A little coding question

loserWILL · 16-12-2007, 03:25 PM

Try this:

PHP Code:


<?php

if(@file_exists("installer.php"))

{

header("Location: installer.php?stage=1");

}

session_start();

include("includes/functions.php");

include("includes/config.php");



// Check for login

if($_GET['inside'] == "yes" || isset($_SESSION['username']) && isset($_SESSION['password']) && !$_SESSION['level'] == "banned") {

##### CHECK FOR FIRST-TIME USER #####

$checker = mysql_fetch_array(mysql_query("SELECT * FROM users WHERE username = '$_SESSION[username]'"));

$username = $_POST['username'];

// mySQL

$sql = "SELECT * FROM users";

$select = mysql_query("SELECT username FROM users");

while ($display = mysql_fetch_array($select)) {

$name = $display['name'];



if($checker['firsttime'] == "") {

header('location: miniprofile.php?firstime=yes');

die();

} else {

header('location: miniprofile.php?name=$name');

die();

}

}





elseif($_GET['method'] == "login") {



$username = $_POST['username'];

$password = $_POST['password'];



if(empty($username) || empty($password)) {

header('location: minilogin.php?error=2');

die();

}









// Clean out and encrypt strings



$username = clean($username);

$password = encrypt($password);



// We have encrypted and cleaned the strings.



$check = mysql_query("SELECT * FROM users WHERE username = '$username'");

while($rows = mysql_fetch_array($check)) {

$realpass = $rows[password];

$level = $rows[level];

$realuser = $rows[username];

}



$rows3 = mysql_num_rows($check);





if($rows3 == "0") {

header('location: minilogin.php?error=1');

die();

}



if($password == $realpass) {

// Set the sessions

$_SESSION['username'] = $realuser;

$_SESSION['password'] = $password;

$_SESSION['level'] = $level;



##### CHECK FOR FIRST-TIME USER #####

$checker = mysql_fetch_array(mysql_query("SELECT * FROM users WHERE username = '$_SESSION[username]'"));



if($checker['firsttime'] == "") {

header('location: miniprofile.php?firstime=yes');

die();

} elseif($_SESSION[level] == "banned") {

header('location: minilogin.php?banned=true');

} else {

header('location: minilogin.php?inside=yes');

die();

}

}

else {

session_destroy();

header('location: minilogin.php?error=1');

die();

}







}

?>

<?

if(isset($_SESSION['username']) && isset($_SESSION['password']) && isset($_SESSION['level'])) {

header('location: miniprofile.php');

die();

}

?>



<link href="../default.css" rel="stylesheet" type="text/css" />



<center>

<form method="post" action="?method=login">

<br>Username:<br />

<input name="username" type="text" id="username" onChange="check(this.value)" /><div id="results"></div>



<br />

Password:<br />

<label>

<input name="password" type="password" id="password" />

</label>

<br />

<br />

<label>

<input type="submit" name="Submit" value="Login" />

</label>

</form>







<?php

if($_GET['error'] == "1") {

echo(" </div>

<div id=\"error\">");

echo("<font color='#FF0000'><b>Error:</b> Invalid username and/or password<br>");

echo(" <br></div>");

}

elseif($_GET['error'] == "2") {

echo(" </div>

<div id=\"error\">");

echo("<font color='#FF0000'><b>Error:</b> You must fill in both fields<br>");

echo(" <br></div>");

}

elseif($_GET['banned'] == "true") {

echo(" </div>

<div id=\"error\">");

echo("<font color='#FF0000'><b>Error:</b> Your account is disabled or banned!<br>");

echo(" <br></div>");

}

else {

echo(" <br></div>");

}

?>

<a href="register.php" target="home">Register</a><br>

<a href="retreivepass.php" target="home">Forgot your password?</a>



</body>



</html>

:Lively · 16-12-2007, 03:36 PM

Parse error: syntax error, unexpected T_ELSEIF in /home/blazerad/public_html/v2/panel/minilogin.php on line 31

loserWILL · 16-12-2007, 03:37 PM

Try:

PHP Code:


<?php
if(@file_exists("installer.php"))
{
header("Location: installer.php?stage=1");
}
session_start();
include("includes/functions.php");
include("includes/config.php");

// Check for login
if($_GET['inside'] == "yes" || isset($_SESSION['username']) && isset($_SESSION['password']) && !$_SESSION['level'] == "banned") {
##### CHECK FOR FIRST-TIME USER #####
$checker = mysql_fetch_array(mysql_query("SELECT * FROM users WHERE username = '$_SESSION[username]'"));
$username = $_POST['username'];
// mySQL
$sql = "SELECT * FROM users";
$select = mysql_query("SELECT username FROM users");
while ($display = mysql_fetch_array($select)) {
$name = $display['name'];

if($checker['firsttime'] == "") {
header('location: miniprofile.php?firstime=yes');
die();
} else {
header('location: miniprofile.php?name=$name');die();
}
}


else
($_GET['method'] == "login") {

$username = $_POST['username'];
$password = $_POST['password'];

if(empty($username) || empty($password)) {
header('location: minilogin.php?error=2');
die();
}




// Clean out and encrypt strings

$username = clean($username);
$password = encrypt($password);

// We have encrypted and cleaned the strings.

$check = mysql_query("SELECT * FROM users WHERE username = '$username'");
while($rows = mysql_fetch_array($check)) {
$realpass = $rows[password];
$level = $rows[level];
$realuser = $rows[username];
}

$rows3 = mysql_num_rows($check);


if($rows3 == "0") {
header('location: minilogin.php?error=1');
die();
}

if($password == $realpass) {
// Set the sessions
$_SESSION['username'] = $realuser;
$_SESSION['password'] = $password;
$_SESSION['level'] = $level;

##### CHECK FOR FIRST-TIME USER #####
$checker = mysql_fetch_array(mysql_query("SELECT * FROM users WHERE username = '$_SESSION[username]'"));

if($checker['firsttime'] == "") {
header('location: miniprofile.php?firstime=yes');
die();
} elseif($_SESSION[level] == "banned") {
header('location: minilogin.php?banned=true');
} else {
header('location: minilogin.php?inside=yes');
die();
}
}
else {
session_destroy();
header('location: minilogin.php?error=1');
die();
}



}
?>
<?
if(isset($_SESSION['username']) && isset($_SESSION['password']) && isset($_SESSION['level'])) {
header('location: miniprofile.php');
die();
}
?>

<link href="../default.css" rel="stylesheet" type="text/css" />

<center>
<form method="post" action="?method=login">
<br>Username:<br />
<input name="username" type="text" id="username" onChange="check(this.value)" /><div id="results"></div>

<br />
Password:<br />
<label>
<input name="password" type="password" id="password" />
</label>
<br />
<br />
<label>
<input type="submit" name="Submit" value="Login" />
</label>
</form>



<?php
if($_GET['error'] == "1") {
echo(" </div>
<div id=\"error\">");
echo("<font color='#FF0000'><b>Error:</b> Invalid username and/or password<br>");
echo(" <br></div>");
}
elseif($_GET['error'] == "2") {
echo(" </div>
<div id=\"error\">");
echo("<font color='#FF0000'><b>Error:</b> You must fill in both fields<br>");
echo(" <br></div>");
}
elseif($_GET['banned'] == "true") {
echo(" </div>
<div id=\"error\">");
echo("<font color='#FF0000'><b>Error:</b> Your account is disabled or banned!<br>");
echo(" <br></div>");
}
else {
echo(" <br></div>");
}
?>
<a href="register.php" target="home">Register</a><br>
<a href="retreivepass.php" target="home">Forgot your password?</a>

</body>

</html>

:Lively · 16-12-2007, 03:39 PM

Parse error: syntax error, unexpected T_ELSE in /home/blazerad/public_html/v2/panel/login2.php on line 30

loserWILL · 16-12-2007, 04:11 PM

Erm, try this. If this doesn't work I don't know.

PHP Code:


<?php
if(@file_exists("installer.php"))
{
header("Location: installer.php?stage=1");
}
session_start();
include("includes/functions.php");
include("includes/config.php");

// Check for login
if($_GET['inside'] == "yes" || isset($_SESSION['username']) && isset($_SESSION['password']) && !$_SESSION['level'] == "banned") {
##### CHECK FOR FIRST-TIME USER #####
$checker = mysql_fetch_array(mysql_query("SELECT * FROM users WHERE username = '$_SESSION[username]'"));
$username = $_POST['username'];
// mySQL
$sql = "SELECT * FROM users";
$select = mysql_query("SELECT username FROM users");
while ($display = mysql_fetch_array($select)) {
$name = $display['name'];

if($checker['firsttime'] == "") {
header('location: miniprofile.php?firstime=yes');
die();
} else {
header('location: miniprofile.php?name=$name');die();
}
}


if
($_GET['method'] == "login") {

$username = $_POST['username'];
$password = $_POST['password'];

if(empty($username) || empty($password)) {
header('location: minilogin.php?error=2');
die();
}




// Clean out and encrypt strings

$username = clean($username);
$password = encrypt($password);

// We have encrypted and cleaned the strings.

$check = mysql_query("SELECT * FROM users WHERE username = '$username'");
while($rows = mysql_fetch_array($check)) {
$realpass = $rows[password];
$level = $rows[level];
$realuser = $rows[username];
}

$rows3 = mysql_num_rows($check);


if($rows3 == "0") {
header('location: minilogin.php?error=1');
die();
}

if($password == $realpass) {
// Set the sessions
$_SESSION['username'] = $realuser;
$_SESSION['password'] = $password;
$_SESSION['level'] = $level;

##### CHECK FOR FIRST-TIME USER #####
$checker = mysql_fetch_array(mysql_query("SELECT * FROM users WHERE username = '$_SESSION[username]'"));

if($checker['firsttime'] == "") {
header('location: miniprofile.php?firstime=yes');
die();
} elseif($_SESSION[level] == "banned") {
header('location: minilogin.php?banned=true');
} else {
header('location: minilogin.php?inside=yes');
die();
}
}
else {
session_destroy();
header('location: minilogin.php?error=1');
die();
}



}
?>
<?
if(isset($_SESSION['username']) && isset($_SESSION['password']) && isset($_SESSION['level'])) {
header('location: miniprofile.php');
die();
}
?>

<link href="../default.css" rel="stylesheet" type="text/css" />

<center>
<form method="post" action="?method=login">
<br>Username:<br />
<input name="username" type="text" id="username" onChange="check(this.value)" /><div id="results"></div>

<br />
Password:<br />
<label>
<input name="password" type="password" id="password" />
</label>
<br />
<br />
<label>
<input type="submit" name="Submit" value="Login" />
</label>
</form>



<?php
if($_GET['error'] == "1") {
echo(" </div>
<div id=\"error\">");
echo("<font color='#FF0000'><b>Error:</b> Invalid username and/or password<br>");
echo(" <br></div>");
}
elseif($_GET['error'] == "2") {
echo(" </div>
<div id=\"error\">");
echo("<font color='#FF0000'><b>Error:</b> You must fill in both fields<br>");
echo(" <br></div>");
}
elseif($_GET['banned'] == "true") {
echo(" </div>
<div id=\"error\">");
echo("<font color='#FF0000'><b>Error:</b> Your account is disabled or banned!<br>");
echo(" <br></div>");
}
else {
echo(" <br></div>");
}
?>
<a href="register.php" target="home">Register</a><br>
<a href="retreivepass.php" target="home">Forgot your password?</a>

</body>

</html>

Johno · 16-12-2007, 04:26 PM

Hey,

PHP Code:


                              <?php
if(@file_exists("installer.php"))
{
    header("Location: installer.php?stage=1");
}
session_start();
include("includes/functions.php");
include("includes/config.php");

// Check for login
if($_GET['inside'] == "yes" || isset($_SESSION['username']) && isset($_SESSION['password']) && !$_SESSION['level'] == "banned") {
##### CHECK FOR FIRST-TIME USER #####
$checker = mysql_fetch_array(mysql_query("SELECT * FROM users WHERE username = '$_SESSION[username]'"));

if($checker['firsttime'] == "") {
header('location: miniprofile.php?firstime=yes');
die();
} else {
header("location: miniprofile.php?name=$name");
die();
}
}


elseif($_GET['method'] == "login") {

$username = $_POST['username'];
$password = $_POST['password'];

if(empty($username) || empty($password)) {
header('location: minilogin.php?error=2');
die();
}




// Clean out and encrypt strings

$username = clean($username);
$password = encrypt($password);

// We have encrypted and cleaned the strings.

$check = mysql_query("SELECT * FROM users WHERE username = '$username'");
while($rows = mysql_fetch_array($check)) {
$realpass = $rows[password];
$level = $rows[level];
$realuser = $rows[username];
}

$rows3 = mysql_num_rows($check);


if($rows3 == "0") {
header('location: minilogin.php?error=1');
die();
}

if($password == $realpass) {
// Set the sessions
$_SESSION['username'] = $realuser;
$_SESSION['password'] = $password;
$_SESSION['level'] = $level;

##### CHECK FOR FIRST-TIME USER #####
$checker = mysql_fetch_array(mysql_query("SELECT * FROM users WHERE username = '$_SESSION[username]'"));

if($checker['firsttime'] == "") {
header('location: miniprofile.php?firstime=yes');
die();
} elseif($_SESSION[level] == "banned") {
header('location: minilogin.php?banned=true');
} else {
header('location: minilogin.php?inside=yes');
die();
}
}
else {
session_destroy();
header('location: minilogin.php?error=1');
die();
}



}
?>
<?
if(isset($_SESSION['username']) && isset($_SESSION['password']) && isset($_SESSION['level'])) {
header('location: miniprofile.php');
die();
}
?>

<link href="../default.css" rel="stylesheet" type="text/css" />

<center>        
<form method="post" action="?method=login">
<br>Username:<br />
<input name="username" type="text" id="username" onChange="check(this.value)" /><div id="results"></div>
 
          <br />
    Password:<br />
    <label>
    <input name="password" type="password" id="password" />
    </label>
    <br />
    <br />
    <label>
    <input type="submit" name="Submit" value="Login" />
    </label>
</form>

        
        
<?php
if($_GET['error'] == "1") {
echo("        </div>
        <div id=\"error\">");
echo("<font color='#FF0000'><b>Error:</b> Invalid username and/or password<br>");
echo("        <br></div>");
}
elseif($_GET['error'] == "2") {
echo("        </div>
        <div id=\"error\">");
echo("<font color='#FF0000'><b>Error:</b> You must fill in both fields<br>");
echo("        <br></div>");
}
elseif($_GET['banned'] == "true") {
echo("        </div>
        <div id=\"error\">");
echo("<font color='#FF0000'><b>Error:</b> Your account is disabled or banned!<br>");
echo("        <br></div>");
}
else {
echo("        <br></div>");
}
?>        
<a href="register.php" target="home">Register</a><br>
<a href="retreivepass.php" target="home">Forgot your password?</a>

</body>

</html>

I don't think it will work but give it a try

.:; Johno

Mentor · 16-12-2007, 05:33 PM

In your orignal example, you want to get the userlogged in varible as the text yes?
$_SESSION[username] as far as i can tell is currenlty holding the username.
So just shove that in the the header:

header('location: miniprofile.php?name='.$_SESSION[username]);

Now, whatevers in the username session var will become part of the location header, so with luck its holding the username and will fix ya code

for other attemptes by the looks of it your getting magic $name varibles from no where, then in the versions that do get it, your saving it as $username then trying to call $name again
:p

loserWILL · 16-12-2007, 05:37 PM

Originally Posted by 01101101entor

In your orignal example, you want to get the userlogged in varible as the text yes?
$_SESSION[username] as far as i can tell is currenlty holding the username.
So just shove that in the the header:

header('location: miniprofile.php?name='.$_SESSION[username]);

Now, whatevers in the username session var will become part of the location header, so with luck its holding the username and will fix ya code

for other attemptes by the looks of it your getting magic $name varibles from no where, then in the versions that do get it, your saving it as $username then trying to call $name again
:p

Woah, I never thought of that.

Ini · 16-12-2007, 05:47 PM

As 01101101entor said

Code:

 header('location: miniprofile.php?name='.$_SESSION[username]);

but put as:

Code:

 header('location: miniprofile.php?name=$_SESSION[username]');

Invent · 16-12-2007, 05:48 PM

Originally Posted by Ini

As 01101101entor said

Code:

 header('location: miniprofile.php?name='.$_SESSION[username]);

but put as:

Code:

 header('location: miniprofile.php?name=$_SESSION[username]');

No...

Put it as;

PHP Code:


header('location: miniprofile.php?name='.$_SESSION[username]);

Thread: A little coding question

Thread Tools

Posting Permissions