lolclol

Am not asking you to write the code for me.. I have looked and searched and tested things all day. To a point where am struggling to know a way I can do this... I am asking for help to make me understand that there is a way I can do it but I have no idea how! So am asking for an expert to point me in the right way to make it work!

Hi jessica Sorry. Hum am after doing a personal food and weight tracker. I have it all working. But then the idea of instead of it being 2 things. I wanted to merge them into one. So all the data a user inputs. Gets showen in this calendar. Am struggling to know how I would get it to show The breakfast, lunch dinner etc for the date it was posted on. Www.cffoodtoday.com/Weight.php Www.cffoodtoday.com/my_food.php Username testing Password testing1

Weight and food diary. 2 input forms to insert weight and then for one to insert what they had to eat. i then wanting it to show on a calendar, <?php /** * Account * * @package Digital Downloads Pro * @author wojoscripts.com * @copyright 2010 * @version $Id: account.php, v2.00 2011-07-10 10:12:05 gewa Exp $ */ define("_VALID_PHP", true); require_once("init.php"); if (!$user->logged_in) redirect_to("login.php"); ?> <?php include("header.php");?> <!-- ============= CONTENT AREA STARTS HERE ============== --> <div id="content"> <!-- SLIDER STARTS HERE --> <div id="slider" class="slider2"> <div > </div> <h2 class="slider-head">Track your Weight</h2><br /><br /> <div id="whats-hot" > <p></p> </div> <br /><br /><br /> <!-- end of news div --><!-- end of container div --> <div class="w-pet-border"> <br /><br /> <table style='background-color:E1E1E1; color:000000;font-family: Verdana; font-size: 7pt;'><tr><td colspan='8' align='center' style='background-color:9999cc; color:000000;'><font face='Verdana' size='3' color='000'><b>May 2013</b></font></td></tr><tr><tr><td align='center' style='background-color:9999cc; color:000000;'><font face='Verdana' size='2' color='000'><b>Sun</b></font></td><td align='center' style='background-color:9999cc; color:000000;'><font face='Verdana' size='2' color='000'><b>Mon</b></font></td><td align='center' style='background-color:9999cc; color:000000;'><font face='Verdana' size='2' color='000'><b>Tue</b></font></td><td align='center' style='background-color:9999cc; color:000000;'><font face='Verdana' size='2' color='000'><b>Wed</b></font></td><td align='center' style='background-color:9999cc; color:000000;'><font face='Verdana' size='2' color='000'><b>Thu</b></font></td><td align='center' style='background-color:9999cc; color:000000;'><font face='Verdana' size='2' color='000'><b>Fri</b></font></td><td align='center' style='background-color:9999cc; color:000000;'><font face='Verdana' size='2' color='000'><b>Sat</b></font></td><td align='center' style='background-color:9999cc; color:000000;'><font face='Verdana' size='2' color='000'><b>Weekly</b></font></td></tr><td style="background-color:ccccff; color:000000; width:75;height:100"> </td><td style="background-color:ccccff; color:000000; width:75;height:100"> </td><td style="background-color:ccccff; color:000000; width:75;height:100"> </td><td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>1<br> Breakfast <br /> Lunch<br /> Tea<br /> Other<br /> Weight<br/>Creon</td><td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>2<br> <br></td><td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>3<br> <br></td><td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>4<br> <br></td><td align='left' valign='top' style='background-color:ffffcc; color:000000;' width='91' height='100'> <br><br> Creon: 0<br /> Best Weight: 0<br /> lowest Weight: 0</td></tr><tr> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>5</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>6</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>7</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>8</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>9<br> <br></td><td align='left' valign='top' style='background-color:ffffff; color:000000;' width='75' height='100'><p>10<br> </p></td><td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>11<br> <br></td><td align='left' valign='top' style='background-color:ffffcc; color:000000;' width='91' height='100'> <br><br> Creon: 0<br> Best Weight: 0<br> lowest Weight: 0<br></td></tr><tr> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>12</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>13</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>14</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>15</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>16</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>17</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>18</td><td align='left' valign='top' style='background-color:ffffcc; color:000000;' width='91' height='100'> <br><br> Creon: 0<br /> Best Weight: 0<br /> lowest Weight: 0</td></tr><tr> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>19</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>20</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>21</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>22</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>23</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>24</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='75'>25</td><td align='left' valign='top' style='background-color:ffffcc; color:000000;' width='91' height='100'> <br><br> Creon: 0<br /> Best Weight: 0<br /> lowest Weight: 0</td></tr><tr> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='93'>26</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='93'>27</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='93'>28</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='93'>29</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='93'>30</td> <td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='93'>31</td><td align='left' valign='top' style='background-color:ccccff; color:000000;' width='75' height='93'> <br><br> <br> </td><td align='left' valign='top' style='background-color:ffffcc; color:000000;' width='91' height='93'> <br> <br> Creon: 0<br /> Best Weight: 0<br /> lowest Weight: 0</td></tr></table> </div><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /> Beta v2.0 <?php include("footer.php");?> this is the weight database id date day month year username weight_lb weight_kg notes email this is the my_food database id username date day month year meal content notes creon open a new page where they can see the content they added of the meals ie, breakfast, lunch etc. and to total the creon intake up from that week... if anyone could help me.. please i need to get it all working within this month. due to my article is being published in the CF Trust magazine and they want all my website to be full functional

$name=$_POST['name']; $cat=$_POST[cat]; $url=$_POST[url]; so this for variables?

<?php $host="localhost"; // Host name $username="user"; // Mysql username $password="Pass!"; // Mysql password $db_name="_login1"; // Database name $tbl_name="mr_recipes"; // Table name // Connect to server and select database. mysql_connect("$host", "$username", "$password")or die("cannot connect"); mysql_select_db("$db_name")or die("cannot select DB"); $sql="SELECT * FROM $tbl_name WHERE isApproved = 'no'"; $result=mysql_query($sql); ?> <table width="400" border="0" cellspacing="1" cellpadding="0"> <tr> <td> <table width="400" border="1" cellspacing="0" cellpadding="3"> <tr> <td colspan="4"><strong>List data from mysql </strong> </td> </tr> <tr> <td align="center"><strong>isApproved</strong></td> <td align="center"><strong>Name</strong></td> <td align="center"><strong>Lastname</strong></td> <td align="center"><strong>Email</strong></td> <td align="center"><strong>Update</strong></td> </tr> <?php while($rows=mysql_fetch_array($result)){ ?> <tr> <td><? echo $rows['isApproved']; ?></td> <td><? echo $rows['name']; ?></td> <td><? echo $rows['cat']; ?></td> <td><? echo $rows['url']; ?></td> <td align="center"><a href="update.php?id=<? echo $rows['id']; ?>">update</a></td> </tr> <?php } ?> </table> </td> </tr> </table> <?php mysql_close(); ?>

<?php $host="localhost"; $username="user"; $password="pass!"; $db_name="_login1"; $tbl_name="mr_recipes"; // Connect to server and select database. mysql_connect("$host", "$username", "$password")or die("cannot connect"); mysql_select_db("$db_name")or die("cannot select DB"); // update data $sql="UPDATE $tbl_name SET name='$name', url='$url', cat='$cat', isApproved='$isApproved' WHERE id='$id'"; $result=mysql_query($sql); if($result){ echo "Successful"; echo "<BR>"; echo "<a href='editrecipe.php'>View result</a>"; } else { echo "ERROR"; } ?> update_ud.php still not updating! I have gone on the isApproved, update.php <?php $host="localhost"; // Host name $username="user"; // Mysql username $password="pass!"; // Mysql password $db_name="_login1"; // Database name $tbl_name="mr_recipes"; // Table name // Connect to server and select database. mysql_connect("$host", "$username", "$password")or die("cannot connect"); mysql_select_db("$db_name")or die("cannot select DB"); // get value of id that sent from address bar $id=$_GET['id']; // Retrieve data from database $sql="SELECT * FROM $tbl_name WHERE id='$id'"; $result=mysql_query($sql); $rows=mysql_fetch_array($result); ?> <table class="display" width="400" border="0" cellspacing="1" cellpadding="0"> <tr> <form name="form1" method="post" action="update_ud.php"> <td> <table width="100%" border="0" cellspacing="1" cellpadding="0"> <tr> <td> </td> <td colspan="3"><strong>Update data in mysql</strong> </td> </tr> <tr> <td align="center"> </td> <td align="center"> </td> <td align="center"> </td> <td align="center"> </td> </tr> <tr> <td align="center"> </td> <td align="center"><strong>url</strong></td> <td align="center"><strong>cat</strong></td> <td align="center"><strong>name</strong></td> <td align="center"><strong>isApproved</strong></td> </tr> <tr> <td> </td> <td align="center"> <input name="url" type="text" id="url" value="<? echo $rows['url']; ?>"> </td> <td align="center"> <input name="cat" type="text" id="cat" value="<? echo $rows['cat']; ?>" size="15"> </td> <td> <input name="name" type="text" id="name" value="<? echo $rows['name']; ?>" size="15"> </td> <td> <input name="isApproved" type="radio" value="yes" /></td> </tr> <tr> <td> </td> <td> <input name="id" hidden="hidden" id="id" value="<? echo $rows['id']; ?>"> </td> <td align="center"> <input type="submit" name="Submit" value="Submit"> </td> <td> </td> </tr> </table> </td> </form> </tr> </table> <?php // close connection mysql_close(); ?>

<?php $host="localhost"; // Host name $username="user"; // Mysql username $password="pass!"; // Mysql password $db_name="_login1"; // Database name $tbl_name="mr_recipes"; // Table name // Connect to server and select database. mysql_connect("$host", "$username", "$password")or die("cannot connect"); mysql_select_db("$db_name")or die("cannot select DB"); $sql="SELECT * FROM $tbl_name"; $result=mysql_query($sql); // Count table rows $count=mysql_num_rows($result); ?> <table class="display" width="500" border="0" cellspacing="1" cellpadding="0"> <form name="form1" method="post" action=""> <tr> <td> <table width="500" border="0" cellspacing="1" cellpadding="0"> <tr> <td align="center"><strong>Id</strong></td> <td align="center"><strong>Name</strong></td> <td align="center"><strong>username</strong></td> <td align="center"><strong>cat</strong></td> <td align="center"><strong>url</strong></td> </tr> <?php while($rows=mysql_fetch_array($result)){ ?> <tr> <td align="center"> <? $id[]=$rows['id']; ?><? echo $rows['id']; ?> </td> <td align="center"> <input name="name[]" type="text" id="name" value="<? echo $rows['name']; ?>"> </td> <td align="center"> <input name="username[]" type="text" id="username" value="<? echo $rows['username']; ?>"> </td> <td align="center"> <input name="cat[]" type="text" id="cat" value="<? echo $rows['cat']; ?>"> </td> <td align="center"> <input name="url[]" type="text" id="url" value="<? echo $rows['url']; ?>"> </td> </tr> <?php } ?> <tr> <td colspan="4" align="center"><input type="submit" name="Submit" value="Submit"></td> </tr> </table> </td> </tr> </form> </table> <?php // Check if button name "Submit" is active, do this if($Submit){ for($i=0;$i<$count;$i++){ $sql1="UPDATE $tbl_name SET name='$name[$i]', username='$username[$i]', cat='$cat[$i]',url='$url[$i]' WHERE id='$id[$i]'"; $result1=mysql_query($sql1); } } if($result1){ header("location:editrecipe.php"); } mysql_close(); ?> find 2 codes that are simple like this one. just not doing anything. it shows fields from databases.. type in what I need to edit. then submit...but just refreshes the page with out updating the database

in the mr_recipes the field are id, username, name, ingredients, methods, URL and date. when someone using add recipe. the username is hidden, date and URL the URL is set to insert recipe.php?id=1 field "id 1" is a waiting for approval. I then have to go into my database to change the ?id=1 to the right ID number. what am wanting is to make it a little easier, so I need a page where . it shows all the url set to ?id=1 and where I can change it. for this I need to echo the id and have a edit form to change the url.. I can get it to echo this but noidea about the coding to change it. any help to direct me in the right direction

got it working <?php $conn = mysql_connect("localhost", "user", "pass!"); mysql_select_db("_login1", $conn) or die ('Database not found ' . mysql_error() ); $id=mysql_real_escape_string($_GET['id']); $sql = "select * from mr_recipes WHERE id = $id"; $rs = mysql_query($sql, $conn) or die ('Database not found ' . mysql_error() ); $result = mysql_query("SELECT * FROM mr_recipes"); while($row = mysql_fetch_array($result)){ $id = strtolower($row['id']); $url = "recipe.php?id=".urlencode($id); $get_result = file_get_contents($url); } ?>

<?php $conn = mysql_connect("localhost", "user", "pass!"); mysql_select_db("_login1", $conn) or die ('Database not found ' . mysql_error() ); $cust = $_GET["id"]; $sql = "select * from mr_recipes WHERE id='6'"; $rs = mysql_query($sql, $conn) or die ('Database not found ' . mysql_error() ); ?> I understand that, that will show the id I want. but how do get it show it shows the id from the url?

hi Jessica, just cant figure it out.

I have had a full day and half of coding and playing around to getting this working. just a little stuck now. http://cffoodtoday.com/recipe.php?id=6 I know the code below is a little messy. the code is showing all the database fields. and not just the ID the url is asking for, <?php define("_VALID_PHP", true); require_once("init.php"); ?> <?php include("header.php");?> <div id="left-area" class="clearfix"> <!-- ============= CONTENT AREA STARTS HERE ============== --> <?php $conn = mysql_connect("localhost", "user", "pass!"); mysql_select_db("_login1", $conn) or die ('Database not found ' . mysql_error() ); $cust = $_GET["id"]; $sql = "select * from mr_recipes WHERE id "; $rs = mysql_query($sql, $conn) or die ('Database not found ' . mysql_error() ); $result = mysql_query("SELECT * FROM mr_recipes"); while($row = mysql_fetch_array($result)){ // Prepare gamertag for url $id = strtolower($row['id']); //echo $gamertag.'<br />'; $url = "recipe.php?id=".urlencode($id); $get_result = file_get_contents($url); } ?> <?php if (mysql_num_rows($rs)>0){ ?> <?php while ($row = mysql_fetch_array($rs)) { ?> <h1><?php echo $row["name"]?></h1> <span class="w-pet-border"></span> <div class="recipe-info"> <h2><a href="#"></a></h2> <div class="recipe-tags"> <span class="type">Date: <?php echo $row["date"]?></span> <span class="cuisine">Recipe By: </span> <?php echo $row["username"]?></div> <p>.<br /> Cook Time:<?php echo $row["cooktime"]?> ~ Prep Time<?php echo $row["perptime"]?> </p></div> <div class="post recipe-listing-item"> <div class="list-left"> <h3 class="blue">Ingredients </h3> <?php echo nl2br($row['ingredients']);?> </ul> </div> <br /> <h3 class="blue">Method</h3> <?php echo nl2br($row['instructions']);?> </div><!-- end of recipe-listing-item div --> <div class="post recipe-listing-item"></div><!-- end of recipe-listing-item div --> <?php } ?> <?php } else {?> <p>No recipes in database.</p> <?php } ?> </div><!-- end of left-area --> <!-- LEFT AREA ENDS HERE --> <!-- end of content div --> <!-- ========== CONTENT AREA ENDS HERE ========== --> </div><!-- end of container div --> <div class="w-pet-border"></div> <!-- ============= CONTAINER AREA ENDS HERE ============== --> <?php include("footer.php");?>

http://cffoodtoday.com/1.php hi I am fetching data from my database.. but I want to so the ingredients and methods are in order like <br /> is there a way to do this? <?php define("_VALID_PHP", true); require_once("init.php"); ?> <?php include("header.php");?> <!-- ============= CONTENT AREA STARTS HERE ============== --> <div id="left-area" class="clearfix"> <?php $conn = mysql_connect("localhost", "user", "password!"); mysql_select_db("_recipes", $conn) or die ('Database not found ' . mysql_error() ); $cust = $_GET["id"]; $sql = "select * from mr_recipes WHERE id='5' "; $rs = mysql_query($sql, $conn) or die ('Database not found ' . mysql_error() ); ?> <?php if (mysql_num_rows($rs)>0){ ?> <?php while ($row = mysql_fetch_array($rs)) { ?> <h1><?php echo $row["name"]?></h1> <span class="w-pet-border"></span> <div class="recipe-info"> <h2><a href="#"></a></h2> <div class="recipe-tags"> <span class="type">Date: <?php echo $row["addDate"]?></span> <span class="cuisine">Recipe By: </span> <?php echo $row["submitted_by"]?></div> <p>.<br /> </p></div> <div class="post recipe-listing-item"> <div class="list-left"> <h3 class="blue">Ingredients </h3> <!-- == new here == --> <ul><?php echo $row["ingredients"]?> </ul> </div> <br /> <h3 class="blue">Method</h3> <?php echo $row["instructions"]?> </div><!-- end of recipe-listing-item div --> <div class="post recipe-listing-item"></div><!-- end of recipe-listing-item div --> <?php } ?> <?php } else {?> <p>No weight with username<?php echo $username ?> in database.</p> <?php } ?> </div><!-- end of left-area --> <!-- LEFT AREA ENDS HERE --> <!-- end of content div --> <!-- ========== CONTENT AREA ENDS HERE ========== --> </div><!-- end of container div --> <div class="w-pet-border"></div> <!-- ============= CONTAINER AREA ENDS HERE ============== --> <?php include("footer.php");?>

all fixed.. thank you so much limmin

$sql = "select * from weight WHERE username = '$user->username'"; i took out the . at '$user->username' and it works for just the admin but not other users

no luck just get error echo No weight with username: in database. thank you for the help

hum all i know it Membership Manager Pro author wojoscripts.com here is the class_user.php , if it helps <?php /** * User Class * * @package Membership Manager Pro * @author wojoscripts.com * @copyright 2010 * @version $Id: class_user.php, v2.00 2011-07-10 10:12:05 gewa Exp $ */ if (!defined("_VALID_PHP")) die('Direct access to this location is not allowed.'); class Users { private $uTable = "users"; public $logged_in = null; public $uid = 0; public $userid = 0; public $username; public $email; public $name; public $membership_id = 0; public $userlevel; public $cookie_id = 0; private $lastlogin = "NOW()"; /** * Users::__construct() * * @return */ function __construct() { $this->getUserId(); $this->startSession(); } /** * Users::getUserId() * * @return */ private function getUserId() { global $core; if (isset($_GET['userid'])) { $userid = (is_numeric($_GET['userid']) && $_GET['userid'] > -1) ? intval($_GET['userid']) : false; $userid = sanitize($userid); if ($userid == false) { $core->error("You have selected an Invalid Userid","Users::getUserId()"); } else return $this->userid = $userid; } } /** * Users::startSession() * * @return */ private function startSession() { session_start(); $this->logged_in = $this->loginCheck(); if (!$this->logged_in) { $this->username = $_SESSION['username'] = "Guest"; $this->userlevel = 0; } } /** * Users::loginCheck() * * @return */ private function loginCheck() { if (isset($_COOKIE['MSM_SITECOOKIE']) && isset($_COOKIE['MSM_SITECOOKIE_ID'])) { $this->username = $_SESSION['username'] = $_COOKIE['MSM_SITECOOKIE']; $this->cookie_id = $_SESSION['cookie_id'] = $_COOKIE['MSM_SITECOOKIE_ID']; } if (isset($_SESSION['username']) && isset($_SESSION['cookie_id']) && $_SESSION['username'] != "Guest") { if ($this->confirmUserID($_SESSION['username'], $_SESSION['cookie_id']) != 0) { unset($_SESSION['username']); unset($_SESSION['cookie_id']); return false; } $row = $this->getUserInfo($_SESSION['username']); $this->uid = $row['id']; $this->username = $row['username']; $this->email = $row['email']; $this->name = $row['fname'].' '.$row['lname']; $this->userlevel = $row['userlevel']; $this->cookie_id = $row['cookie_id']; $this->membership_id = $row['membership_id']; return true; } else { return false; } } /** * Users::is_Admin() * * @return */ public function is_Admin() { return($this->userlevel == 9); } /** * Users::login() * * @param mixed $username * @param mixed $pass * @return */ public function login($username, $pass) { global $db, $core; if ($username == "" && $pass == "") { $core->msgs['username'] = 'Please enter valid username and password.'; } else { $status = $this->checkStatus($username, $pass); switch ($status) { case 0: $core->msgs['username'] = 'Login and/or password did not match to the database.'; break; case 1: $core->msgs['username'] = 'Your account has been banned.'; break; case 2: $core->msgs['username'] = 'Your account it\'s not activated.'; break; case 3: $core->msgs['username'] = 'You need to verify your email address.'; break; } } if (empty($core->msgs) && $status == 5) { $row = $this->getUserInfo($username); $this->uid = $_SESSION['userid'] = $row['id']; $this->username = $_SESSION['username'] = $row['username']; $this->email = $_SESSION['email'] = $row['email']; $this->name = $_SESSION['name'] = $row['fname'].' '. $row['lname']; $this->userlevel = $_SESSION['userlevel'] = $row['userlevel']; $this->cookie_id = $_SESSION['cookie_id'] = $this->generateRandID(); $this->membership_id = $_SESSION['membership_id'] = $row['membership_id']; $data = array( 'lastlogin' => $this->lastlogin, 'cookie_id' => $this->cookie_id, 'lastip' => sanitize($_SERVER['REMOTE_ADDR']) ); $db->update($this->uTable, $data, "username='" . $this->username . "'"); if(!$this->validateMembership()) { $data = array( 'membership_id' => 0, 'mem_expire' => "0000-00-00 00:00:00" ); $db->update($this->uTable, $data, "username='" . $this->username . "'"); } if (isset($_POST['remember'])) { setcookie("MSM_SITECOOKIE", $this->username, time() + 60 * 60 * 24 * 60, '/'); setcookie("MSM_SITECOOKIE_ID", $this->cookie_id, time() + 60 * 60 * 24 * 60, '/'); } return true; } else $core->msgStatus(); } /** * Users::logout() * * @return */ public function logout() { if (isset($_COOKIE['MSM_SITECOOKIE']) && isset($_COOKIE['MSM_SITECOOKIE_ID'])) { setcookie("MSM_SITECOOKIE", "", time() - 60 * 60 * 24 * 60, '/'); setcookie("MSM_SITECOOKIE_ID", "", time() - 60 * 60 * 24 * 60, '/'); } unset($_SESSION['username']); unset($_SESSION['email']); unset($_SESSION['name']); unset($_SESSION['membership_id']); unset($_SESSION['userid']); unset($_SESSION['cookie_id']); session_destroy(); session_regenerate_id(); $this->logged_in = false; $this->username = "Guest"; $this->userlevel = 0; } /** * User::confirmUserID() * * @param mixed $username * @param mixed $cookie_id * @return */ function confirmUserID($username, $cookie_id) { global $db; $sql = "SELECT cookie_id FROM users WHERE username = '" . $db->escape($username, true)."'"; $result = $db->query($sql); if (!$result || ($db->numrows($result) < 1)) { return 1; } $row = $db->fetch($result); $row ['cookie_id'] = sanitize($row['cookie_id']); $cookie_id = sanitize($cookie_id); if ($cookie_id == $row['cookie_id']) { return 0; } else { return 2; } } /** * Users::getUserInfo() * * @param mixed $username * @return */ private function getUserInfo($username) { global $db; $username = sanitize($username); $username = $db->escape($username); $sql = "SELECT * FROM " . $this->uTable . " WHERE username = '" . $username . "'"; $row = $db->first($sql); if (!$username) return false; return ($row) ? $row : 0; } /** * Users::checkStatus() * * @param mixed $username * @param mixed $pass * @return */ public function checkStatus($username, $pass) { global $db; $username = sanitize($username); $username = $db->escape($username); $pass = sanitize($pass); $sql = "SELECT password, active FROM " . $this->uTable . "\n WHERE username = '".$username."'"; $result = $db->query($sql); if ($db->numrows($result) == 0) return 0; $row = $db->fetch($result); $entered_pass = sha1($pass); switch ($row['active']) { case "b": return 1; break; case "n": return 2; break; case "t": return 3; break; case "y" && $entered_pass == $row['password']: return 5; break; } } /** * Users::getUsers() * * @param bool $from * @return */ public function getUsers($from = false) { global $db, $pager, $core; require_once(BASEPATH . "lib/class_paginate.php"); $pager = new Paginator(); $counter = countEntries($this->uTable); $pager->items_total = $counter; $pager->default_ipp = $core->perpage; $pager->paginate(); if ($counter == 0) { $pager->limit = null; } if (isset($_GET['sort'])) { list($sort, $order) = explode("-", $_GET['sort']); $sort = sanitize($sort); $order = sanitize($order); if (in_array($sort, array("username", "fname", "lname", "email", "created"))) { $ord = ($order == 'DESC') ? " DESC" : " ASC"; $sorting = " u." . $sort . $ord; } else { $sorting = " u.created DESC"; } } else { $sorting = " u.created DESC"; } $clause = (isset($clause)) ? $clause : null; if (isset($_POST['fromdate']) && $_POST['fromdate'] <> "" || isset($from) && $from != '') { $enddate = date("Y-m-d"); $fromdate = (empty($from)) ? $_POST['fromdate'] : $from; if (isset($_POST['enddate']) && $_POST['enddate'] <> "") { $enddate = $_POST['enddate']; } $clause .= " WHERE u.created BETWEEN '" . trim($fromdate) . "' AND '" . trim($enddate) . " 23:59:59'"; } $sql = "SELECT u.*, CONCAT(u.fname,' ',u.lname) as name, m.title, m.id as mid," . "\n DATE_FORMAT(u.created, '%d. %b. %Y.') as cdate," . "\n DATE_FORMAT(u.lastlogin, '%d. %b. %Y.') as adate" . "\n FROM " . $this->uTable . " as u" . "\n LEFT JOIN memberships as m ON m.id = u.membership_id" . "\n " . $clause . "\n ORDER BY " . $sorting . $pager->limit; $row = $db->fetch_all($sql); return ($row) ? $row : 0; } /** * Users::processUser() * * @return */ public function processUser() { global $db, $core; if (!$this->userid) { if (empty($_POST['username'])) $core->msgs['username'] = 'Please Enter Valid Username'; if ($value = $this->usernameExists($_POST['username'])) { if ($value == 1) $core->msgs['username'] = 'Username Is Too Short (less Than 4 Characters Long).'; if ($value == 2) $core->msgs['username'] = 'Invalid Characters Found In Username.'; if ($value == 3) $core->msgs['username'] = 'Sorry, This Username Is Already Taken'; } } if (empty($_POST['fname'])) $core->msgs['fname'] = 'Please Enter First Name'; if (empty($_POST['lname'])) $core->msgs['lname'] = 'Please Enter Last Name'; if (!$this->userid) { if (empty($_POST['password'])) $core->msgs['password'] = 'Please Enter Valid Password.'; } if (empty($_POST['email'])) $core->msgs['email'] = 'Please Enter Valid Email Address'; if (!$this->userid) { if ($this->emailExists($_POST['email'])) $core->msgs['email'] = 'Entered Email Address Is Already In Use.'; } if (!$this->isValidEmail($_POST['email'])) $core->msgs['email'] = 'Entered Email Address Is Not Valid.'; if (empty($core->msgs)) { $trial = $live = getValue("trial", "memberships", "id = " . intval($_POST['membership_id']) . ""); $data = array( 'username' => sanitize($_POST['username']), 'email' => sanitize($_POST['email']), 'lname' => sanitize($_POST['lname']), 'fname' => sanitize($_POST['fname']), 'membership_id' => intval($_POST['membership_id']), 'mem_expire' => $this->calculateDays($_POST['membership_id']), 'trial_used' => ($trial) ? 1 : 0, 'newsletter' => intval($_POST['newsletter']), 'userlevel' => intval($_POST['userlevel']), 'active' => sanitize($_POST['active']) ); if (!$this->userid) $data['created'] = "NOW()"; if ($this->userid) $userrow = $core->getRowById($this->uTable, $this->userid); if ($_POST['password'] != "") { $data['password'] = sha1($_POST['password']); } else { $data['password'] = $userrow['password']; } // Start Avatar Upload include(BASEPATH . "lib/class_imageUpload.php"); include(BASEPATH . "lib/class_imageResize.php"); $newName = "IMG_" . randName(); $ext = substr($_FILES['avatar']['name'], strrpos($_FILES['avatar']['name'], '.') + 1); $name = $newName.".".strtolower($ext); $als = new Upload(); $als->File = $_FILES['avatar']; $als->method = 1; $als->SavePath = UPLOADS; $als->NewWidth = $core->thumb_w; $als->NewHeight = $core->thumb_h; $als->NewName = $newName; $als->OverWrite = true; $err = $als->UploadFile(); if ($this->userid) { $avatar = getValue("avatar",$this->uTable,"id = '".$this->userid."'"); if (!empty($_FILES['avatar']['name'])) { if ($avatar) { @unlink($als->SavePath . $avatar); } $data['avatar'] = $name; } else { $data['avatar'] = $avatar; } } else { if (!empty($_FILES['avatar']['name'])) $data['avatar'] = $name; } if (count($err) > 0 and is_array($err)) { foreach ($err as $key => $val) { $core->msgError($val, false); } } ($this->userid) ? $db->update($this->uTable, $data, "id='" . (int)$this->userid . "'") : $db->insert($this->uTable, $data); $message = ($this->userid) ? '<span>Success!</span>User updated successfully!' : '<span>Success!</span>User added successfully!'; if ($db->affected()) { $core->msgOk($message); if (isset($_POST['notify']) && intval($_POST['notify']) == 1) { require_once(BASEPATH . "lib/class_mailer.php"); $mailer = $mail->sendMail(); $row = $core->getRowById("email_templates", 3); $body = str_replace(array('[USERNAME]', '[PASSWORD]', '[NAME]', '[SITE_NAME]', '[URL]'), array($data['username'], $_POST['password'], $data['fname'].' '.$data['lname'], $core->site_name, $core->site_url), $row['body']); $message = Swift_Message::newInstance() ->setSubject($row['subject']) ->setTo(array($data['email'] => $data['fname'].' '.$data['lname'])) ->setFrom(array($core->site_email => $core->site_name)) ->setBody(cleanOut($body), 'text/html'); $mailer->send($message); } } else $core->msgAlert('<span>Alert!</span>Nothing to process.'); } else print $core->msgStatus(); } /** * Users::updateProfile() * * @return */ public function updateProfile() { global $db, $core; if (empty($_POST['fname'])) $core->msgs['fname'] = 'Please Enter First Name'; if (empty($_POST['lname'])) $core->msgs['lname'] = 'Please Enter Last Name'; if (empty($_POST['email'])) $core->msgs['email'] = 'Please Enter Valid Email Address'; if (!$this->isValidEmail($_POST['email'])) $core->msgs['email'] = 'Entered Email Address Is Not Valid.'; if (!empty($_FILES['avatar']['name'])) { if (!preg_match("/(\.jpg|\.png|\.gif)$/i", $_FILES['avatar']['name'])) { $core->msgs['avatar'] = 'Illegal file type. Only jpg,png and gif file types allowed.'; } $file_info = getimagesize($_FILES['avatar']['tmp_name']); if(empty($file_info)) $core->msgs['avatar'] = 'Illegal file type. Only jpg,png and gif file types allowed.'; } if (empty($core->msgs)) { $data = array( 'email' => sanitize($_POST['email']), 'lname' => sanitize($_POST['lname']), 'fname' => sanitize($_POST['fname']), 'newsletter' => intval($_POST['newsletter']) ); $userpass = getValue("password", $this->uTable, "id = '".$this->uid."'"); if ($_POST['password'] != "") { $data['password'] = sha1($_POST['password']); } else $data['password'] = $userpass; // Start Avatar Upload include(BASEPATH . "lib/class_imageUpload.php"); include(BASEPATH . "lib/class_imageResize.php"); $newName = "IMG_" . randName(); $ext = substr($_FILES['avatar']['name'], strrpos($_FILES['avatar']['name'], '.') + 1); $name = $newName.".".strtolower($ext); $als = new Upload(); $als->File = $_FILES['avatar']; $als->method = 1; $als->SavePath = UPLOADS; $als->NewWidth = $core->thumb_w; $als->NewHeight = $core->thumb_h; $als->NewName = $newName; $als->OverWrite = true; $err = $als->UploadFile(); $avatar = getValue("avatar",$this->uTable,"id = '".$this->uid."'"); if (!empty($_FILES['avatar']['name'])) { if ($avatar) { @unlink($als->SavePath . $avatar); } $data['avatar'] = $name; } else { $data['avatar'] = $avatar; } if (count($err) > 0 and is_array($err)) { foreach ($err as $key => $val) { $core->msgError($val, false); } } $db->update($this->uTable, $data, "id='" . (int)$this->uid . "'"); ($db->affected()) ? $core->msgOk('<span>Success!</span> You have successfully updated your profile.') : $core->msgAlert('<span>Alert!</span>Nothing to process.'); } else print $core->msgStatus(); } /** * User::register() * * @return */ public function register() { global $db, $core; if (empty($_POST['username'])) $core->msgs['username'] = 'Please Enter Valid Username'; if ($value = $this->usernameExists($_POST['username'])) { if ($value == 1) $core->msgs['username'] = 'Username Is Too Short (less Than 4 Characters Long).'; if ($value == 2) $core->msgs['username'] = 'Invalid Characters Found In Username.'; if ($value == 3) $core->msgs['username'] = 'Sorry, This Username Is Already Taken'; } if (empty($_POST['fname'])) $core->msgs['fname'] = 'Please Enter First Name'; if (empty($_POST['lname'])) $core->msgs['lname'] = 'Please Enter Last Name'; if (empty($_POST['pass'])) $core->msgs['pass'] = 'Please Enter Valid Password.'; if (strlen($_POST['pass']) < 6) $core->msgs['pass'] = 'Password is too short (less than 6 characters long)'; elseif (!preg_match("/^([0-9a-z])+$/i", ($_POST['pass'] = trim($_POST['pass'])))) $core->msgs['pass'] = 'Password entered is not alphanumeric.'; elseif ($_POST['pass'] != $_POST['pass2']) $core->msgs['pass'] = 'Your password did not match the confirmed password!.'; if (empty($_POST['email'])) $core->msgs['email'] = 'Please Enter Valid Email Address'; if ($this->emailExists($_POST['email'])) $core->msgs['email'] = 'Entered Email Address Is Already In Use.'; if (!$this->isValidEmail($_POST['email'])) $core->msgs['email'] = 'Entered Email Address Is Not Valid.'; if ((int)empty($_POST['captcha'])) $core->msgs['captcha'] = 'Please enter the total amount.'; if ($_POST['captcha'] != "9") $core->msgs['captcha'] = 'Entered total amount is incorrect.'; if (empty($core->msgs)) { $token = ($core->reg_verify == 1) ? $this->generateRandID() : 0; $pass = sanitize($_POST['pass']); if($core->reg_verify == 1) { $active = "t"; } elseif($core->auto_verify == 0) { $active = "n"; } else { $active = "y"; } $data = array( 'username' => sanitize($_POST['username']), 'password' => sha1($_POST['pass']), 'email' => sanitize($_POST['email']), 'fname' => sanitize($_POST['fname']), 'lname' => sanitize($_POST['lname']), 'token' => $token, 'active' => $active, 'created' => "NOW()" ); $db->insert($this->uTable, $data); require_once(BASEPATH . "lib/class_mailer.php"); if ($core->reg_verify == 1) { $actlink = $core->site_url . "/activate.php"; $row = $core->getRowById("email_templates", 1); $body = str_replace( array('[NAME]', '[USERNAME]', '[PASSWORD]', '[TOKEN]', '[EMAIL]', '[URL]', '[LINK]', '[SITE_NAME]'), array($data['fname'].' '.$data['lname'], $data['username'], $_POST['pass'], $token, $data['email'], $core->site_url, $actlink, $core->site_name), $row['body'] ); $newbody = cleanOut($body); $mailer = $mail->sendMail(); $message = Swift_Message::newInstance() ->setSubject($row['subject']) ->setTo(array($data['email'] => $data['username'])) ->setFrom(array($core->site_email => $core->site_name)) ->setBody($newbody, 'text/html'); $mailer->send($message); } elseif ($core->auto_verify == 0) { $row = $core->getRowById("email_templates", 14); $body = str_replace( array('[NAME]', '[USERNAME]', '[PASSWORD]', '[URL]', '[SITE_NAME]'), array($data['fname'].' '.$data['lname'], $data['username'], $_POST['pass'], $core->site_url, $core->site_name), $row['body'] ); $newbody = cleanOut($body); $mailer = $mail->sendMail(); $message = Swift_Message::newInstance() ->setSubject($row['subject']) ->setTo(array($data['email'] => $data['username'])) ->setFrom(array($core->site_email => $core->site_name)) ->setBody($newbody, 'text/html'); $mailer->send($message); } else { $row = $core->getRowById("email_templates", 7); $body = str_replace( array('[NAME]', '[USERNAME]', '[PASSWORD]', '[URL]', '[SITE_NAME]'), array($data['fname'].' '.$data['lname'], $data['username'], $_POST['pass'], $core->site_url, $core->site_name), $row['body'] ); $newbody = cleanOut($body); $mailer = $mail->sendMail(); $message = Swift_Message::newInstance() ->setSubject($row['subject']) ->setTo(array($data['email'] => $data['username'])) ->setFrom(array($core->site_email => $core->site_name)) ->setBody($newbody, 'text/html'); $mailer->send($message); } if($core->notify_admin) { $arow = $core->getRowById("email_templates", 13); $abody = str_replace( array('[USERNAME]', '[EMAIL]', '[NAME]', '[IP]'), array($data['username'], $data['email'], $data['fname'].' '.$data['lname'], $_SERVER['REMOTE_ADDR']), $arow['body'] ); $anewbody = cleanOut($abody); $amailer = $mail->sendMail(); $amessage = Swift_Message::newInstance() ->setSubject($arow['subject']) ->setTo(array($core->site_email => $core->site_name)) ->setFrom(array($core->site_email => $core->site_name)) ->setBody($anewbody, 'text/html'); $amailer->send($amessage); } ($db->affected() && $mailer) ? print "OK" : $core->msgError('<span>Error!</span>There was an error during registration process. Please contact the administrator...',false); } else print $core->msgStatus(); } /** * User::passReset() * * @return */ public function passReset() { global $db, $core; if (empty($_POST['uname'])) $core->msgs['uname'] = 'Please Enter Valid Username'; $uname = $this->usernameExists($_POST['uname']); if (strlen($_POST['uname']) < 4 || strlen($_POST['uname']) > 30 || !preg_match("/^([0-9a-z])+$/i", $_POST['uname']) || $uname != 3) $core->msgs['uname'] = 'We are sorry, selected username does not exist in our database'; if (empty($_POST['email'])) $core->msgs['email'] = 'Please Enter Valid Email Address'; if (!$this->emailExists($_POST['email'])) $core->msgs['uname'] = 'Entered Email Address Does Not Exists.'; if (empty($_POST['captcha'])) $core->msgs['captcha'] = 'Please enter the total amount'; if ($_POST['captcha'] != "10") $core->msgs['captcha'] = 'Entered total amount is incorrect'; if (empty($core->msgs)) { $user = $this->getUserInfo($_POST['uname']); $randpass = $this->getUniqueCode(12); $newpass = sha1($randpass); $data['password'] = $newpass; $db->update($this->uTable, $data, "username = '" . $user['username'] . "'"); require_once(BASEPATH . "lib/class_mailer.php"); $row = $core->getRowById("email_templates", 2); $body = str_replace( array('[USERNAME]', '[PASSWORD]', '[URL]', '[LINK]', '[IP]', '[SITE_NAME]'), array($user['username'], $randpass, $core->site_url, $core->site_url, $_SERVER['REMOTE_ADDR'], $core->site_name), $row['body'] ); $newbody = cleanOut($body); $mailer = $mail->sendMail(); $message = Swift_Message::newInstance() ->setSubject($row['subject']) ->setTo(array($user['email'] => $user['username'])) ->setFrom(array($core->site_email => $core->site_name)) ->setBody($newbody, 'text/html'); ($db->affected() && $mailer->send($message)) ? $core->msgOk('<span>Success!</span>You have successfully changed your password. Please check your email for further info!',false) : $core->msgError('<span>Error!</span>There was an error during the process. Please contact the administrator.',false); } else print $core->msgStatus(); } /** * User::activateUser() * * @return */ public function activateUser() { global $db, $core; if (empty($_POST['email'])) $core->msgs['email'] = 'Please Enter Valid Email Address'; if (!$this->emailExists($_POST['email'])) $core->msgs['email'] = 'Entered Email Address Does Not Exists.'; if (empty($_POST['token'])) $core->msgs['token'] = 'The token code is not valid'; if (!$this->validateToken($_POST['token'])) $core->msgs['token'] = 'This account has been already activated!'; if (empty($core->msgs)) { $email = sanitize($_POST['email']); $token = sanitize($_POST['token']); $message = ($core->auto_verify == 1) ? '<span>Success!</span>You have successfully activated your account!' : '<span>Success!</span>Your account is now active. However you still need to wait for administrative approval.'; $data = array( 'token' => 0, 'active' => ($core->auto_verify) ? "y" : "n" ); $db->update($this->uTable, $data, "email = '" . $email . "' AND token = '" . $token . "'"); ($db->affected()) ? $core->msgOk($message,false) : $core->msgError('<span>Error!</span>There was an error during the activation process. Please contact the administrator.',false); } else print $core->msgStatus(); } /** * Users::getUserData() * * @return */ public function getUserData() { global $db, $core; $sql = "SELECT *, DATE_FORMAT(created, '%a. %d, %M %Y') as cdate," . "\n DATE_FORMAT(lastlogin, '%a. %d, %M %Y') as ldate" . "\n FROM " . $this->uTable . "\n WHERE id = '" . $this->uid . "'"; $row = $db->first($sql); return ($row) ? $row : 0; } /** * Users::getUserMembership() * * @return */ public function getUserMembership() { global $db, $core; $sql = "SELECT u.*, m.title," . "\n DATE_FORMAT(u.mem_expire, '%d. %b. %Y.') as expiry" . "\n FROM " . $this->uTable . " as u" . "\n LEFT JOIN memberships as m ON m.id = u.membership_id" . "\n WHERE u.id = '" . $this->uid . "'"; $row = $db->first($sql); return ($row) ? $row : 0; } /** * Users::calculateDays() * * @return */ public function calculateDays($membership_id) { global $db; $now = date('Y-m-d H:i:s'); $row = $db->first("SELECT days, period FROM memberships WHERE id = '" . (int)$membership_id . "'"); if($row) { switch($row['period']) { case "D" : $diff = $row['days']; break; case "W" : $diff = $row['days'] * 7; break; case "M" : $diff = $row['days'] * 30; break; case "Y" : $diff = $row['days'] * 365; break; } $expire = date("Y-m-d H:i:s", strtotime($now . + $diff . " days")); } else { $expire = "0000-00-00 00:00:00"; } return $expire; } /** * User::trialUsed() * * @return */ public function trialUsed() { global $db; $sql = "SELECT trial_used" . "\n FROM ".$this->uTable . "\n WHERE id ='" . $this->uid . "'" . "\n LIMIT 1"; $row = $db->first($sql); return ($row['trial_used'] == 1) ? true : false; } /** * Users::validateMembership() * * @return */ public function validateMembership() { global $db; $sql = "SELECT mem_expire" . "\n FROM " . $this->uTable . "\n WHERE id = '" . $this->uid . "'" . "\n AND TO_DAYS(mem_expire) > TO_DAYS(NOW())"; $row = $db->first($sql); return ($row) ? $row : 0; } /** * Users::checkMembership() * * @param string $memids * @return */ public function checkMembership($memids) { global $db; $m_arr = explode(",", $memids); reset($m_arr); if ($this->logged_in and $this->validateMembership() and in_array($this->membership_id, $m_arr)) { return true; } else return false; } /** * Users::usernameExists() * * @param mixed $username * @return */ private function usernameExists($username) { global $db; $username = sanitize($username); if (strlen($db->escape($username)) < 4) return 1; $alpha_num = str_replace(" ", "", $username); if (!ctype_alnum($alpha_num)) return 2; $sql = $db->query("SELECT username" . "\n FROM users" . "\n WHERE username = '" . $username . "'" . "\n LIMIT 1"); $count = $db->numrows($sql); return ($count > 0) ? 3 : false; } /** * User::emailExists() * * @param mixed $email * @return */ private function emailExists($email) { global $db; $sql = $db->query("SELECT email" . "\n FROM users" . "\n WHERE email = '" . sanitize($email) . "'" . "\n LIMIT 1"); if ($db->numrows($sql) == 1) { return true; } else return false; } /** * User::isValidEmail() * * @param mixed $email * @return */ private function isValidEmail($email) { if (function_exists('filter_var')) { if (filter_var($email, FILTER_VALIDATE_EMAIL)) { return true; } else return false; } else return preg_match('/^[a-zA-Z0-9._+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,4}$/', $email); } /** * User::validateToken() * * @param mixed $token * @return */ private function validateToken($token) { global $db; $token = sanitize($token,40); $sql = "SELECT token" . "\n FROM ".$this->uTable . "\n WHERE token ='" . $db->escape($token) . "'" . "\n LIMIT 1"; $result = $db->query($sql); if ($db->numrows($result)) return true; } /** * Users::getUniqueCode() * * @param string $length * @return */ private function getUniqueCode($length = "") { $code = sha1(uniqid(rand(), true)); if ($length != "") { return substr($code, 0, $length); } else return $code; } /** * Users::generateRandID() * * @return */ private function generateRandID() { return sha1($this->getUniqueCode(24)); } /** * Users::levelCheck() * * @param string $levels * @return */ public function levelCheck($levels) { global $db; $m_arr = explode(",", $levels); reset($m_arr); if ($this->logged_in and in_array($this->userlevel, $m_arr)) return true; } /** * Users::getUserLevels() * * @return */ public function getUserLevels($level = false) { $arr = array( 9 => 'Super Admin', 1 => 'Registered User', 2 => 'User Level 2', 3 => 'User Level 3', 4 => 'User Level 4', 5 => 'User Level 5', 6 => 'User Level 6', 7 => 'User Level 7' ); $list = ''; foreach ($arr as $key => $val) { if ($key == $level) { $list .= "<option selected=\"selected\" value=\"$key\">$val</option>\n"; } else $list .= "<option value=\"$key\">$val</option>\n"; } unset($val); return $list; } /** * Users::getUserFilter() * * @return */ public function getUserFilter() { $arr = array( 'username-ASC' => 'Username ↑', 'username-DESC' => 'Username & ↓', 'fname-ASC' => 'First Name ↑', 'fname-DESC' => 'First Name ↓', 'lname-ASC' => 'Last Name ↑', 'lname-DESC' => 'Last Name ↓', 'email-ASC' => 'Email Address ↑', 'email-DESC' => 'Email Address ↓', 'created-ASC' => 'Registered ↑', 'created-DESC' => 'Registered ↓', ); $filter = ''; foreach ($arr as $key => $val) { if ($key == get('sort')) { $filter .= "<option selected=\"selected\" value=\"$key\">$val</option>\n"; } else $filter .= "<option value=\"$key\">$val</option>\n"; } unset($val); return $filter; } } ?>

hi, lemmin. http://cffoodtoday.com/testing2/index.php username testing1 password lolclol go in in nav bar to account - member area - then click on weight.... add a weight then click submit and you will see what I mean. i got a Membership Manager code then editing in the weight code

<?php /** * track_weight * @package Membership Manager Pro * @author wojoscripts.com * @copyright 2011 * @version Id: track_weight.php, v2.00 2013-04-16 11:42:41 gewa Exp $ */ define("_VALID_PHP", true); require_once("init.php"); ?> <?php include("header.php");?> <?php if($user->checkMembership('1,6')): ?> <!-- ============= CONTENT AREA STARTS HERE ============== --> <div id="content"> <!-- SLIDER STARTS HERE --> <div id="slider" class="slider2"> <div > </div> <h2 class="slider-head">Track your Weight</h2><br /><br /> <div id="whats-hot" > <p> The best time to weigh yourself is within the first hour as you wake up. </p> </div> <br /><br /><br /> <!-- end of news div --><!-- end of container div --> <div class="w-pet-border"> <?php $conn = mysql_connect("localhost", "root", "pass!"); mysql_select_db("login1", $conn) or die ('Database not found ' . mysql_error() ); $cust = $_GET["username"]; $sql = "select * from weight"; $rs = mysql_query($sql, $conn) or die ('Database not found ' . mysql_error() ); if (mysql_num_rows($rs)>0){ echo '<table width="700" border="1" cellpadding="10"> <tr> <td>Username</td> <td>date</td> <td>weight in lbs</td> <td>weight in kg</td> </tr>'; while ($row = mysql_fetch_array($rs)) { echo "<tr> <td>{$row['username']}</td> <td>{$row['date']}</td> <td>{$row['weight_lb']}</td> <td>{$row['weight_kg']}</td> </tr>"; } echo '</table>'; }else{ echo "<p>No weight with username: {$username} in database.</p>"; } ?> </table> </div><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /> <?php else: ?> <h2>Please <a href="index.php">Login</a> to view this page. or if you are logged in please weight 24 hour or less so Admin can change your Membership </h2> <?php endif; ?> <?php include("footer.php");?> so sorry. but really need help. the user is already logged in and it shows the table if the user was not logged in then it would show the login to view bit. this has been racking my brain all day. surly if the user is already logged in then if I run the fetch script then it should just show the user logged in data. could it be something todo with my database?

thank you Jessica it does look easier to read. No idea where I am going wrong though. just keep showing all data not just the user logged in data

it keeps coming up with the else {?> <p>No weight with username<?php echo $username ?> in database. now.

<?php $conn = mysql_connect("localhost", "root", "pass!"); mysql_select_db("login1", $conn) or die ('Database not found ' . mysql_error() ); $cust = $_GET["username"]; $sql = "select * from weight"; $rs = mysql_query($sql, $conn) or die ('Database not found ' . mysql_error() ); ?> <?php if (mysql_num_rows($rs)>0){ ?> <table width="700" border="1" cellpadding="10"> <tr><td>Username</td><td>date</td><td>weight in lbs</td><td>weight in kg</td></tr> <?php while ($row = mysql_fetch_array($rs)) { ?> <tr> <td><?php echo $row["username"]?></td> <td><?php echo $row["date"]?></td> <td><?php echo $row["weight_lb"]?></td> <td><?php echo $row["weight_kg"]?></td></tr> <?php } ?></table> <?php } else {?> <p>No weight with username<?php echo $username ?> in database.</p> <?php } ?> this is not my code. but everything works but it is showing all users data from the database. I just want it to show the user logged in data and not ever one else. but cant figure it out why its not doing it right.