:strip_exif()/u/151711/fido_7.gif?f=community)
Jongens,
ik heb een login script gemaakt, Nou werkt het volgende niet, Als je een member aan maakt gaat die niet naar de new_member.php maar hij zet de gegevens wel in de database.
Als ik dan met die member wil inloggen, gaat hij niet naar de member_page.php Maar laat hij in de database wil zien op welke tijdstip die heeft ingelogd.
Nou geeft me editor bij member_page en new_member de volgende foutmelding
Undefined index: auth
In me php.ini heb ik session.use_trans_sid=1 gezet, had ergens gelezen dat dat moest met sessies.
dogs.inc en funtions12.inc laat ik hier niet neerzetten staat de fout zoiezo niet in, is me database connectie en een grote functie omschrijving.
Ik hoop dat iemand me kan helpen, en dat me post zo goed en duidelijk is, want ik zelf kom er echt ff niet uit.
ik heb een login script gemaakt, Nou werkt het volgende niet, Als je een member aan maakt gaat die niet naar de new_member.php maar hij zet de gegevens wel in de database.
Als ik dan met die member wil inloggen, gaat hij niet naar de member_page.php Maar laat hij in de database wil zien op welke tijdstip die heeft ingelogd.
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
| <?php
/* Program: Login.php
* Desc: Login program for the Members Only section of the
* pet store. It provides two options: (1) login
* using an existing Login Name and (2) enter a new
* login name. Login Names and passwords are stored
* in a MySQL database.
*/
session_start(); # 9
include("dogs.inc"); #10
switch (@$_GET['do']) #11
{
case "login": #13
$connection = mysql_connect($host, $user,$password) #14
or die ("Couldn't connect to server.");
$db = mysql_select_db($database, $connection)
or die ("Couldn't select database."); #17
$sql = "SELECT loginName FROM Member
WHERE loginName='$_POST[fusername]'"; #20
$result = mysql_query($sql)
or die("Couldn't execute query."); #22
$num = mysql_num_rows($result); #23
if ($num == 1) // login name was found #24
{
$sql = "SELECT loginName FROM Member
WHERE loginName='$_POST[fusername]'
AND password=password('$_POST[fpassword]')";
$result2 = mysql_query($sql)
or die("Couldn't execute query 2."); #30
$num2 = mysql_num_rows($result2);
if ($num2 > 0) // password is correct #32
{
$_SESSION['auth']="yes"; #34
$logname=$_POST['fusername'];
$_SESSION['logname'] = $logname; #36
$today = date("Y-m-d h:m:s"); #37
$sql = "INSERT INTO Login (loginName,loginTime)
VALUES ('$logname','$today')";
mysql_query($sql) or die("Can't execute query.");
header("Location: Member_page.php"); #41
}
else // password is not correct #43
{
unset($_GET['do']); #45
$message="The Login Name, '$_POST[fusername]'
exists, but you have not entered the
correct password! Please try again.<br>";
include("login_form.inc"); #49
}
} #51
elseif ($num == 0) // login name not found #52
{
unset($_GET['do']); #54
$message = "The Login Name you entered does not
exist! Please try again.<br>";
include("login_form.inc");
}
break; #59
case "new": #61
foreach($_POST as $field => $value) #62
{
if ($field != "fax") #64
{
if ($value == "") #66
{
unset($_GET['do']);
$message_new = "Required information is missing.
Please try again.";
include("login_form.inc");
exit();
}
}
if (ereg("(Name)",$field)) #75
{
/*if (!ereg("^[A-Za-z' -]{1,50}$",$value))
{
unset($_GET['do']);
$message_new = "$field is not a valid name.
Please try again.";
include("login_form.inc");
exit();
}*/
}
$$field = strip_tags(trim($value)); #86
} // end foreach
if (!ereg("^[0-9]{5,5}(\-[0-9]{4,4})?$",$zip)) #88
{
unset($_GET['do']);
$message_new = "$zip is not a valid zip code.
Please try again.";
include("login_form.inc");
exit();
}
if (!ereg("^[0-9)(xX -]{7,20}$",$phone)) #96
{
unset($_GET['do']);
$message_new = "$phone is not a valid phone number.
Please try again.";
include("login_form.inc");
exit();
}
if ($fax != "") #104
{
if (!ereg("^[0-9)(xX -]{7,20}$",$fax))
{
unset($_GET['do']);
$message_new = "$fax is not a valid phone number.
Please try again.";
include("loglogin_form.inc");
exit();
}
}
if (!ereg("^.+@.+\\..+$",$email)) #115
{
unset($_GET['do']);
$message_new = "$email is not a valid email address.
Please try again.";
include("login_form.inc");
exit();
} #122
/* check to see if login name already exists */
$connection = mysql_connect($host,$user,$password)
or die ("Couldn't connect to server.");
$db = mysql_select_db($database, $connection)
or die ("Couldn't select database.");
$sql = "SELECT loginName FROM Member
WHERE loginName='$newname'";
$result = mysql_query($sql)
or die("Couldn't execute query.");
$num = mysql_numrows($result);
if ($num > 0) #133
{
unset($_GET['do']);
$message_new = "$newname already used. Select another
Member ID.";
include("login_form.inc");
exit();
}
else #141
{
$today = date("Y-m-d"); #143
$sql = "INSERT INTO Member (loginName,createDate,
password,firstName,lastName,street,city,
state,zip,phone,fax,email) VALUES
('$newname','$today',password('$newpass'),
'$firstName', '$lastName','$street','$city',
'$state','$zip','$phone','$fax','$email')";
mysql_query($sql); #150
$_SESSION['auth']="yes"; #151
$_SESSION['logname'] = $newname; #152
/* send email to new member */ #153
$emess = "A new Member Account has been setup. ";
$emess.= "Your new Member ID and password are: ";
$emess.= "\n\n\t$newname\n\t$newpass\n\n";
$emess.= "We appreciate your interest in Pet Store";
$emess.= " at PetStore.com. \n\n";
$emess.= "If you have any questions or problems,";
$emess.= " email webmaster@petstore.com";
$ehead="From: member-desk@petstore.com\r\n"; #161
$subj = "Your new Member Account from Pet Store";
$mailsend=mail("$email","$subj","$emess","$ehead");
header("Location: New_member.php"); #164
}
break; #166
default: #168
include("login_form.inc");
}
?> |
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
| <?php
/* File: login_form.inc
* Desc: Displays login page. Page displays two forms--one
* form for entering an existing login name and
* password and another form for the information
* needed to apply for a new account.
*/
include("functions12.inc"); # 8
?>
<html>
<head><title>Members Only Login</title></head>
<body topmargin="0" leftmargin="0" marginheight="0"
marginwidth="0">
<table border="0" cellpadding="5" cellspacing="0">
<tr><td colspan="3" bgcolor="gray" align="center">
<font color="white" size="+10">
<b>Members Only Section</b></font></td></tr>
<tr>
<td width="33%" valign="top">
<font size="+1"><b>Are you a member?</b></font>
<p>
<!-- form for customer login -->
<form action="Login.php?do=login" method="POST">
<table border="0">
<?php #25
if (isset($message))
echo "<tr><td colspan='2'>$message </td></tr>";
?>
<tr><td align=right><b>Username</b></td>
<td><input type="text" name="fusername"
size="20" maxsize="20">
</td></tr>
<tr><td width="120" align="right"><b>Password</b>
</td>
<td><input type="password" name="fpassword"
size="20" maxsize="20"></td></tr>
<tr><td align="center" colspan="2">
<br><input type="submit" name="log"
value="Enter">
</td></tr>
</table>
</form>
</td>
<td width="1" bgcolor="gray"></td>
<td width="67%">
<p><font size="+1"><b>Not a member yet?</b></font>
Get discounts, a newsletter, advance notice of
new pets, much more. Fill in the information
below and join. It's easy and free! </b>
<!-- form for new member to fill in -->
<form action="Login.php?do=new" method="POST">
<p>
<table border="0" width="100%">
<?php
if (isset($message_new)) #55
echo "<tr><td colspan='2'><b>$message_new</b>
</td></tr>";
?>
<tr><td align="right"><b>Member ID</b></td>
<td><input type="text" name="newname"
value="<?php echo @$newname ?>"
size="20" maxlength="20"></td></tr>
<tr><td align="right"><b>Password</b></td>
<td><input type="password" name="newpass"
value="<?php echo @$newpass ?>"
size="10" maxlength="8"></td></tr>
<tr><td align="right"><b>First Name</b></td>
<td><input type="text" name="firstName"
value="<?php echo @$firstName ?>"
size="40" maxlength="40"></td></tr>
<tr><td align="right"><b>Last Name</b></td>
<td><input type="text" name="lastName"
value="<?php echo @$lastName ?>"
size="40" maxlength="40"></td></tr>
<tr><td align="right"><b>Street</b></td>
<td><input type="text" name="street"
value="<?php echo @$street ?>"
size="55" maxlength="50"></td></tr>
<tr><td align="right"><b>City</b></td>
<td><input type="text" name="city"
value="<?php echo @$city ?>"
size="40" maxlength="40"></td></tr>
<tr><td align="right"><b>State</b></td>
<td><select name="state">
<?php
$stateName=getStateName(); #86
$stateCode=getStateCode(); #87
for ($n=1;$n<=50;$n++)
{
$state=$stateName[$n];
$scode=$stateCode[$n];
echo "<option value='$scode'";
if ($scode== "AL")
echo " selected";
echo ">$state\n";
}
?>
</select>
<b>Zip</b>
<input type="text" name="zip"
value="<?php echo @$zip ?>"
size="10" maxsize="10">
</td></tr>
<tr><td align=right><b>Phone</b></td>
<td><input type="test" name="phone"
value="<?php echo @$phone ?>"
size="15" maxlength="20">
<b>Fax</b>
<input type="text" name="fax"
value="<?php echo @$fax ?>"
size="15" maxlength="20"></td></tr>
<tr><td align=right><b>Email Address</b></td>
<td><input type="test" name="email"
value="<?php echo @$email ?>"
size="55" maxlength="67"></td></tr>
<tr><td> </td>
<td align="center">
<input type="submit"
value="Become a Member"></td>
</tr>
</table>
</form>
</td>
</tr>
<tr><td colspan="3" bgcolor="gray"> </td></tr>
</table>
<div align="center"><font size="-1">
All comments and suggestions are appreciated. Please
send comments to <a href="mailto:webmaster@petstore.com">
webmaster@petstore.com</A> </font></div>
</body></html> |
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
| <?php
/* Program: New_member.php
* Desc: Displays the new member welcome page. Greets
member by name and gives user choice to enter
* restricted section or go back to main page.
*/
session_start(); # 7
if (@$_SESSION['auth'] != "yes") # 9
{
header("Location: Login.php");
exit();
}
include("dogs.inc"); #14
$connection = mysql_connect($host,$user,$password)
or die ("Couldn't connect to server."); #16
$db = mysql_select_db($database, $connection)
or die ("Couldn't select database."); #18
$sql = "SELECT firstName,lastName FROM Member
WHERE loginName='{$_SESSION['logname']}'";
$result = mysql_query($sql)
or die("Couldn't execute query 1.");
$row = mysql_fetch_array($result,MYSQL_ASSOC);
extract($row);
echo "<html>
<head><title>New Member Welcome</title></head>
<body>
<h2 align='center' style='margin-top: .7in'>
Welcome $firstName $lastName</h2>\n"; #29
?>
<p>Your new Member Account lets you enter the Members Only
section of our web site. You'll find special discounts and
bargains, a huge database of animal facts and stories, advice
from experts, advance notification of new pets for sale,
a message board where you can talk to other Members, and much
more.
<p>Your new Member ID and password were emailed to you. Store
them carefully for future use.<br>
<div align="center">
<p style="margin-top: .5in"><b>Glad you could join us!</b>
<form action="New_member.php" method="POST">
<input type="submit"
value="Enter the Members Only Section">
</form>
<form action="PetShopFrontMembers.php" method="POST">
<input type="submit" value="Go to Pet Store Main Page">
</form>
</div>
</body></html> |
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
| <?php
session_start();
if (@$_SESSION['auth'] != "yes")
{
header("Location: Login.php");
exit();
}
include("dogs.inc"); #14
$connection = mysql_connect($host,$user,$password)
or die ("Couldn't connect to server."); #16
$db = mysql_select_db($database, $connection)
or die ("Couldn't select database."); #18
$sql = "SELECT firstName,lastName FROM Member
WHERE loginName='{$_SESSION['logname']}'";
$result = mysql_query($sql)
or die("Couldn't execute query 1.");
$row = mysql_fetch_array($result,MYSQL_ASSOC);
extract($row);
echo "<html>
<head><title>Member Welcome</title></head>
<body>
<h2 align='center' style='margin-top: .7in'>
Welcome $firstName $lastName</h2>\n"; #29
?> |
Nou geeft me editor bij member_page en new_member de volgende foutmelding
Undefined index: auth
In me php.ini heb ik session.use_trans_sid=1 gezet, had ergens gelezen dat dat moest met sessies.
dogs.inc en funtions12.inc laat ik hier niet neerzetten staat de fout zoiezo niet in, is me database connectie en een grote functie omschrijving.
Ik hoop dat iemand me kan helpen, en dat me post zo goed en duidelijk is, want ik zelf kom er echt ff niet uit.
/u/107051/jeroenmadtrix60.png?f=community)
Dit topic is gesloten.