i would appreciate if you helped me to fix those errors. i am new at php you see.
So, i started working on your notifications.
i managed to hash my passwords using md5. In fact i tottaly changed the first file i posted.
now is this:
<?php session_start();
function checkUserPass($username, $password){
$username = str_replace("'","''",$username);
$password = md5($password);
// Verify that user is in database
$q = "SELECT * FROM members WHERE login='$username' AND passwd='$password'";
$result = mysql_query($q);
if(!$result || (mysql_numrows($result) < 1)){
return 1; //Indicates username failure
}
// Retrieve password from result
$member = mysql_fetch_array($result);
// Validate that password is correct
if($password == $member['passwd']){
$_SESSION['SESS_MEMBER_ID'] = $member['member_id'];
$_SESSION['SESS_FIRST_NAME'] = $member['firstname'];
$_SESSION['SESS_LAST_NAME'] = $member['lastname'];
$_SESSION['SESS_CLASS'] = $member['class'];
$_SESSION['SESS_FATHERSNAME'] = $member['fathersname'];
$_SESSION['SESS_LOGIN'] = $member['login'];
return 0; //Success! Username and password confirmed
}
else{
return 1; //Indicates password failure
}
}
include '../config_db.php';
//Sanitize the POST values
$login = $_POST['login'];
$password = $_POST['password'];
if (checkUserPass($login, $password) == 0)
{
$_SESSION['loggedin'] = "ok";
//login ok
header("location: ../index.php");
exit();
}
else
{
//Login failed
header("location: login-failed.php");
exit();
}
?>
as you can see everytime anyone logs in the system redirects him to index page. it works. But the problems are the same. The welcome username message shows. if i refresh the page 1-2 times and the logged in message is gone (i am not logged in anymore). Another refresh may cause the logged in message to show again (logged in again).
i am giving you the index page below. As you will see i ve made some changes you suggested
<?php session_start();
//error_reporting(E_ALL ^ E_NOTICE);
include 'config_paths.php';
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html
xmlns="http://www.w3.org/1999/xhtml"
lang="en"
xml:lang="en"
>
<head>
<meta
http-equiv="Content-Type"
content="text/html; charset=windows-1253"
/>
<!--CSS -->
<link
type="text/css"
rel="stylesheet"
href="screen1.css"
media="screen,projection,tv"
/>
<!-- JAVASCRIPTS -->
<script type="text/javascript"
src="library.js"
></script>
<title>
<?php echo $nameofschool; ?>
</title>
</head>
<body>
<div id="pageWrapper">
<h1>
<?php echo $nameofschool; ?>
<span></span>
</h1>
<div class="mainmenu">
<?php
echo $menu;
if($_SESSION['loggedin'] !== "ok")
{
echo '<li class="li_hc"><a href="blog/blog1.php" target="_self" >(Blog)</a><ul class="ul_ch">';
}
else
{
echo '<li class="li_hc"><a href="blog/blog.php" target="_self" > (Blog)</a><ul class="ul_ch">';
}
?>
</ul>
</div>
<div id="container">
<div id="leftside">
<A HREF="javascript:doLink();" onMouseOver="status=url[ct];return true;"
onMouseOut="status=''">
<IMG NAME="Ad_Image" SRC="images/image001.jpg" width="650" height= "320" BORDER=0>
</A>
</div>
<div id="rightside">
<?php
/*echo "<font face='verdana' size='0,5'>";
echo $nameofschool;
echo "<br />";
echo "</font>";*/
?>
<img src="random/randim.php?folder=images" WIDTH="200" HEIGHT="150" alt="our place" /><br /><br />
<p>
<?php
if ($_SESSION['loggedin']=="ok")
{
echo "WELCOME.". $_SESSION['SESS_LAST_NAME'];
echo "<br>";
echo '<a href="profil.php">PROFIL<br /> <img src="images/profil.gif" width="80" height="62" alt="profil" /> </a>';
if ($_SESSION['SESS_LAST_NAME'] == 'grammateas')
{ echo "<br><a href='admin/index.php'>ADMIN</a>";
}
echo "<br>";
echo "<a href='login/logout.php'>LOGOUT</a>";
echo "<br>";
?>
<!-- GTranslate: http://edo.webmaster.am/gtranslate -->
<a href="javascript:doGTranslate('el|en')" title="English" class="gflag" style="background-position:-0px -0px;"><img src="http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/tmpl/lang/blank.png" height="24" width="24" alt="English" /></a><a href="javascript:doGTranslate('el|fr')" title="French" class="gflag" style="background-position:-200px -100px;"><img src="http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/tmpl/lang/blank.png" height="24" width="24" alt="French" /></a><a href="javascript:doGTranslate('el|de')" title="German" class="gflag" style="background-position:-300px -100px;"><img src="http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/tmpl/lang/blank.png" height="24" width="24" alt="German" /></a><a href="javascript:doGTranslate('el|el')" title="Greek" class="gflag" style="background-position:-400px -100px;"><img src="http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/tmpl/lang/blank.png" height="24" width="24" alt="Greek" /></a>
<style type="text/css">
<!--
a.gflag {font-size:24px;padding:1px 0;background-repeat:no-repeat;background-image:url('http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/tmpl/lang/24.png');}
a.gflag img {border:0;}
a.gflag:hover {background-image:url('http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/tmpl/lang/24a.png');}
-->
</style>
<script type="text/javascript" src="http://www.google.com/jsapi"></script>
<script type="text/javascript">google.load("jquery", "1.4.2");</script>
<script type="text/javascript" src="http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/jquery-translate.js"></script>
<script type="text/javascript">
//<![CDATA[
if(jQuery.cookie('glang') && jQuery.cookie('glang') != 'el') jQuery(function($){$('body').translate('el', $.cookie('glang'), {toggle:true, not:'.notranslate'});});
function doGTranslate(lang_pair) {if(lang_pair.value)lang_pair=lang_pair.value;var lang=lang_pair.split('|')[1];jQuery.cookie('glang', lang, {path: '/'});jQuery(function($){$('body').translate('el', lang, {toggle:true, not:'.notranslate'});});}
//]]>
</script>
<?php
}
else
{
?>
<form method="post"
action="login/login-exec.php"
id="headerLogin">
<label for="login"><font face="verdana">¼íïìá ÷ñÞóôç:</font></label><br />
<input
name="login"
id="login"
type="text"
size="12"
/><br /><br />
<label for="password"><font face="verdana">Êùäéêüò:</font></label><br />
<input
id="password"
name="password"
type="password"
size="12"
/><br />
<input
type="submit"
name="Submit"
class="submit"
value="Ïê"
/>
<br /><br />
<!-- GTranslate: http://edo.webmaster.am/gtranslate -->
<a href="javascript:doGTranslate('el|en')" title="English" class="gflag" style="background-position:-0px -0px;"><img src="http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/tmpl/lang/blank.png" height="24" width="24" alt="English" /></a><a href="javascript:doGTranslate('el|fr')" title="French" class="gflag" style="background-position:-200px -100px;"><img src="http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/tmpl/lang/blank.png" height="24" width="24" alt="French" /></a><a href="javascript:doGTranslate('el|de')" title="German" class="gflag" style="background-position:-300px -100px;"><img src="http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/tmpl/lang/blank.png" height="24" width="24" alt="German" /></a><a href="javascript:doGTranslate('el|el')" title="Greek" class="gflag" style="background-position:-400px -100px;"><img src="http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/tmpl/lang/blank.png" height="24" width="24" alt="Greek" /></a>
<style type="text/css">
<!--
a.gflag {font-size:24px;padding:1px 0;background-repeat:no-repeat;background-image:url('http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/tmpl/lang/24.png');}
a.gflag img {border:0;}
a.gflag:hover {background-image:url('http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/tmpl/lang/24a.png');}
-->
</style>
<script type="text/javascript" src="http://www.google.com/jsapi"></script>
<script type="text/javascript">google.load("jquery", "1.4.2");</script>
<script type="text/javascript" src="http://joomla-gtranslate.googlecode.com/svn/trunk/mod_gtranslate/jquery-translate.js"></script>
<script type="text/javascript">
//<![CDATA[
if(jQuery.cookie('glang') && jQuery.cookie('glang') != 'el') jQuery(function($){$('body').translate('el', $.cookie('glang'), {toggle:true, not:'.notranslate'});});
function doGTranslate(lang_pair) {if(lang_pair.value)lang_pair=lang_pair.value;var lang=lang_pair.split('|')[1];jQuery.cookie('glang', lang, {path: '/'});jQuery(function($){$('body').translate('el', lang, {toggle:true, not:'.notranslate'});});}
//]]>
</script>
</form>
<?php
}
?>
</p>
<br />
</div>
</div>
<div id="globalintro">
<br />
<div id="intro">
<div class="t"><div class="b"><div class="l"><div class="r"><div class="bl"><div class="br"><div class="tl"><div class="tr">
TEXT TEXT
<br /><br />
<p align="center"><font color="red">ÌåôñçôÞò ÅðéóêÝøåùí:<br />
<SCRIPT LANGUAGE="Javascript"
SRC="http://gym-kassiop.ker.sch.gr/gcount12/graphcount.php?page=index&style=led"><!-- //--></SCRIPT>
</font></p>
</div></div></div></div></div></div></div></div>
</div>
<br />
</div>
<div align="center">
</div>
<div id="container1">
<!-- /////////////////////////////////MAIN////////////////////////////////////////// -->
<div id="leftside1">
<?php
$today= date ("dm");
$qry="SELECT eortologio, date, apoufegmata, pliroforia FROM information WHERE date='$today'";
$result=mysql_query($qry);
if($result) {
while($grammh = mysql_fetch_array($result))
{
echo "<font face='verdana' size='1'>";
echo "<b>ÅÏÑÔÏËÏÃÉÏ</b><br>";
echo $grammh['eortologio'];
echo "<br /><br />";
echo "<hr>";
echo "<br /><br />";
echo "<b>Ç ÓÏÖÉÁ ÔÇÓ ÇÌÅÑÁÓ</b><br>";
echo $grammh['apoufegmata'];
echo "<br /><br />";
echo "<hr>";
echo "<br /><br />";
echo "<b>Ç ÐËÇÑÏÖÏÑÉÁ ÔÇÓ ÇÌÅÑÁÓ</b><br>";
echo $grammh['pliroforia'];
echo "</font>";
echo "<br /><br />";
echo "<hr>";
echo "<br />";
echo "<font face='verdana' size='0.5'>";
echo "ÅðéìåëÞèçêå ï ìáèçôÞò ÄçìÞôñéïò Ðñßöôçò.";
echo "</font>";
}
}
?>
</div>
<div id="rightside1">
<p align="center"><font face='verdana' size='1'><b>ÔÅËÅÕÔÁÉÁ ÍÅÁ</b></font></p>
<br />
<?php
//include 'config_db.php';
$qry="SELECT id, text, date FROM last_news order by id desc";
$result=mysql_query($qry);
if($result) {
while($grammh = mysql_fetch_array($result))
{
echo "<ul>";
echo "<li>";
echo "<font face='verdana' size='1'> Çìåñïìçíßá Äçìïóßåõóçò<b> ".$grammh['date']."</b>.";
echo " ".$grammh['text'];
echo "</font>";
echo "<br><br>";
echo "</li>";
echo "</ul>";
}
}
?>
</div>
</div>
<div>
<br /><br />
</div>
<div id="profooter" >
<br />
<script>
//Live weather feeds by freemeteo.com
//The use of this script is bound by Freemeteo’s Live Feed Service Agreement, as is published in the following url: http://www.freemeteo.com/default.asp?pid=178&la=1
// You are not allowed to change or delete any part of this script.
// Main body background color : FFFFFF
// Main body fonts color : 000000
// Header/Footer background color : 6699FF
// Header/Footer fonts color : FFFFFF
cIfrm="6";
gid="865276_20101213_225757";
</script>
<script src="http://www.freemeteo.com/templates/default/HTfeeds.js" type="text/javascript"></script>
<br />
</div>
<div id="footer"><div>
<p>Ï éóôüôïðïò êáôáóêåõÜóôçêå áðï ôïí åêðáéäåõôéêü ÐÅ20 ÉùÜííç Äïýñâá (A.M 210819)<br>
Copyright 2010 - <?php echo date('Y') ?> © <a href="mailto:dourvas@gmail.com">ÉùÜííçò Äïýñâáò </a><br /><a rel="license" href="http://creativecommons.org/licenses/by-nc-sa/3.0/"><img alt="Creative Commons License" style="border-width:0" src="http://i.creativecommons.org/l/by-nc-sa/3.0/88x31.png" /></a></p>
<!-- div, #footer --></div></div>
<!-- #pageWrapper --></div>
<script language="JavaScript1.2">
/*
Disable right click script II (on images)- By Dynamicdrive.com
For full source, Terms of service, and 100s DTHML scripts
Visit http://www.dynamicdrive.com
*/
var clickmessage="Ôï äåîß êëéê åßíáé áðåíåñãïðïéçìÝíï!"
function disableclick(e) {
if (document.all) {
if (event.button==2||event.button==3) {
if (event.srcElement.tagName=="IMG"){
alert(clickmessage);
return false;
}
}
}
else if (document.layers) {
if (e.which == 3) {
alert(clickmessage);
return false;
}
}
else if (document.getElementById){
if (e.which==3&&e.target.tagName=="IMG"){
alert(clickmessage)
return false
}
}
}
function associateimages(){
for(i=0;i<document.images.length;i++)
document.images[i].onmousedown=disableclick;
}
if (document.all)
document.onmousedown=disableclick
else if (document.getElementById)
document.onmouseup=disableclick
else if (document.layers)
associateimages()
</script>
</body></html>