Support Update: Changes have been made by Mike Jolley to this plugin to make it WordPress v3.0 and later compatible as well as other tweaks to help this form remain dominant. That said, much of the information on this particular page discusses our form version 2.0. and is subsequently out-of-date. The demo, in fact, is likewise an older version. Now being a stock photographer instead of a web developer I won’t update these things, but the plugin is current. Go get it now (from GitHub.com).
This is the official page for the Secure and Accessible PHP Contact Form v.2.0WP for WordPress (versions 2.0 and later) created by Mike Jolley and myself. This easy-to-install form has many accessibility, usability, and security features and it’s now a fast and easy-to-use plugin for WordPress web logs. For extensive details and information about the form itself, please check out the official Secure and Accessible PHP Contact Form v.2.0 page. (Also see Mike Jolley’s Official Page). On this page I will summarize the WP version. While comments remain open, you can also ask questions or give feedback in the dedicated announcement post. Enjoy the plugin.
Version 2.0WP Features
- Form overview page available to you to confirm the plugin’s general configuration.
- Extensive security features with 16 individual abuse countermeasures.
- Build to the highest web standards with maximum accessibility and usability in mind.
- Extremely simple drag-‘n’-drop, plug-‘n’-play set-up — even novices can do it.
- Simple 7-step form-based configuration so you never have to look at one line of code.
- Form set-up error management to help ensure you set-up critical parts correctly.
- Style choices at the ready with some pre-made form themes designed for several popular WordPress themes… all pre-tested.
- Ability to use “no themes” offered in case you want to use your own style sheet.
- Built in Style Sheet Editor so you can edit the available themes or create one of your own. A commented “
custom.css” file included for you already.
- Extensive on-board documentation library so help is always at the ready.
- Performance monitoring spam counter function.
| Menu |
The Form Plugin Files
The following files are provided with the download:
/wp-gbcf/index.php— Keep snoops bored
/wp-gbcf/wp-gbcf_focus.js— Form field focus for Internet Explorer
/wp-gbcf/wp-gbcf_form.php— Forms, script, pages
/wp-gbcf/wp-gbcf_help.php— Documentation library
/wp-gbcf/wp-gbcf_themes/— Folder contains various theme files
/wp-gbcf/wp-gbcf_themes/wp-gbcf_images/— A place for style images if wanted
| Menu |
Form Plugin Installation
This form is simple to install and can be done in a matter of minutes. The following steps will guide you through the process:
- Unpack the *.zip file and extract the
- Using an FTP program, upload the
/wp-gbcf/folder to your WordPress plugins directory (Example:
- In the sub-directory,
/wp-gbcf_themes/, using FTP or your server admin panel, change the permission of the CSS theme files to 666, but you’ll only do this if you’ll want to edit them.
- Open your WordPress Admin panel and go to the “Plugins” page. Locate the “Secure and Accessible PHP Contact Form” plugin and click on the “Activate” link.
- Once activated, go to the “Contact Form” page and select the “Configuration” link on the sub-menu. If you need help, review the “Form Configuration Instructions.” You won’t be able to enter the URL yet, though.
- Once configured as much as you can, go to the “Write” page and click the “Write Page” If using a default page template give it a name like “Contact Page,” for example.
- Now go back to the “Configuration” page and add the URL of your newly-created form page. “Save” your changes.
- Now go to “Manage” and click on “Edit Pages” link on the sub-menu. Then locate your contact page an click on the “Edit” link to the right of it.
- With the page file open, add this code
<!--gb_contact_form-->to the text area and “Save” the page.
- That’s it, you’re about done. The form will be on the new page you created and should be ready for use and a link to the page will be on your Web Log’s Pages’ navigation menu.
- Test your new form. If you encounter problems, review the “Form Configuration Instructions” and “Helpful FAQs” provided.
- To style your form, select the “Styling” link. There you may select one of the ready-made themes (designed for specific popular WordPress themes), use no theme, or create your own using the style sheet editor provided.
Note: There is also an alternate templating method of installation. A little more involved but better in its flexibility.
| Menu |
Plugin Supported Themes
If you use some of the more popular WordPress Themes, contact form themes have been provided to get you up-and-running faster than ever. The following WordPress themes have been provided for (use these links to get info or download them):
- Default by Michael Heilemann
- The default WordPress theme based on the famous Kubrick. Included with WordPress.
- Classic by Dave Shea
- The original WordPress theme that graced versions 1.2.x and prior. Also included
- Beast-Blog by Mike Cherim
- Beast-Blog Info | Beast-Blog Demo | Download Beast-Blog.
- BeastBlog v.2.0 by Mike Cherim
- BeastBlog v.2.0 Info | BeastBlog v.2.0 Demo | Download BeastBlog v.2.0
- Almost Spring by Becca Wei
- Almost Spring Info | Almost Spring Demo | Download Almost Spring.
- Blix by Sebastian Schmieg
- Blix Info | Blix Demo | Download Blix.
- Connections by Patricia Muller
- Connections Info | Connections Demo | Download Connections.
- Green Marinee by Ian Main
- Green Marinee Info | Green Marinee Demo | Download Green Marinee.
- Ocadia by Becca Wei
- Ocadia Info | Ocadia Demo | Download Ocadia.
- Pool by Borja Fernandez
- Pool Info | Pool Demo | Download Pool.
- SeaBeast by Mike Cherim
- SeaBeast Info | SeaBeast Demo | Download SeaBeast.
Note: This theme has an included contact form but it can be disabled in its configuration and deleted, then this one can be used instead for greater security and flexibility. Also note this theme’s special terms and conditions for use.
- Beginning with build number 20070204 a large number of random themes have been added for you to play around with. Have fun!
| Menu |
Get Form Plugin Support
Use the Working v.2.0WP Demo Page to request support or if you have any special customization requirements. Basic support is free as a courtesy to you — I will answer simple questions but it is requested that you first refer to the installation instructions and change log on this page to try and answer the question yourself. If you have it installed, check out the extensive on-board Documentation library and Helpful FAQs. Advanced support requests and all customization work are for-hire services. Donations are always accepted (there’s a form for doing this in the plugin). While comments remain open, you can also ask questions or give feedback in the dedicated announcement post.
| Menu |
Form Plugin Disclaimer
You are free to use this application but may not redistribute it without written permission. Use of this application will be at your own risk. No guarantees or warranties are made, direct or implied. The creators cannot and will not be liable or held accountable for damages, direct or consequential. By using this application it implies agreement to these conditions.
| Menu |
Change Log & Updates
If any errors are found or changes made — English version only — they will be logged here and summarized in brief. (From oldest to most recent.)
- 2006.10.26: We updated the
wp-gbcf_form.phpfile. The problem was referrer mis-matching if the form admin set the URL with/without a WWW and the form user accesses the form page in an opposite manner. If users cannot access the form using a URL opposite of what you’ve configured, no need to worry, but if they can you’ll want/need to address this. Affects first 85 downloads. Recommendation: If applicable to you as described, swap out the
wp-gbcf_form.phpand the problem is solved.
- 2006.11.01: We updated the
wp-gbcf_help.phpfiles. The basic changes we made the form file allows admins to now enable or disable the Carbon Copy function, the carbon copy email sent to users was modified extensively and is a separate mail, an identified auto-fill user bug was fixed (Spam Trap 2 was being populated), and the referrer match-up was changed significantly as that was giving people problems. The help file was changed to reflect the changes in the form file and a few typos were fixed. The FAQ was also added to. Affects first 289 downloads. Recommendation: Swap out the two files mentioned. That’s it.
- 2006.11.05: Minor tweaks made to the
wp-gbcf_form.phpfile to make it look nicer in the source and play nicer with other WP plugins because not all terminate with a newline as they should. Also made one tweak to mitigate the possibility of an “open relay attack” being carried out. Affects first 494 downloads. Recommendation: Swap out the
- 2006.11.25: Success message typo corrected in the
gbcf_form.phpfile. Affects first 1428 downloads. Recommendation: Swap out the
- 2007.01.20: Minor tweaks made to the
wp-gbcf_form.phpto negotiate IP addresses differently, changed character set to UTF-8 to allow more characters in emails, fixed a typo, and changed the “from” to the sender to allow use with host that require SMTP authentication. Affects first 2828 downloads. Recommendation: Swap out the
- 2007.02.03: Mulitple modifications and improvements made to the
wp-gbcf_form.phpfile to plug a potential header inject exploit hole, enhance database and form performance, and allow content to be added to top of form (with instructions to add content at bottom in FAQ). Configuration was re-ordered (moved CC option control to section 5). Updated the Overview page. The on-board documentation file,
wp-gbcf_help.php, was also updated and now includes instructions on make a contact page template. Multiple style sheets were added for non-specific themes. Affects first 3481 downloads. Recommendation: Swap out the
- 2007.02.13: A modification was made to the
wp-gbcf_form.phpfile to update the header injection exploit error message. The on-board documentation file,
wp-gbcf_help.php, was also edited (it needed it) — hopefully it’s 100% typo-free (though that’s doubtful). All
index.phpfiles were modified. Affects first 4085 downloads. Recommendation: Swap out the
wp-gbcf_help.php, and all folder
- 2007.03.03: The ordering of the negotiations was modified in the
wp-gbcf_form.phpfile for even greater email security. A line in the
wp-gbcf_help.phpfile was also changed. Affects first 5116 downloads. Recommendation: Swap out the
- 2007.29.03: In the
wp-gbcf_form.phpfile the blockquote’s cite attribute in the success result was changed, the “Referrer Mismatch” error was modified, the random exploit distribution codes were changed, and mail function detection was added to help users determine if they can use the form. The documentation file,
wp-gbcf_help.php, was also updated. Affects first 6792 downloads. Recommendation: Swap out the
- 2007.04.07: I made several small modifications in the
wp-gbcf_form.phpto even further enhance security. I also modified the mail header to extract the character set from the blog settings instead of hard-coding it. It was hard-coded
utf-8, and on most blogs will remain as such, but now that can be modified if the webmaster has selected another
charsetfor their blog. The documentation file,
wp-gbcf_help.php, was also updated. Affects first 7255 downloads. Recommendation: Swap out the
- 2007.04.14: Due to threats from a disgruntled user I have removed all link-backs in the
wp-gbcf_form.phpfile if Showcredit “No” is selected in the config. The documentation file,
wp-gbcf_help.php, was also updated. Affects first 7589 downloads. Recommendation: Swap out the
wp-gbcf_help.phpfiles. This was never meant to dupe or spam anyone. It was used purely for software promotion and innocuous tracking.
- 2008.02.07: I moved the labels, reduced their length, spanned the legends, added 3D to make a working Whois query input. Plus I used a couple of WP functions to
autop()the page output. Most changes were for greater accessibility. Affects first 23664 downloads. Recommendation: Swap out the
- 2008.06.22: I added a
brhook after the textarea. I also added a couple of WP functions to
autop()the help page template instructions. Affects first 33415 downloads. Recommendation: Swap out the
- 2008.07.31: I shortened the variable lengths due to some server issues some people encountered. I also updated the readme and the Documentation page. Affects first 36611 downloads. Recommendation: Swap out the
- 2008.11.18: I added the
-fparameter to help those with requiring email providers such as AOL. Affects first 45243 downloads. Recommendation: Swap out the
| Menu |
Fee-based form customizations are available. This service might include the addition or removal of user inputs, etc. To learn more or to ask for quote request, please contact me. Also, please note, the WordPress version of this form has a commercial cousin that supports multiple users. In other words the user chooses a “department” or “recipient” and the email is sent only to that department or person, customized for that back-end user. This version is priced at $70. ($50 for GAWDS and WSG members.)
| Menu |
Download the Form
To date, this “Secure and Accessible PHP Contact Form v.2.xWP” has been downloaded
118227 times since its release on: Oct. 25th, 2006.
- German Version Available!
- I removed this version due to numerous complaints about its wording, grammar, etc.
| Menu |
Credits & Thanks
I could not have done this without Mike Jolley’s help! He was an excellent partner in this project. Thanks Mike! Again, I’d also like to thank the people who helped me get the form off the ground in the first place.
| Content Top |