Mancent

Hello Say i register my username as Dragon123 And password As Fatbuss123 How do I make sure the username is spelled perfect and password is perfect before you can enter the new area because the way it is now you can login with the username dragon123 and password fatbuss123 Or Dragon123 fatbuss123 Or dragon123 Fatbuss123 And both is right all is right but it needs to be wrong unless the username is Dragon123 And the password is Fatbuss123 If it has a cap it must be used. How do I do that? <?php ob_start(); include "connect.php"; // Define $myusername and $mypassword $username=$_POST['username']; $password=$_POST['password']; // To protect MySQL injection (more detail about MySQL injection) $username = stripslashes($username); $password = stripslashes($password); $username = mysql_real_escape_string($username); $password = mysql_real_escape_string($password); $sql="SELECT * FROM accounts WHERE username='$username' and password='$password'"; $result=mysql_query($sql); // Mysql_num_row is counting table row $count=mysql_num_rows($result); // If result matched $myusername and $mypassword, table row must be 1 row if($count==1) { // Register $myusername, $mypassword and redirect to file "login_success.php" session_register("username"); session_register("password"); echo "&msgText=Entrance Granted!\n"; } else { echo "&msgText=Invalid Login!\n"; } return false; ob_end_flush(); ?>

man i been working on this for 15 hours and im at the end every thing works but this one last thing. I can upload a image to my personal folder on the server. I can update where username is if username is set But its not working yet. I dont need to worry about the images being name wrong for website it adds the correct _ when a space is involded. This is upsetting. Im giving up for today 14 hours is to long to have the same problem. if any one can solve this your the shit,, as for me im very sick of trying to solve it.

That works but then the problem would be $fix is undefined. This file is for this When a user upload a image named This is my Images.jpg te fix would do this This_is_my_Image.jpg Making one string word.

Nothing working lol god this is hard crap

Im not really understanding global where can you show me a example? Here is the whole thing <?php include "../php/connect.php"; if(@!empty($_FILES)) { //sanitize filename $_FILES['Filedata']['supplied_name'] = $_FILES['Filedata']['name']; $_FILES['Filedata']['name'] = cleanFileName(utf8_decode($_FILES['Filedata']['name'])); if($fp = fopen("log.txt","a+")) { $contents = fwrite($fp, "===================================================\r\n"); $contents = fwrite($fp, "$ _FILES['filedata']: \r\n"); $contents = fwrite($fp, "FILES: ".print_r($_FILES['Filedata'],true)); $contents = fwrite($fp, "$ _GET: \r\n"); $contents = fwrite($fp, "PROPERTIES: ".print_r($_GET,true)); fclose($fp); } if(@isset($_GET['d'])) //simple flag to spoof attemptive hacks (unreliable) { $_SESSION['movedfileprops'] = array(); $_SESSION['movedfileprops']['type'] = $_GET['type']; $_SESSION['movedfileprops']['name'] = $_GET['name']; $_SESSION['movedfileprops']['size'] = $_GET['size']; $_SESSION['movedfileprops']['dir'] = $_GET['dir']; $_SESSION['movedfileprops']['a'] = $_GET['a']; $_SESSION['movedfileprops']['ft'] = explode(",",$_GET['ft']); $_SESSION['movedfileprops']['allowed'] = (in_array(LTRIM(strtolower($_SESSION['movedfileprops']['type']),"."),$_SESSION['movedfileprops']['ft']) ? "yes" : ($_GET['a'] == true ? "yes" : "no")); if($fp = fopen("log.txt","a+")) { $contents = fwrite($fp, "$ _SESSION['movedfileprops']: \r\n"); $contents = fwrite($fp, "SESSION: ".print_r($_SESSION['movedfileprops'],true)); fclose($fp); } if($_SESSION['movedfileprops']['allowed'] == "yes") { $filepath = getcwd()."/".$_GET['dir']."/"; if(!file_exists($filepath)) mkdir($filepath,0777); chmod($filepath,0777); if(move_uploaded_file($_FILES['Filedata']['tmp_name'], $filepath . $_FILES['Filedata']['name'])) chmod($filepath.$_FILES['Filedata']['name'], 0777); } if($fp = fopen("log.txt","a+")) { if(file_exists($filepath . $_FILES['Filedata']['name'])){ $contents = fwrite($fp, "Upload Success: ".$filepath.$_FILES['Filedata']['name']." \r\n"); } else { $contents = fwrite($fp, "Could not upload to: ".$filepath.$_FILES['Filedata']['name']." and I don't know why."); } fclose($fp); } } } $username = $_POST['username']; $username = stripslashes($username); $username = mysql_real_escape_string($username); $sql = mysql_query("SELECT avatar FROM accounts WHERE username = '$username'"); $rows = mysql_num_rows($sql); if($rows > 0) { function cleanFileName($str) { $cleaner = array(); $cleaner[] = array('expression'=>"/[àáäãâª]/",'replace'=>"a"); $cleaner[] = array('expression'=>"/[èéêë]/",'replace'=>"e"); $cleaner[] = array('expression'=>"/[ìíîï]/",'replace'=>"i"); $cleaner[] = array('expression'=>"/[òóõôö]/",'replace'=>"o"); $cleaner[] = array('expression'=>"/[ùúûü]/",'replace'=>"u"); $cleaner[] = array('expression'=>"/[ñ]/",'replace'=>"n"); $cleaner[] = array('expression'=>"/[ç]/",'replace'=>"c"); $cleaner[] = array('expression'=>"/[ß]/",'replace'=>"ss"); $ext_point = strpos($str,"."); if ($ext_point===false) return false; $ext = substr($str,$ext_point,strlen($str)); $str = substr($str,0,$ext_point); foreach($cleaner as $cv) { $str = preg_replace($cv["expression"],$cv["replace"],$str); } //Require approval from flash and handling from flash for files $fix = str_replace(" ","_",$str).$ext; echo "&msgText=$username!\n"; <--------------------------- THIS UNDEFINED $setavatar = mysql_query("UPDATE accounts SET avatar = 'http://wiistream.net/users/$username/images/$fix' WHERE username = '$username'"); <-- ALL THIS IS UNDEFINED return str_replace(" ","_",$str).$ext; } /// BUT IF THE USERNAME WAS HERE ITS DEFINED AS USERNAME WHATS THE FIX? } ?> I need these $usernames defined can some one show me a example how i can get it to work

Ok this is not making scene to me can any one help? Ok the following code will not display the username it says undefine as it is right here? $username = $_POST['username']; $username = stripslashes($username); $username = mysql_real_escape_string($username); //Require approval from flash and handling from flash for files $sql = mysql_query("SELECT avatar FROM accounts WHERE username = '$username'"); $rows = mysql_num_rows($sql); if($rows > 0) { function cleanFileName($str) { $cleaner = array(); $cleaner[] = array('expression'=>"/[àáäãâª]/",'replace'=>"a"); $cleaner[] = array('expression'=>"/[èéêë]/",'replace'=>"e"); $cleaner[] = array('expression'=>"/[ìíîï]/",'replace'=>"i"); $cleaner[] = array('expression'=>"/[òóõôö]/",'replace'=>"o"); $cleaner[] = array('expression'=>"/[ùúûü]/",'replace'=>"u"); $cleaner[] = array('expression'=>"/[ñ]/",'replace'=>"n"); $cleaner[] = array('expression'=>"/[ç]/",'replace'=>"c"); $cleaner[] = array('expression'=>"/[ß]/",'replace'=>"ss"); $ext_point = strpos($str,"."); if ($ext_point===false) return false; $ext = substr($str,$ext_point,strlen($str)); $str = substr($str,0,$ext_point); foreach($cleaner as $cv) { $str = preg_replace($cv["expression"],$cv["replace"],$str); } //if($rows > 0) // { $fix = str_replace(" ","_",$str).$ext; // OK RIGHT HERE IS WHERE IT SAYS UNDEFINED echo "&msgText=$username!\n"; <---------------------------------------------------------------------------------- //======================================================================================= $setavatar = mysql_query("UPDATE accounts SET avatar = 'http://wiistream.net/users/$username/images/$fix' WHERE username = '$username'"); return str_replace(" ","_",$str).$ext; } // BUT IF I PUT IT HERE IT IS NOT UNDEFINED AND IT DISPLAYS THE USERNAME //echo "&msgText=$username!\n"; //BUT IT NEEDS TO BE UP THERE BECASUE IS YOU SEE THE UPDATE SQL THE USER NAME NEEDS TO BE DEFINED AS TO UPLOAD INTO THE CORRECT FOLDER. // $setavatar = mysql_query("UPDATE accounts SET avatar = 'http://wiistream.net/users/$username/images/$fix' WHERE username = '$username'"); // }

check you mysql tables to see if the collation is all the same. check field by filed and set the collation to the exact same every where.

I need to get the friends password and insert it into the table so the friend can delete it later can some one help me do a table join <?php//include the connect scriptinclude "../../../../connect.php";//Post variables from flash$username = $_POST['username'];$password = $_POST['password'];$status = $_POST['status'];$friend = $_POST['friend'];$username = stripslashes($username);$password = stripslashes($password);$status = stripslashes($status);$friend = stripslashes($friend);$username = mysql_real_escape_string($username);$password = mysql_real_escape_string($password);$status = mysql_real_escape_string($status);$friend = mysql_real_escape_string($friend);$sql = mysql_query("SELECT * FROM user_declined_list WHERE username = '$username' and password = '$password' and friend = '$friend' and status ='$status'");$rows = mysql_num_rows($sql);$your_username=$rows['username'];if($rows > 0){echo "&msgTextFriendShipRejected= RESEND NEW FRIEND REQUEST SUCCESSFULLY!";// ok they are now our friend but we are not thier friend so lets insert the friendship in reverse and set the status to 1 on both ends// Problem i see is this if the user wishs to remove the friend later he will neen his password set to delete from this table.// so i need to do a join table again where friend password gets inserted here..$insertnewfriend = mysql_query("INSERT INTO user_friends_list (username,password,friend,status) VALUES ('$friend','$password','$username','0')") or die(mysql_error());//ok lets update the request and set the friend to be a friend becuase we said yes be my friend.$deleteuserfriend = mysql_query("DELETE FROM user_declined_list WHERE username = '$username' and password = '$password' and friend = '$friend' and status ='0'");return;}?>

<?php ob_start(); include "connect.php"; // Define $myusername and $mypassword $username=$_POST['username']; $password=$_POST['password']; // To protect MySQL injection (more detail about MySQL injection) $username = stripslashes($username); $password = stripslashes($password); $username = mysql_real_escape_string($username); $password = mysql_real_escape_string($password); $sql="SELECT * FROM accounts WHERE username='$username' and password='$password'"; $result=mysql_query($sql); // Mysql_num_row is counting table row $count=mysql_num_rows($result); // If result matched $myusername and $mypassword, table row must be 1 row if($count==1) { // Register $myusername, $mypassword and redirect to file "login_success.php" session_register("username"); session_register("password"); echo "&msgText=Entrance Granted!\n"; } else { echo "&msgText=Invalid Login!\n"; } return false; ob_end_flush(); ?> this line right here what would the URL be to work correctly $sql="SELECT * FROM accounts WHERE username='$username' and password='$password'"; if this line means this $sql="SELECT * FROM accounts WHERE username='$username'"; http://wiistream.net/flash.login.php?username=Mytest = echo "&msgText=Entrance Granted!\n"; see i dont know is it http://wiistream.net/flash.login.php?username=Mytest&password=123456 I cant seem to login with a URL code because I dont know what it is?

lol I didnt even know what that was untill now.. you should be a teacher lol

I hope today is the day where this is solved.

see this is what you are helping me create. http://wiistream.net/user_comment_test.swf but right now itsjust not working right

yes when i use that code i get this error. you can see the error here http://wiistream.net/flash/getprofileusercomments.php?username=Mancent The XML page cannot be displayed Cannot view XML input using XSL style sheet. Please correct the error and then click the Refresh button, or try again later. -------------------------------------------------------------------------------- Only one top level element is allowed in an XML document. Error processing resource 'http://wiistream.net/flash/getprofileu... <b>Warning</b>: mysql_num_rows(): supplied argument is not a valid MySQL result resource in <b>/home/cont... Idont know why it has a problem with USING(username) becasue if i take that out it works the same way as wehat we got. with random avatars <?php include "connect.php"; $username = mysql_real_escape_string($_GET['username']); //If friend is set, then query for it, otherwise return all of the friends comments. $friend = (isset($_GET['friend'])) ? ' AND b.friend = \'' . mysql_real_escape_string($_GET['friend']) . '\' ' : NULL; $sql = "SELECT a.username,a.comment,b.id,c.avatar FROM (user_comments as a JOIN accounts as c USING(username))JOIN `user_friends_list` as b ON (b.friend = a.username)WHERE (b.username = '$username' $friend AND b.status = 1) ORDER BY a.id DESC"; $result = mysql_query($sql) ;$user_xml = "<?xml version=\"1.0\"?>\n"; $user_xml .= "<myroots>\n"; $user_xml .= "<profileinfo>\n"; if(mysql_num_rows($result) > 0) { while ($row = mysql_fetch_assoc($result)) { $user_xml .= "<comment>\n"; $user_xml .= "<image>" . $row['avatar'] . "</image>\n"; $user_xml .= "<name>" . $row['username'] . "</name>\n"; $user_xml .= "<text>\n"; $user_xml .= "<![CDATA[ ". $row['comment'] ."]]>\n"; $user_xml .= "</text>\n"; $user_xml .= "</comment>\n"; } } $user_xml .= "</profileinfo>\n"; $user_xml .= "</myroots>\n"; echo $user_xml; ?> do you see a error in here?

you could create a mysql database with an account table where the fileds would have id username password then you could add a link on your website to login once logged you could send that user to a publish page where say they can upload a file to the server useing php. You could even add more fileds in the account table where the user has a picture of self or you could make a new table and have lots of pictures. like a gallery table. Its endless in the ideas you can have.

Ok this just is not working out for me. its so close but yet not perfect. The problem is the avatars the script is pulling random avatars that do not go with the user. here you can see from here http://wiistream.net/flash/getprofileusercomments.php?username=Mancent and its lopping the same messages more then it should. if the code is this way it works perfect other then the avatars dont work at all. <?phpinclude "connect.php";$username = mysql_real_escape_string($_GET['username']);//If friend is set, then query for it, otherwise return all of the friends comments.$friend = (isset($_GET['friend'])) ? ' AND b.friend = \'' . mysql_real_escape_string($_GET['friend']) . '\' ' : NULL;$sql = "SELECT b.username,b.comment,c.friend FROM user_comments as b,`user_friends_list` as c WHERE (b.username = c.friend AND c.status = '1') AND (c.username = '$username' $friend) ORDER BY b.id DESC";$result = mysql_query($sql);$user_xml = "<?xml version=\"1.0\"?>\n"; $user_xml .= "<root>\n";$user_xml .= "<get>\n";if(mysql_num_rows($result) > 0){ while ($row = mysql_fetch_assoc($result)) { $user_xml .= "<comment>\n";//$user_xml .= "<image>" . $row['avatar'] . "</image>\n";$user_xml .= "<name>" . $row['username'] . "</name>\n";$user_xml .= "<text>\n";$user_xml .= "<![CDATA[ ". $row['comment'] ."]]>\n"; $user_xml .= "</text>\n";$user_xml .= "</comment>\n"; }}//}$user_xml .= "</get>\n"; $user_xml .= "</root>\n"; echo $user_xml; ?> there is only 2 names on there each one a test account. and as you see its pulling 3 different avatars the default avatar and the 2 set avatars and they get place randomly. <?phpinclude "connect.php";$username = mysql_real_escape_string($_GET['username']);//If friend is set, then query for it, otherwise return all of the friends comments.$friend = (isset($_GET['friend'])) ? ' AND b.friend = \'' . mysql_real_escape_string($_GET['friend']) . '\' ' : NULL;$sql = "SELECT a.avatar,b.username,b.comment,c.friend FROM accounts as a, user_comments as b,`user_friends_list` as c WHERE (b.username = c.friend AND c.status = '1') AND (c.username = '$username' $friend) ORDER BY b.id DESC";$result = mysql_query($sql);$user_xml = "<?xml version=\"1.0\"?>\n"; $user_xml .= "<root>\n";$user_xml .= "<get>\n";if(mysql_num_rows($result) > 0){ while ($row = mysql_fetch_assoc($result)) { $user_xml .= "<comment>\n";$user_xml .= "<image>" . $row['avatar'] . "</image>\n";$user_xml .= "<name>" . $row['username'] . "</name>\n";$user_xml .= "<text>\n";$user_xml .= "<![CDATA[ ". $row['comment'] ."]]>\n"; $user_xml .= "</text>\n";$user_xml .= "</comment>\n"; }}//}$user_xml .= "</get>\n"; $user_xml .= "</root>\n"; echo $user_xml; ?>

Its so close to working i dont know how to do it i got the avatars to get pulled back but they are all wrong wrong avatar for this user or that user. can any one help? <?php include "connect.php"; $username = mysql_real_escape_string($_GET['username']); //If friend is set, then query for it, otherwise return all of the friends comments. $friend = (isset($_GET['friend'])) ? ' AND b.friend = \'' . mysql_real_escape_string($_GET['friend']) . '\' ' : NULL;$sql = "SELECT a.username,a.comment,b.friend,c.avatar FROM user_comments as a,`user_friends_list` as b,`accounts` as c WHERE (a.username = b.friend AND b.status = '1') AND (b.username = '$username' $friend) ORDER BY a.id DESC"; $result = mysql_query($sql); $user_xml = "<?xml version=\"1.0\"?>\n"; if(mysql_num_rows($result) > 0) { while ($row = mysql_fetch_assoc($result)) { $user_xml .= "<comment>\n"; $user_xml .= "<image>" . $row['avatar'] . "</image>\n"; $user_xml .= "<name>" . $row['username'] . "</name>\n"; $user_xml .= "<text>\n"; $user_xml .= "<![CDATA[ ". $row['comment'] ."]]>\n"; $user_xml .= "</text>\n"; $user_xml .= "</comment>\n"; } } echo $user_xml; ?>

here is the table for accounts i need to pull the avatar back aswell can you help? SET FOREIGN_KEY_CHECKS=0; -- ---------------------------- -- Table structure for `accounts` -- ---------------------------- DROP TABLE IF EXISTS `accounts`; CREATE TABLE `accounts` ( `id` int(10) unsigned NOT NULL auto_increment COMMENT 'Unique ID', `username` varchar(255) collate utf8_unicode_ci NOT NULL, `firstname` varchar(32) collate utf8_unicode_ci NOT NULL COMMENT 'Login username', `lastname` varchar(32) collate utf8_unicode_ci NOT NULL, `password` varchar(32) collate utf8_unicode_ci NOT NULL COMMENT 'Login password', `youremail` varchar(64) collate utf8_unicode_ci NOT NULL default '' COMMENT 'Contact e-mail address', `accesslevel` varchar(64) collate utf8_unicode_ci NOT NULL, `avatar` varchar(255) collate utf8_unicode_ci NOT NULL default 'http://www.pickworld.com/images/questionmark.jpg', `website` varchar(255) collate utf8_unicode_ci NOT NULL, `age` int(2) NOT NULL, `male` int(1) NOT NULL, `female` int(1) NOT NULL, `birthday` date NOT NULL, `lookingfor` varchar(32) collate utf8_unicode_ci NOT NULL, `city` varchar(32) collate utf8_unicode_ci NOT NULL, `hometown` varchar(64) collate utf8_unicode_ci NOT NULL, `politicalviews` varchar(255) collate utf8_unicode_ci NOT NULL, `bio` longtext collate utf8_unicode_ci NOT NULL, `mobilephone` text collate utf8_unicode_ci NOT NULL, `otherphone` text collate utf8_unicode_ci NOT NULL, `address` varchar(255) collate utf8_unicode_ci NOT NULL, `background` varchar(255) collate utf8_unicode_ci NOT NULL, PRIMARY KEY (`id`), UNIQUE KEY `a` (`youremail`), UNIQUE KEY `b` (`username`) ) ENGINE=MyISAM AUTO_INCREMENT=5 DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci COMMENT='Account Information'; <?php include "connect.php"; $username = mysql_real_escape_string($_GET['username']); //If friend is set, then query for it, otherwise return all of the friends comments. $friend = (isset($_GET['friend'])) ? ' AND b.friend = \'' . mysql_real_escape_string($_GET['friend']) . '\' ' : NULL;$sql = "SELECT a.username,a.comment,b.friend FROM user_comments as a,`user_friends_list` as b WHERE (a.username = b.friend AND b.status = '1') AND (b.username = '$username' $friend) ORDER BY a.id DESC"; $result = mysql_query($sql); $user_xml = "<?xml version=\"1.0\"?>\n"; $user_xml .= "<myroots>\n"; $user_xml .= "<profileinfo>\n"; if(mysql_num_rows($result) > 0) { while ($row = mysql_fetch_assoc($result)) { $user_xml .= "<username>" . $row['username'] . "</username>\n"; $user_xml .= "<myavatar>" . $row['avatar'] . "</myavatar>\n"; $user_xml .= "<comments>" . $row['comment'] . "</comments>\n"; } } $user_xml .= "</profileinfo>\n"; $user_xml .= "</myroots>\n"; echo $user_xml; ?>

Dude that is so cool you did it. that sucks too becasue i been trying for days. Im so glad i found this website. I hate to ask but I do have one last problem with this. see theres is sopst to be a avatar in this as well im going to study your code and see if i can do it but i have to pull the avatar from the account table . becasue see this is the xml file that i use for my flash site http://wiistream.net/flash/getprofileusercomments.php?username=Mancent you can see there is a avatar link in there but this is the new working php file the one you just made http://wiistream.net/flash/getfriends.php?username=Mancent So i have to add the avatar and boom its done you help me make a twetter effect with avatar like facebook inside my flash site. here is a test of my flash project to see what i mean http://wiistream.net/WiiStream.exe Username and password required so make a account to test

See i thought the column would be username should i give them both a user_id field that can be the related column

Ya i dont think i have ever learned how to make them related. This is the user comments table. SET FOREIGN_KEY_CHECKS=0;-- ------------------------------ Table structure for `user_comments`-- ----------------------------DROP TABLE IF EXISTS `user_comments`;CREATE TABLE `user_comments` ( `id` int(255) NOT NULL auto_increment, `username` varchar(255) NOT NULL, `password` varchar(255) NOT NULL, `comment` longtext NOT NULL, PRIMARY KEY (`id`)) ENGINE=MyISAM AUTO_INCREMENT=24 DEFAULT CHARSET=utf8;-- ------------------------------ Records of user_comments-- ----------------------------INSERT INTO `user_comments` VALUES ('1', 'Aucti9', 'Openowok', 'Hello World');INSERT INTO `user_comments` VALUES ('2', 'Mancent', 'Openowok', 'THIS IS NOT WORKING ITS LOOPING WHAT I SAID LIKE ALL MY FRIENDS SAID THE SAME THING WTF');INSERT INTO `user_comments` VALUES ('3', 'Martinezlucas11', 'l420420m', 'hi');INSERT INTO `user_comments` VALUES ('4', 'Aucti9', 'Openowok', 'Nothing so stop bugging me fag');INSERT INTO `user_comments` VALUES ('5', 'Aucti9', 'Openowok', 'Hello Can some one help me make this work correctly');INSERT INTO `user_comments` VALUES ('6', 'Aucti9', 'Openowok', 'Whats on my mind? Comment test');INSERT INTO `user_comments` VALUES ('7', 'Aucti9', 'Openowok', 'Next step todo user friends list then update code to show all friends comments if friend has accepted request from user to be a friend. Testing longtext mysql injection. How much can we write at one time? How knows the truth about anything? Well i for one have no clue what the hell im doing. Im just trying to make some thing for the hell of it.');INSERT INTO `user_comments` VALUES ('8', 'Aucti9', 'Openowok', 'Testing loop');INSERT INTO `user_comments` VALUES ('9', 'Aucti9', 'Openowok', 'Loop works cool\r');INSERT INTO `user_comments` VALUES ('10', 'Aucti9', 'Openowok', 'I just wish the image would load into the dam movie clip stupid thing I wish I knew the answer already so i can move on,');INSERT INTO `user_comments` VALUES ('11', 'Aucti9', 'Openowok', 'jyjsht nnu6w ');INSERT INTO `user_comments` VALUES ('12', 'Martinezlucas11', 'l420420m', 'tesdtdsfhsdjfhsdfsdlkhsdklsdkljhfjksdhfjksdhfkjdsghasf');INSERT INTO `user_comments` VALUES ('13', 'Martinezlucas11', 'l420420m', 'Welceom graphicsbe');INSERT INTO `user_comments` VALUES ('14', 'Aucti9', 'Openowok123456', 'Hello Will this work?');INSERT INTO `user_comments` VALUES ('15', 'Aucti9', 'Openowok123456', 'Nothing much whats on your mind');INSERT INTO `user_comments` VALUES ('16', 'Aucti9', 'Openowok', 'Still no way to get this image to load correctly WTF');INSERT INTO `user_comments` VALUES ('17', 'Aucti9', 'Openowok', 'Hi world can i get some help please? can some one sove the problem with the image loading correctly\r');INSERT INTO `user_comments` VALUES ('18', 'Aucti9', 'Openowok', 'Well just posted this on facebook to get feed back from other users.\r');INSERT INTO `user_comments` VALUES ('19', 'Aucti9', 'Openowok', 'hi kyle');INSERT INTO `user_comments` VALUES ('20', 'Aucti9', 'Openowok', 'Im so happy becasue It works. The picture stays inside the frame and thats what it should do. Im glade becasue I can now move on to the next step. Friends list.');INSERT INTO `user_comments` VALUES ('21', 'Aucti9', 'Openowok', 'edhkrfsofh\r');INSERT INTO `user_comments` VALUES ('22', 'Aucti9', 'Openowok', 'nothing');INSERT INTO `user_comments` VALUES ('23', 'Martinezlucas11', 'l420420m', 'Welcome martinezlucas11'); This is the friendslist table SET FOREIGN_KEY_CHECKS=0;-- ------------------------------ Table structure for `user_friends_list`-- ----------------------------DROP TABLE IF EXISTS `user_friends_list`;CREATE TABLE `user_friends_list` ( `id` int(255) NOT NULL auto_increment, `username` varchar(255) NOT NULL, `friend` varchar(255) NOT NULL, `status` int(255) NOT NULL, PRIMARY KEY (`id`)) ENGINE=MyISAM AUTO_INCREMENT=9 DEFAULT CHARSET=utf8;-- ------------------------------ Records of user_friends_list-- ----------------------------INSERT INTO `user_friends_list` VALUES ('1', 'Mancent', 'Mancent', '1');INSERT INTO `user_friends_list` VALUES ('2', 'martinezlucas11', 'martinezlucas11', '1');INSERT INTO `user_friends_list` VALUES ('4', 'Aucti9', 'Mancent', '1');INSERT INTO `user_friends_list` VALUES ('3', 'Aucti9', 'Aucti9', '1');INSERT INTO `user_friends_list` VALUES ('5', 'Mancent', 'Aucti9', '1');INSERT INTO `user_friends_list` VALUES ('6', 'Mancent', 'martinezlucas11', '1');INSERT INTO `user_friends_list` VALUES ('7', 'martinezlucas11', 'Mancent', '1');INSERT INTO `user_friends_list` VALUES ('8', 'Mancent', 'Mancent', '1');

Ya im not getting any where with this. this is some hard crap. heres what I been doing trying to get it to work right but i still con not pull the correct user from the comment table its just looping the one thing i sade for all friends. <?phpinclude "connect.php";$username = $_GET['username'];$friend = $_GET['friend'];$user_friends_list = mysql_query("SELECT * FROM user_friends_list WHERE username = '$username'");$user_comments = mysql_query("SELECT * FROM user_comments WHERE username = '$username'"); //$user_comments= mysql_query("SELECT * FROM user_comments JOIN ( SELECT * FROM user_friends_list WHERE username = '$username')");$user_xml = "<?xml version=\"1.0\"?>\n"; $user_xml .= "<myroots>\n";$user_xml .= "<profileinfo>\n"; while ($user_friends_list_row = mysql_fetch_assoc($user_friends_list)) { //$user_xml .= "<friend>" . $user_friends_list_row['friend'] . "</friend>\n"; // $user_xml .= "<status>" . $user_friends_list_row['status'] . "</status>\n"; if( $user_friends_list_row['status'] == "1"){ while ($user_comments_row = mysql_fetch_assoc($user_comments)) { while ($user_friends_list_newrow = mysql_fetch_array($user_friends_list, MYSQL_NUM)) //for($x = 0 ; $x < mysql_num_rows($user_friends_list) ; $x++) {//THIS IS WORKING I AM GETTING ALL MY CORRECT FRIENDS $user_xml .= "<username>" . $user_friends_list_newrow['2'] . "</username>\n";//THIS IS NOT WORKING I AM NOT GETTING MY FRIENDS COMMENTS I AM GETTING MY COMMNET //AND IT IS LOPPING LIKE ALL MY FRIENDS SAID IT. $user_xml .= "<comments>" . $user_comments_row['comment'] . "</comments>\n"; } } } }$user_xml .= "</profileinfo>\n";$user_xml .= "</myroots>\n"; echo $user_xml; ?> HERE IS A EXAMPLE TYOU CAN SEE http://wiistream.net/flash/getfriends.php?username=Mancent

<?php include "connect.php"; $username = $_GET['username']; $friend = $_POST['friend']; $sql = mysql_query("SELECT * FROM user_comments WHERE username = '$username'"); $sql2 = mysql_query("SELECT * FROM user_friends_list WHERE username = '$username'"); $user_xml = "<?xml version=\"1.0\"?>\n"; $user_xml .= "<myroots>\n"; $user_xml .= "<profileinfo>\n"; //Check the friendslist table where all users frinds are. while ($row3 = mysql_fetch_array($sql2, MYSQL_NUM)) { $user_xml .= "<friend>" . $row3['2'] . "</friend>\n"; $user_xml .= "<status>" . $row3['3'] . "</status>\n"; //CHECK IF THE USER HAS ANY FRIENDS 1= IS FRIEND 0= IS NOT FRIEND YET if( $row3['3'] == "1") { //CHECK ALL THE COMMENTS WHERE FRIEND HAS POSTED while ($row = mysql_fetch_array($sql, MYSQL_NUM)) { //PROBLEM I SEE IS THIS $user_xml .= "<username>" . $row['1'] . "</username>\n"; // . $row['1'] . = THE DEFUALT USERNAME BUT IT NEEDS TO CHANGE TO ALL FRIENDS USERNAMES $user_xml .= "<username>" . $row['1'] . "</username>\n"; $user_xml .= "<comments>" . $row['3'] . "</comments>\n"; } } } $user_xml .= "</profileinfo>\n"; $user_xml .= "</myroots>\n"; echo $user_xml; ?> I trying to be able toread all friends and all comments from friends