amin1982 Posted March 4, 2007 Share Posted March 4, 2007 Hey Guys, I have recently taken over a website to administer. However there are some errors which I seem unable to locate. I keep receiving errors when loading certain pages. I've gone through the codes but as yet seem unable to locate the problem! Please help. The code below is quite long... but any help would be much appreciated! <? /********** My Account Page **********/ // // // ** Grab site functions session_start(); require_once("includes/beluga_funcs.php"); $page = $_SESSION['page']; $op = $_REQUEST['op']; $err = $_SESSION['err']; $firstName = $_SESSION['firstName']; $lastName = $_SESSION['lastName']; $username = $_SESSION['username']; $password = $_SESSION['password']; $email = $_SESSION['email']; $mobileNumber = $_SESSION['mobileNumber']; $address = $_SESSION['address']; $postcode = $_SESSION['postcode']; $faxNumber = $_SESSION['faxNumber']; $emailFormat = $_SESSION['emailFormat']; $dayOfBirth = $_SESSION['dayOfBirth']; $monthOfBirth = $_SESSION['monthOfBirth']; $yearOfBirth = $_SESSION['yearOfBirth']; $sex = $_SESSION['sex']; $professionID = $_SESSION['professionID']; $valid_user_firstname = $_SESSION['valid_user_firstname']; $valid_user_lastname = $_SESSION['valid_user_lastname']; $valid_user_email = $_SESSION['valid_user_email']; $valid_user = $_SESSION['valid_user']; $valid_userID = $_SESSION['valid_userID']; //$del_password_error = $_SESSION['del_password_error']; // ** This is a members only page, so chuck them back to the login page if they are not logged in yet. This will only happen if the person has typed in the URL of the page directly, or come from a bookmark. //global $valid_user; //global $valid_userID; //global $valid_user_email; //global $valid_user_firstname; //global $valid_user_lastname; if (!session_is_registered("valid_user")) { echo "<META HTTP-EQUIV='Refresh' Content='0; URL=index.php'>"; exit; } // ** SET SECTION AND PAGE $section = "myaccount"; $page = "myaccount"; // ** Connect to database $conn = db_connect(); if (!$conn) return "ERROR: Could not connect to database server - please try again later"; // ** GET PAGE INFO $page_result = mysql_query("select * from pageinfo where page like '$page'"); if (!$page_result) return "ERROR: Couldn't execute query - please try again later"; $page_info = mysql_fetch_array($page_result); $page_title = $page_info["title"]; $page_infoheading = stripslashes($page_info["infoheading"]); $page_infocontent = nl2br(stripslashes($page_info["infocontent"])); $page_mainheading = stripslashes($page_info["mainheading"]); $page_mainsummary = nl2br(stripslashes($page_info["mainsummary"])); $page_mainstory = nl2br(stripslashes($page_info["mainstory"])); $page_image = $page_info["image"]; $errors = "no"; $username_error = "no"; $email_error = "no"; $password_error = "no"; $del_password_error = "no"; // IF DELETE COMMAND SENT THROUGH THEN CHECK PASSWORD OK AND DELETE if ($op == "del") { // CHECK CURRENT PASSWORD ENTERED CORRECTLY $pass_check_result = mysql_query("select password from member where memberID = '$valid_userID' and password = '$delPassword'"); if (!$pass_check_result) return "ERROR: Couldn't execute query - please try again later"; $num = mysql_numrows($pass_check_result); if ($num == 0) { $errors = "yes"; $del_password_error = "yes"; } // IF NO ERRORS THEN DELETE THE RECORD AND LOG OUT if ($errors == "no") { $delete_result = mysql_query("delete from member where memberID='$valid_userID'"); if (!delete_result) { echo "<p>Error updating the database</p>"; } else { $to = "[email protected]"; $from = "From: [email protected] \r\n"; $mesg = "Name: "; if ($valid_user_firstname) $mesg .= $valid_user_firstname." "; if ($valid_user_lastname) $mesg .= $valid_user_lastname." "; $mesg .= "\r\n"; $subject = "Beluga Blues - ".$valid_user_email." has just removed themselves from the list"; mail($to, $subject, $mesg, $from); session_destroy(); echo "<META HTTP-EQUIV='Refresh' Content='0; URL=index.php'>"; exit; } } } // IF DO SOMETHING COMMAND SENT THROUGH THEN CHECK EMAIL AND USERNAME NOT ALREADY TAKEN if ($op == "ds") { $firstName = $_REQUEST['firstName']; $lastName = $_REQUEST['lastName']; $username = $_REQUEST['username']; $password = $_REQUEST['password']; $email = $_REQUEST['email']; $mobileNumber = $_REQUEST['mobileNumber']; $address = $_REQUEST['address']; $postcode = $_REQUEST['postcode']; $faxNumber = $_REQUEST['faxNumber']; $emailFormat = $_REQUEST['emailFormat']; $dayOfBirth = $_REQUEST['dayOfBirth']; $monthOfBirth = $_REQUEST['monthOfBirth']; $yearOfBirth = $_REQUEST['yearOfBirth']; $sex = $_REQUEST['sex']; $professionID = $_REQUEST['professionID']; $currentPassword = $_REQUEST['currentPassword']; $newPassword = $_REQUEST['newPassword']; if (!ereg("^[A-Za-z0-9]{6,100}$",$username)) { $errors = "yes"; $username_error = "yes"; $username_errortext = "Username must be between six and one hundred characters and contain no spaces or special characters"; } else { // CHECK USERNAME NOT ALREADY TAKEN $user_check_result = mysql_query("select memberID from member where memberID != '$valid_userID' and username = '$username'"); if (!$user_check_result) return "ERROR: Couldn't execute query - please try again later"; $num = mysql_numrows($user_check_result); if ($num != 0) { $errors = "yes"; $username_error = "yes"; $username_errortext = "Please enter a different username, this one is already taken:"; } } // CHECK EMAIL NOT ALREADY TAKEN $email_check_result = mysql_query("select memberID from member where memberID != '$valid_userID' and email = '$email'"); if (!$email_check_result) return "ERROR: Couldn't execute query - please try again later"; $num = mysql_numrows($email_check_result); if ($num != 0) { $errors = "yes"; $email_error = "yes"; } // CHECK CURRENT PASSWORD ENTERED CORRECTLY $pass_check_result = mysql_query("select password from member where memberID = '$valid_userID' and password = '$currentPassword'"); if (!$pass_check_result) return "ERROR: Couldn't execute query - please try again later"; $num = mysql_numrows($pass_check_result); if ($num == 0) { $errors = "yes"; $password_error = "yes"; $password_errortext = "You didn't enter your current password correctly:"; } if ($newPassword &&(!ereg("^[A-Za-z0-9]{6,20}$",$newPassword))) { $errors = "yes"; $password_error = "yes"; $password_errortext = "Password must be between six and twenty characters and contain no spaces or special characters"; } // IF NO ERRORS THEN UPDATE THE RECORD AND DISPLAY CONFIRMATION if ($errors == "no") { // MAKE SURE ANY SPECIAL CHARACTERS ARE ESCAPED $firstName = addslashes(trim($firstName)); $lastName = addslashes(trim($lastName)); $username = addslashes(trim($username)); $password = addslashes(trim($password)); $email = addslashes(trim($email)); $mobileNumber = addslashes(trim($mobileNumber)); $address = addslashes(trim($address)); $postcode = addslashes(trim($postcode)); $faxNumber = addslashes(trim($faxNumber)); // IF A NEW PASSWORD ENTERED THEN MAKE SURE NEW ONE SAVED, ELSE SAVE EXISTING ONE if ($newPassword != '') { $password = $newPassword; } else { $password = $currentPassword; } // UPDATE THE DATABASE AND SEND TO NEXT PAGE $update_result = mysql_query("update member set firstName='$firstName', lastName='$lastName', username='$username', password='$password', email='$email', mobileNumber='$mobileNumber', dayOfBirth='$dayOfBirth', monthOfBirth='$monthOfBirth', yearOfBirth='$yearOfBirth', sex='$sex', address='$address', postcode='$postcode', faxNumber='$faxNumber', professionID='$professionID', emailFormat='$emailFormat' where memberID='$valid_userID'"); // UPDATE SESSION VARIABLES session_unregister("valid_user_email"); session_unregister("valid_user_firstname"); session_unregister("valid_user_lastname"); $valid_user_email = $email; $valid_user_firstname = $firstName; $valid_user_lastname = $lastName; session_register("valid_user_email"); session_register("valid_user_firstname"); session_register("valid_user_lastname"); if (!$update_result) { echo "<p>Error updating the database</p>"; } else { echo "<META HTTP-EQUIV='Refresh' Content='0; URL=confirmupdate.php'>"; exit; } } } // NO COMMAND SENT, OR ERRORS // IF NO ERRORS THEN LOAD THE MEMBER DETAILS - ONLY THE FIRST RECORD IF NO ID PASSED THROUGH if ($errors == "no") { $sql_result = mysql_query("select * from member where memberID = $valid_userID and memberStatus like 'Live'"); if (!$sql_result) return "ERROR: Couldn't execute query - please try again later"; while ($row = mysql_fetch_array($sql_result)) { $firstName = $row["firstName"]; $lastName = $row["lastName"]; $username = $row["username"]; $email = $row["email"]; $mobileNumber = $row["mobileNumber"]; $dayOfBirth = $row["dayOfBirth"]; $monthOfBirth = $row["monthOfBirth"]; $yearOfBirth = $row["yearOfBirth"]; $sex = $row["sex"]; $address = $row["address"]; $postcode = $row["postcode"]; $faxNumber = $row["faxNumber"]; $professionID = $row["professionID"]; $emailFormat = $row["emailFormat"]; } } $firstName = stripslashes($firstName); $lastName = stripslashes($lastName); $username = stripslashes($username); $email = stripslashes($email); $mobileNumber = stripslashes($mobileNumber); $address = stripslashes($address); $postcode = stripslashes($postcode); $faxNumber = stripslashes($faxNumber); // GET THE PROFESSIONS $prof_sql_result = mysql_query("select professionID, professionName from profession where professionStatus like 'Live' order by professionName asc"); if (!$prof_sql_result) return "ERROR: Couldn't execute query - please try again later"; $prof_row = mysql_fetch_array($prof_sql_result); // CREATE PROFESSIONS OPTION BLOCK if ((!$professionID) || ($professionID == 'null') || ($professionID == 0)) { $profession_option_block .= "<option value='0' selected>Please select...</option>"; } while ($prof_row = mysql_fetch_array($prof_sql_result)) { $db_profID = $prof_row["professionID"]; $db_profName = $prof_row["professionName"]; if ($professionID == $db_profID) { $profession_option_block .= "<option value='$db_profID' selected>$db_profName</option>"; } else { $profession_option_block .= "<option value='$db_profID'>$db_profName</option>"; } } // CREATE DAY OF BIRTH OPTION BLOCK if ((!dayOfBirth) || ($dayOfBirth == 'null') || ($dayOfBirth == 0)) { $dayOfBirth_option_block .= "<option value='0' selected>Day</option>"; } for ($optionDay=1;$optionDay<=31;$optionDay++) { if ($dayOfBirth == $optionDay) { $dayOfBirth_option_block .= "<option value='$optionDay' selected>$optionDay</option>"; } else { $dayOfBirth_option_block .= "<option value='$optionDay'>$optionDay</option>"; } } // CREATE MONTH OF BIRTH OPTION BLOCK $months = array('January','February','March','April','May','June','July','August','September','October','November','December'); if ((!$monthOfBirth) || ($monthOfBirth == 'null') || ($monthOfBirth == 0)) { $monthOfBirth_option_block .= "<option value='0' selected>Month</option>"; } for ($optionMonth=1;$optionMonth<=12;$optionMonth++) { $displayMonth = $optionMonth - 1; if ($monthOfBirth == $optionMonth) { $monthOfBirth_option_block .= "<option value='$optionMonth' selected>$months[$displayMonth]</option>"; } else { $monthOfBirth_option_block .= "<option value='$optionMonth'>$months[$displayMonth]</option>"; } } // CREATE YEAR OF BIRTH OPTION BLOCK if ((!$yearOfBirth) || ($yearOfBirth == 'null') || ($yearOfBirth == 0)) { $yearOfBirth_option_block .= "<option value='0' selected>Year</option>"; } for ($optionYear=1999;$optionYear>=1931;$optionYear--) { if ($yearOfBirth == $optionYear) { $yearOfBirth_option_block .= "<option value='$optionYear' selected>$optionYear</option>"; } else { $yearOfBirth_option_block .= "<option value='$optionYear'>$optionYear</option>"; } } // CREATE SEX OPTION BLOCK switch (strtolower($sex)) { case "f" : $sex_option_block .="<option value='none'>Please select...</option><option value='m'>Male</option><option value='f' selected>Female</option>"; break; case "m" : $sex_option_block .="<option value='none'>Please select...</option><option value='m' selected>Male</option><option value='f'>Female</option>"; break; default: $sex_option_block .="<option value='none' selected>Please select...</option><option value='m'>Male</option><option value='f'>Female</option>"; break; } // CREATE EMAIL FORMAT OPTION BLOCK if ((!$emailFormat) || ($emailFormat == 'null') || ($emailFormat == 'HTML')) { $emailFormat_option_block .="<option value='HTML' selected>HTML</option><option value='Text'>Text</option><option value='none'>No newsletter</option>"; } else if ($emailFormat == 'none'){ $emailFormat_option_block .="<option value='HTML'>HTML</option><option value='Text'>Text</option><option value='none' selected>No newsletter</option>"; } else { $emailFormat_option_block .="<option value='HTML'>HTML</option><option value='Text' selected>Text</option><option value='none'>No newsletter</option>"; } // ** Output header do_html_header($page_title,$section); // ** Display adverts, main image, begin red table, show main headline do_html_midsection($page, $page_image, $page_infoheading, $page_infocontent, $page_mainheading, $page_mainsummary, $page_mainstory, $err); ?> <script language="JavaScript"> <!-- // FORM VALIDATION function checkform (form) { var AtSymbol = form.email.value.indexOf('@') var Period = form.email.value.lastIndexOf('.') var Space = form.email.value.indexOf(' ') var Length = form.email.value.length - 1 // Array is from 0 to length-1 // FIRST NAME if (form.firstName.value == '') { alert( 'Please enter your first name' ); form.firstName.focus(); return false ; } // LAST NAME if (form.lastName.value == '') { alert( 'Please enter your surname' ); form.lastName.focus(); return false ; } // EMAIL if (form.email.value == '') { alert( 'Please enter your email address' ); form.email.focus(); return false ; } if ((AtSymbol < 1) || // '@' cannot be in first position (Period <= AtSymbol + 1) || // Must be atleast one valid char btwn '@' and '.' (Period == Length ) || // Must be atleast one valid char after '.' (Space != -1)){ // No empty spaces permitted alert('Please enter a valid e-mail address') form.email.focus() form.email.select() return false ; } // CONTACT/MOBILE NUMBER if (form.mobileNumber.value == '') { alert( 'Please enter a contact number' ); form.mobileNumber.focus(); return false ; } // DAY OF BIRTH if (form.dayOfBirth.value == '0'){ alert( 'Please enter your date of birth' ); form.dayOfBirth.focus(); return false ; } // MONTH OF BIRTH if (form.monthOfBirth.value == '0'){ alert( 'Please enter your month of birth' ); form.monthOfBirth.focus(); return false ; } // YEAR OF BIRTH if (form.yearOfBirth.value == '0'){ alert( 'Please enter your year of birth' ); form.yearOfBirth.focus(); return false ; } // SEX if (form.sex.value == 'none'){ alert( 'Please select your gender' ); form.sex.focus(); return false ; } // POSTCODE if (form.postcode.value == '') { alert( 'Please enter your postcode' ); form.postcode.focus(); return false ; } // PROFESSION if (form.professionID.value == '0') { alert( 'Please select your profession' ); form.professionID.focus(); return false ; } // USERNAME if ((form.username.value == '') || (form.username.value.length < 6)) { alert( 'Please enter a username at least six characters long' ); form.username.focus(); form.username.select(); return false ; } // PASSWORD if (form.currentPassword.value == '') { alert( 'Please enter your current password' ); form.currentPassword.focus(); return false ; } if ((form.newPassword.value != '') && (form.confirmNewPassword == '')) { alert( 'Please enter your new password twice' ); form.confirmNewPassword.focus(); return false ; } if ((form.newPassword.value != '') && (form.newPassword.value.length < 6)) { alert( 'Password must be at least six characters long!' ); form.newPassword.focus(); form.newPassword.select(); return false ; } if (form.newPassword.value != form.confirmNewPassword.value) { alert( 'Passwords do not match!' ); form.newPassword.focus(); return false ; } return true ; } function checkform2 (form) { // PASSWORD if (form.delPassword.value == '') { alert( 'Please enter your current password' ); form.delPassword.focus(); return false ; } return confirm('Are you sure you want to remove your membership?'); return true ; } //--> </script> <? /********** MAIN TABLE CONTENTS **********/ ?> <table border="0" cellspacing="10" cellpadding="0"> <? if ($errors == "yes") { ?> <tr><td colspan="2" align="left" valign="top"><font color="#C8264D"><b>Sorry, there were some errors, please check:</b></font></td></tr> <? } ?> <? if ($del_password_error == "no") { ?> <form method="post" action="<? echo $PHP_SELF ?>" onSubmit="return checkform(this);"> <!-- First name --> <tr><td align="left" valign="top" width="35%">First name:</td><td align="left" valign="top"><input type="text" name="firstName" value="<? echo $firstName ?>" size="20" maxlength="30"></td></tr> <!-- Last name/surname --> <tr><td align="left" valign="top">Surname:</td><td align="left" valign="top"><input type="text" name="lastName" value="<? echo $lastName ?>" size="20" maxlength="30"></td></tr> <!-- Email --> <? if ($email_error == "yes") { ?> <tr><td colspan="2" align="left" valign="top"><font color="#C8264D"><b>Please enter a different email address, this one is already on our database:</b></font></td></tr> <? } ?> <tr><td align="left" valign="top">Email:</td><td align="left" valign="top"><input type="text" name="email" value="<? echo $email ?>" size="35" maxlength="100"></td></tr> <!-- Contact/mobile number --> <tr><td align="left" valign="top">Contact number:<br>(preferably mobile) </td><td align="left" valign="top"><input type="text" name="mobileNumber" value="<? echo $mobileNumber ?>" size="20" maxlength="20"></td></tr> <!-- Date of birth --> <tr><td align="left" valign="top">Date of birth:</td><td align="left" valign="top"><select name=dayOfBirth><? echo $dayOfBirth_option_block ?></select><select name=monthOfBirth><? echo $monthOfBirth_option_block ?></select><select name=yearOfBirth><? echo $yearOfBirth_option_block ?></select></td></tr> <!-- Sex --> <tr><td align="left" valign="top">Gender:</td><td align="left" valign="top"><select name="sex"><? echo $sex_option_block ?></select></td></tr> <!-- Address --> <tr><td align="left" valign="top">Address (optional):</td><td align="left" valign="top"><textarea name="address" cols="25" rows="5" wrap="hard"><? echo $address ?></textarea></td></tr> <!-- Postcode --> <tr><td align="left" valign="top">Postcode:</td><td align="left" valign="top"><input type="text" name="postcode" value="<? echo $postcode ?>" size="10" maxlength="10"></td></tr> <!-- Fax number --> <tr><td align="left" valign="top">Fax number (optional):</td><td align="left" valign="top"><input type="text" name="faxNumber" value="<? echo $faxNumber ?>" size="20" maxlength="20"></td></tr> <!-- Profession --> <tr><td align="left" valign="top">Profession:</td><td align="left" valign="top"><select name=professionID> <? echo $profession_option_block ?></select></td></tr> <!-- Email format --> <tr><td align="left" valign="top">Preferred newsletter format:</td><td align="left" valign="top"><select name="emailFormat"><? echo $emailFormat_option_block ?></select></tr> <!-- Username --> <? if ($username_error == "yes") { ?> <tr><td colspan="2" align="left" valign="top"><font color="#C8264D"><b><? echo $username_errortext ?></b></font></td></tr> <? } ?> <tr><td align="left" valign="top">Username:</td><td align="left" valign="top"><input type="text" name="username" value="<? echo $username ?>" size="20" maxlength="100"></td></tr> <!-- Spacer --> <tr><td colspan="2"><img src="images/spacer.gif" alt="spacer" width="1" height="5" hspace="0" vspace="0"></td></tr> <!-- Current password --> <tr><td colspan="2" align="left" valign="top"><p><b>For security purposes, please enter your current password below:</b></p></td></tr> <? if ($password_error == "yes") { ?> <tr><td colspan="2" align="left" valign="top"><font color="#C8264D"><b><? echo $password_errortext ?></b></font></td></tr> <? } ?> <tr><td align="left" valign="top">Current password:</td><td align="left" valign="top"><input type="password" name="currentPassword" size="25" maxlenth="30" value="<? echo $currentPassword ?>"></td></tr> <!-- New password --> <tr><td colspan="2" align="left" valign="top"><p>To change your current password, please enter a new one below</p></td></tr> <tr><td align="left" valign="top">New password:</td><td align="left" valign="top"><input type="password" name="newPassword" size="25" maxlenth="30" value="<? echo $newPassword ?>"></tr> <!-- News password (check) --> <tr><td align="left" valign="top">Confirm password:</td><td align="left" valign="top"><input type="password" name="confirmNewPassword" size="25" maxlenth="30" value="<? echo $confirmNewPassword ?>"></tr> <!-- Command --> <input type="hidden" name="op" value="ds"> <!-- Submit --> <tr> <td> </td> <td align="left" valign="top"><input type="image" border="0" vspace="0" hspace="0" name="Submit" src="images/button_red_submit.gif" alt="submit" width="72" height="11"></td> </tr> </form> <!-- Spacer --> <tr><td colspan="2"><img src="images/spacer.gif" alt="spacer" width="1" height="100" hspace="0" vspace="0"></td></tr> <? } ?> <form method="post" action="<? echo $PHP_SELF ?>" onSubmit="return checkform2(this);"> <!-- Delete record --> <tr><td colspan="2" align="left" valign="top"><b>Leaving Beluga Blues?</b></td></tr> <!-- Delete record --> <tr><td colspan="2" align="left" valign="top"><p><b>If you no longer wish to receive newsletters from us, please select 'No newsletter' in the 'Preferred newsletter format' option above. You will still be able to book your guest lists online and make full use of our website.</b></p> <p>However, if you wish to delete your information completely from our database, please enter your current password below and click on the submit button. Your information will be removed from our database and you will be logged out immediately. We will be sorry to lose you as a valued member of Beluga Blues and invite you to let us know why you are leaving via our 'Make Contact' page (which is also accessible to non-members).</p></td></tr> <? if ($del_password_error == "yes") { ?> <tr><td colspan="2" align="left" valign="top"><font color="#C8264D"><b>You didn't enter your current password correctly:</b></font></td></tr> <? } ?> <tr><td align="left" valign="top">Current password:</td><td align="left" valign="top"><input type="password" name="delPassword" size="25" maxlenth="30" value="<? echo $delPassword ?>"></td></tr> <!-- Command --> <input type="hidden" name="op" value="del"> <!-- Submit --> <tr> <td> </td> <td align="left" valign="top"><input type="image" border="0" vspace="0" hspace="0" name="Submit" src="images/button_red_submit.gif" alt="submit" width="72" height="11"></td> </tr> </form> </table> <? /********** END MAIN TABLE CONTENTS **********/ end_posthome_main_table(); /********** Display footer **********/ do_html_footer(); ?> Link to comment https://forums.phpfreaks.com/topic/41151-white-page-help-please/ Share on other sites More sharing options...
papaface Posted March 4, 2007 Share Posted March 4, 2007 Put this: error_reporting(E_ALL); ini_set('display_errors', '1'); At the top of the page and tell us any errors that are printed. p.s obviously put that inside the <? Link to comment https://forums.phpfreaks.com/topic/41151-white-page-help-please/#findComment-199339 Share on other sites More sharing options...
amin1982 Posted March 4, 2007 Author Share Posted March 4, 2007 hey, when i added error_reporting(E_ALL); ini_set('display_errors', '1'); I did receive several errors all along the lines of: Notice: Undefined index: page in /var/www/virtual/belugablues.com/htdocs/myaccount.php on line 13 however these are defined within the code as far as I can tell? Not sure if this is significant but when I put error_reporting(E_ALL); ini_set('display_errors', '1'); within the code, rather than the top, again I get a white page. Any ideas whats wrong? Link to comment https://forums.phpfreaks.com/topic/41151-white-page-help-please/#findComment-199347 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.