How can I make form after certain time non-submitable?

Question

Basically what I have is some form and this:

<?php

require 'inc/conn.php'; 

$sql="INSERT INTO objednavky ( kdo, kdy, m1, mm1, m2, mm2, m3, mm3 )
VALUES
('$_POST[tkdo]','$_POST[thed]','$_POST[obb1]','$_POST[tmm1]',
'$_POST[obb2]','$_POST[tmm2]','$_POST[obb3]','$_POST[tmm3]')";

if (!mysql_query($sql,$con))
{
  die('Error: ' . mysql_error());
}

header('Location: http://www.juxcore.com/x/vita/protected.php');

mysql_close($con);

I need to make the form non-submitable in case for exmaple is Thursday and the last moment when you can submit it is on Wednesday 18pm. Thanks for help

Answer 1

It seems your question is really an HTML/Javascript question and not PHP/SQL.

Because at first glance I would say change the HTML with Javascript so that they cant submit the form.

document.getElementById("myform").action = "";

... would prevent submitting. There are many ways, including switching the form to a div:

document.getElementById("myform").setAttribute("type","div");

Or, remove the submit button from display so they cant click on it:

document.getElementById("mysubmit").style.display="none";

EDIT: oh and i completely forgot the obvious way, use form validation. This way they cant park on the URL until after wednesday and still submit in HTML

<form ... onsubmit="return validateForm()">

Just write the javascript function validateForm (similar to the php below) to return false to cancel the submit. I dont like giving w3school links but here is a nice clean example: http://www.w3schools.com/js/js_form_validation.asp

Anyhow, there are many more ways. Just do which ever one on the right day, use javascript's new Date().getDay() and new Date().getHours() to determine when.

(this is also an example of the two main ways to change an element's attributes).

I guess this doesn't stop them from submitting directly from the address line, which in case, you would need to edit your PHP, use the Date() object:

$day = Date("w");
if ( $day == 4 || $day == 5 ) {
    $time = Date("G");
    if ( $day != 5 || $time < 18 ) {
        if (!mysql_query($sql,$con)) die('Error: ' . mysql_error());
    }
}

I would suggest to do both, a HTML/Javascript way of controlling it with the same control built into your server.

Answer 2

You can append some JS into your view, to make form non-submitable.

My ideia is:

<script src="//ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js"></script>
<script type="text/javascript">
$(document).ready(function(){
    <?php if($currentDay < $dontSubmitFormDay):?>
         $('#myForm').submit(function(){
              return false;
         });
    <?php endif;?>
});
</script>

Answer 3

You need to get the timestamp for that day wednesday 6 p.m. Then every time a user submits the form, get the timestamp of that exact time and do a comparison:

if(timenow

Answer 4

First of all do not reply on the client (browser) clock. This can be fudged if the end user so desires. Instead create a session using PHP and mark the date/time for the last date/time the form can be submitted. Upon receipt of that form use the servers date/time (the one that cannot be fudged by the end user) to do the check.

In this way you can be absolutely sure that more security in not enabling forms to be submitted is not thwarted.

However you can use Javascript to make the users experience better but do not reply on date/time of the client for your database protection.