia", “xenophobic", “Xena the warrior princess", “XEN technologies”... CS382 11

Special characters: |, (), ^, \  | means OR  "/abc|def|g/" matches "abc", "def", or "g"  There's no AND symbol. Why not?  () are for grouping  "/(Homer|Marge) Simpson/" matches "Homer Simpson" or "Marge Simpson"  ^ matches the beginning of a line; $ the end  "/^<!--$/" matches a line that consists entirely of "<!--" CS382 12

Special characters: |, (), ^, \  \ starts an escape sequence  many characters must be escaped to match them literally: / \ $. [ ] ( ) ^ * + ?  "/ /" matches lines containing tags CS382 13

Quantifiers: *, +, ?  * means 0 or more occurrences  "/abc*/" matches "ab", "abc", "abcc", "abccc",...  "/a(bc)*/" matches "a", "abc", "abcbc", "abcbcbc",...  "/a.*a/" matches "aa", "aba", "a8qa", "a!?_a",...  + means 1 or more occurrences  "/a(bc)+/" matches "abc", "abcbc", "abcbcbc",...  "/Goo+gle/" matches "Google", "Gooogle", "Goooogle",...  ? means 0 or 1 occurrences  "/a(bc)?/" matches "a" or "abc" CS382 14

More quantifiers: {min,max}  {min,max} means between min and max occurrences (inclusive)  "/a(bc){2,4}/" matches "abcbc", "abcbcbc", or "abcbcbcbc"  min or max may be omitted to specify any number  {2,} means 2 or more  {,6} means up to 6  {3} means exactly 3 CS382 15

Character sets: []  [] group characters into a character set; will match any single character from the set  "/[bcd]art/" matches strings containing "bart", "cart", and "dart"  equivalent to "/(b|c|d)art/" but shorter  inside [], many of the modifier keys act as normal characters  "/what[!*?]*/" matches "what", "what!", "what?**!", "what??!",  What regular expression matches DNA (strings of A, C, G, or T)? 16 CS382

Character ranges: [start-end]  inside a character set, specify a range of characters with -  "/[a-z]/" matches any lowercase letter  "/[a-zA-Z0-9]/" matches any lower- or uppercase letter or digit  an initial ^ inside a character set negates it  "/[^abcd]/" matches any character other than a, b, c, or d 17 CS382

Character ranges: [start-end]  inside a character set, - must be escaped to be matched  "/[+\-]?[0-9]+/" matches an optional + or -, followed by at least one digit  What regular expression matches letter grades such as A, B+, or D- ? 18 CS382

Escape sequences  special escape sequence character sets:  \d matches any digit (same as [0-9]); \D any non-digit ([^0-9])  \w matches any “word character” (same as [a-zA-Z_0- 9]); \W any non-word  char  \s matches any whitespace character (, \t, \n, etc.); \S any non-whitespace  What regular expression matches dollar amounts of at least $ ? 19 CS382

Regular expressions in PHP (PDF)  regex syntax: strings that begin and end with /, such as "/[AEIOU]+/" 20 CS382

Regular expressions example 21 echo preg_match ('/test/', "a test of preg_match"); echo preg_match ('/tutorial/', "a test of preg_match "); $matchesarray[0] = " $matchesarray[1] = " $matchesarray[2] = " preg_match ('/( " rials.com/", $matchesarray) PHP CS382

Regular expressions example 22 # replace vowels with stars $str = "the quick brown fox"; $str = preg_replace("/[aeiou]/", "*", $str); # "th* q**ck br*wn f*x" # break apart into words $words = preg_split("/[ ]+/", $str); # ("th*", "q**ck", "br*wn", "f*x") # capitalize words that had 2+ consecutive vowels for ($i = 0; $i < count($words); $i++) { if (preg_match("/\\*{2,}/", $words[$i])) { $words[$i] = strtoupper($words[$i]); } } # ("th*", "Q**CK", "br*wn", "f*x") PHP CS382

PHP form validation w/ regexes 23 $state = $_REQUEST["state"]; if (!preg_match("/[A-Z]{2}/", $state)) { ?> Error, invalid state submitted. <?php } PHP CS382  using preg_match and well-chosen regexes allows you to quickly validate query parameters against complex patterns

PHP forms exercise 1  In the next PHP exercise, you will request input from the user, then move the user's response from one file to another and do something with it.  Create two separate files. The first will contain a form with one input field asking for the user's favorite city. Use the post method for the form. Although this file contains no PHP code, on my localhost, it needs the.php extension to successfully call the second file. CS382 24

PHP forms exercise 1  The second file will contain PHP code to process the user's response. (In this case, something very simple.) After the user clicks the submit button, echo back Your favorite city is $city., where $city is the input from the form. CS382 25

PHP forms exercise 2  One very useful thing you can do with PHP is include the request for user input and the response in the same file, using conditional statements to tell PHP which one to show. For this PHP exercise, rewrite the two files of the previous exercise into one file using an if-else conditional statement.  Hint: You'll need some way to tell if the form has been submitted. The function to determine if a variable has been set and is not null is isset(). CS382 26

PHP forms exercise 3  For this PHP exercise, you will use the same format as the previous exercise, requesting input in the first part, and responding in the second, through the magic of PHP's if-else statement. In the first section, give the user an input field and request that they enter a day of the week. CS382 27

PHP forms exercise 3  For the second section, you'll need the following poem: Laugh on Monday, laugh for danger. Laugh on Tuesday, kiss a stranger. Laugh on Wednesday, laugh for a letter. Laugh on Thursday, something better. Laugh on Friday, laugh for sorrow. Laugh on Saturday, joy tomorrow.  Using the else-elseif-else construction, set each line to output in response to the day the user inputs, with a general response for any input that is not in the poem. 28 CS382

PHP forms exercise 4  You probably noticed that the if-elseif-else construction was repetitive and cumbersome in the last exercise. It works best with only one or two choices. A more appropriate construction for this exercise is the switch statement, combined with a select field in the form for the days of the week. So your assignment in this PHP exercise is to rewrite the previous exercise using a select field for the user input and the switch statement to process the response. CS382 29

PHP forms exercise 4  Once again, here's the poem: Laugh on Monday, laugh for danger. Laugh on Tuesday, kiss a stranger. Laugh on Wednesday, laugh for a letter. Laugh on Thursday, something better. Laugh on Friday, laugh for sorrow. Laugh on Saturday, joy tomorrow.  Remember to include a general response for any input that is not in the poem. To make things a little more interesting, include a 'Back' button on the response so that the user can go back and try different days. 30 CS382