How to implement our secure form-to-email script. Our secure form protects your visitors information with 128-bit SSL encryption.
The first step in using this form-to-email script is to set the first line of the form to be:
<form action="https://secure.datarealm.com/cgi-bin/secureform" method="post">
Action - The action value gives the browser the location of the script that will process the information from this form.
Method - The method value tells the browser how to pass the information to the script. If the value is set to "post" - the browser will pass the information silently in the background. If the value is set to "get" - the browser will pass the information in the URL. For various reasons it is advised that "post" be used unless "get" is needed for a specific process.
The form settings should be placed directly below the form action line. they allow you to specify where the email is sent, and where the user is directed to after they submit the form. The four form settings are:
So that the information from this form is kept in the proper account, you must specify your account username like so :
<input type="hidden" NAME="username" value="your_user">
Assuming that "your_user" is the username for your account.
This value is used to identify the form results, and is only seen when you retrieve the results thought the secure server.
<input type="hidden" name="formname" value="name_of_the_form">
Replace name_of_the_form with whatever you'd like to designate the form as.
This values lets you specify an email address to be notified when someone submits the form. This email does not contain any of the form data, as email is not secure.
<input type="hidden" name="notifyme" value="firstname.lastname@example.org">
Replace email@example.com with the appropriate email address.
If you would like to specify the subject of the email that the form sends, use the line below. If you do not use this option, the script will default the message subject to: Form Submission
<input type=hidden name="subject" value="Form Subject">
If certain items on your form are required you can specify them in a hidden form field. If the user submits a form without the required fields, they will be taken to a page the informs them of the additional information they need to submit. Add the names of the required form items to the list separated by a comma:
<input type="hidden" name="requiredfields" value="name,email,cc">
Replace 'name' email and 'cc' wit the name of your required fields. There is no limit on the number of items that you can require.
To redirect visitors to a specific page after they complete the form, use the line below. To ensure that there are no security warnings, this page should also route through the secure server.
<input type="hidden" name="nextpage" value="/your_user/thankyou.html">
Replace "thankyou.html" with the filename that you would like to use.
To get the results submitted to your secure form:
1) Connect to your account control panel at: http://www.example.com/admin
2) Click the 'Tools' tab at the top of the page
3) Click the 'Secure Form Submissions' item in the menu on the left side of the page. On that page you will see the items sorted by form name and date.
4) Select the times you want to view, and click the 'View Selected' button. When you are done with the items, select them, and click the 'Delete Selected' button.
1) To ensure that the page displays as secure while your visitors are entering the information, link to the page that has the secure form on it via the secure server: <a href="https://secure.datarealm.com/your_user/orderform.html
2) Make sure that your "redirect" page goes though the secure server. Many browsers will pop up a warning indicating that the redirection is not secure - which can make customers feel a little scared about ordering.
3) Once you have retrieved the secure form results, don't send them anywhere via email. Email is not a secure way to transfer information, and you may unwittingly make your customers private information open to the public.
The following is the HTML for a small conference registration form that mails the results to the registrar, and securely redirects the visitors to a thank you page:
<form action="https://secure.datarealm.com/cgi-bin/secureform" METHOD="POST"> <input type="hidden" name="username" value="your_user"> <input type="hidden" name="formname" value="Conference Registration"> <input type="hidden" name="nextpage" value="https://secure.datarealm.com/your_user/thanks.html"> <input type="hidden" name="subject" value="Conference Registration"> <input type="hidden" name="required" value="devname,cardnumber"> <input type="hidden" name="notifyme" value="firstname.lastname@example.org"> <table border="1"> <tr> <td> Your Name?<br> <input type="text" name="devname"> <p> Which Conference will you be attending?<br> <select name="conference"> <option value="1">ASNT</option> <option value="2">E3</option> <option value="3">HTML Developers</option> </select> <p> If paying by credit card, please enter the card type, and card number below:<br> <select name="cardtype"> <option value="1">Visa</option> <option value="2">MasterCard</option> <option value="3">Amex</option> <option value="4">Discover</option> </select> <input type="text" name="cardnumber"> <p> Please enter your name and address below:<br> <textarea cols="25" rows="5" name="specifically"></textarea> <p> <INPUT TYPE="submit" value="Register"> </td> </tr> </table> </form>
If you have problems with this form, please make sure to check the form settings for any possible errors. A few common errors, with straightforward fixes, are detailed below.
Nothing happens when the submit button is pressed - Check the form action. Typically when the form doesn't work at all it points to a problem with the form action line. Also check your page for any other form action lines that might be confusing the browser (eg: <form>).
404 File Not Found - There are two possible culprits with this error:
1) Incorrect form action. The browser can't find the script to process the results
2) Incorrect redirect value. The browser can't find the page to redirect the visitor to.
Everything appears to work, but the email is never received - Check the entire notifyme line. Any little typo can mix up the email address and prevent the mail from being properly delivered.