PHP - Headers Error Unique Not In The Sticked Thread

I have a mysql table which will store users email addresses (each is unique and is the primary field) and a timestamp. 
I have added another column called `'unique_code' (varchar(64), utf8_unicode_ci)`.

What I would very much appreciate assistance with is;

a) Generating a 5 digit alphanumeric code, ie: 5ABH6 
b) Check all rows the 'unique_code' column to ensure it is unique, otherwise re-generate and check again 
c) Insert the uniquely generated 5 digit alphanumeric code into `'unique_code'` column, corresponding to the email address just entered. 
d) display the code on screen.

What code must I put and where?


**My current php is as follows:**

Code: [Select]
    require "includes/connect.php";
   
    $msg = '';
   
    if($_POST['email']){
   
    // Requested with AJAX:
    $ajax = ($_SERVER['HTTP_X_REQUESTED_WITH']  == 'XMLHttpRequest');
   
    try{
    if(!filter_input(INPUT_POST,'email',FILTER_VALIDATE_EMAIL)){
    throw new Exception('Invalid Email!');
    }
   
    $mysqli->query("INSERT INTO coming_soon_emails
    SET email='".$mysqli->real_escape_string($_POST['email'])."'");
   
    if($mysqli->affected_rows != 1){
    throw new Exception('You are already on the notification list.');
    }
   
    if($ajax){
    die('{"status":1}');
    }
   
    $msg = "Thank you!";
   
    }
    catch (Exception $e){
   
    if($ajax){
    die(json_encode(array('error'=>$e->getMessage())));
    }
   
    $msg = $e->getMessage();
    }
    }

Advice please.

I am setting up a new machine here and I can't remember which to download.

What information do you need to be aware of to know whether to install 'non thread safe' or 'thread safe'.  I did some googling but didn't find anything that was clear. 

And is 5.3 good to go or should I stick with 5.2.

Thanks in advance for your input!

i got the below code from google, need to adapt it to use, it works, but i just need it to over write on the file instead of appending to the file , please help, i am not a coder nor understand much of this, if someone could change it for me please:

function logText($text)
{
    $ts = date("D d-m-y h:i A",time());
    $toLog = "[" . $ts . "] " . $text;
    $fh = fopen("logFile.txt", 'a');
    fwrite($fh, $toLog."\n");
    fclose($fh);
}

Edited December 13, 2020 by requinix

I've already made fully working create topic, etc; what would I need to make to reply to a thread?

I've gotten this so far...
<?php
$result = mysql_query("SELECT id FROM b ORDER BY id DESC");
while ($row = mysql_fetch_array($result, MYSQL_NUM)) {
    printf("<a href='reply.php?id=%s'>Reply</a><hr><br /><br />", $row[0]);
}

mysql_free_result($result);
?>
reply.php?id=%s (%s equaling the thread id) when I click it, it does bring me to the appropriate page, but I don't know where to go from there. Any help? 
any other info you might need just ask

Hi all i am working on forum and i am close to testing stage and right now i am fighting serious bugs with $_GET ...
http://hostings.flush.ws/?section=forumview&id=1 [you can manipulate the values and create unknown threads in unknown forums ]
http://hostings.flush.ws/?section=forumthreadsubmit&id=1 [you can manipulate the values and create unknown threads ]
also can mix both and get like backdoor trojan without admin knowledge

if ($id = ((isset($_GET['id'])) && (ctype_digit($_GET['id'])) ? (int)$_GET['id'] : ''))

{

true;

}

else 

{

echo $redirect.false;

}

Sow if somebody could show example how to counter attack value changing

You can login in web with user help pass help12
address http://hostings.flush.ws/?section=news

Hello everyone, it's my first post here. I was recommend this community for it's professionalism and "friendlyness". During my stay here, please excuse my english. I know it can be unpleasant for you to read a thread with terrible grammar, I hate it in my native language, I'll do my best.

Okay, so I'm having two major issues for my website to operate like I'd like it to, I've done everything I knew about, and I can't think about anything else Google didn't help me much either this time.

First one is that I seem to have a cookies/sessions problem. Well, I use Liberty Reserve to allow my members to top up their account. So I send my form to their SCI and when I either cancel or complete a transaction, I return to my website but I'm not logged in anymore! So the auto-add to balance system can't work. Alright, when I saw this I was only using sessions, so I added cookies so I could rely on them too. And there again, same thing. Doubled, tripled checked all the LR settings and everything, I know they are right. But what's really, really, weird to me and what's really doing my head in is that I'm not actually logged out, because if I use another tab/window I'm still logged in. In other words, it's only the window coming back from Liberty Reserve that won't log in. The cookies are still here and so is the session so...
Another terrible thing is that it used to work when I was on my previous host (just moved to a dedicated server, which may be causing the problems, it's the first time I administrate a dedi).
This is blocking my entire website from working.

And my second problem is with the function mail() -there again 'caused' by new server-. I don't get any error message, or anything. The e-mails with cPanel/WHM work great. Though, I have done several tests and it never reaches my Gmail, Hotmail or Yahoo account. It did work with a Yopmail inbox though. So, I was focusing on 'why isn't it sending it' but since I just noticed it worked with Yopmail, I'm sure it is sending it and have no ideas why wouldn't it work with other e-mail service providers.

I hope you understood what I meant and that, hopefully, you guys can help me out with those totally handicapping issues.

Thank you,

Regards.

-Ben.

finally got some time to code   anyway i cant figure out why this doesnt work, i think its an error in my logic...

<?php
$db = new PDO('mysql:host=localhost; dbname=test;', 'root', '');
$db2 = new PDO('mysql:host=localhost; dbname=test2;', 'root', '');
foreach($db->query('SELECT * FROM database1 LIMIT 1') as $row) {
$thing1 = $row['COL 1'];
$thing2 = $row['COL 2'];
$thing3 = $row['COL 4'];
$thing4 = $row['COL 6'];
$thing5 = $row['COL 7'];
$content = "\"big text with $things\"";
addslashes($content);
$db2->exec("INSERT INTO database2(col1,col2,col3) VALUES ('$thing1','text','$content')");
}
?>

my foreach command should read all lines from database one and write one by one on database two? thx in advance

Mmm i'm not sure if i'm approaching this correctly.

Anyways, I wanted to create a multi-level thread, Where the child thread would be after the parent thread.

Something like this:

Hello World
       - Hello World
               - Hi!
               - What's up?
       - Hi Bob!
Goodbye World
       - ....This guy got issues
       - Dude! You should watch Despicable Me! "It's so fuzzy i'm going to dieee!"


Anyways, so my table looks something along the line of this:

|    post id   |    parent_id    |            title            |      body    |   date      |
      1                |       NULL        |    Hello                  | Hi, i'm K    |   date
      2                |       NULL        |    Thread One       | Body One  |   date
      3                |          1           |    Hello World | Body One  |   date
      4                |          2           |    Thread post 4   | Body One  |   date
      5                |          1           |    Thread post 5   | Body One  |   date
      6                |          1           |    Thread post 6   | Body One  |   date
      7                |          3           |    Hi What's up    | Body One  |   date


And here's the PHP code, although it's not very neat I want to clean it up and make it neater.  I can only go two level deep so far.   Any suggestion or recommendations? 

Using while & for:


// Select * Threads
$q = "SELECT * FROM test_db ORDER BY post_id ASC";
$r = @mysql_query($q);



while ($pid_row = @mysql_fetch_object($r)) {

// Array
$pid_arr[] = $pid_row->post_id; // Assign Indexes to Post ID
$ppid_arr[] = $pid_row->parent_id; // Assign Indexes to ParentID
$md_arr = array($pid_arr, $ppid_arr);  // Create multi-dimensional array matrix

$parent_id = $pid_row->parent_id;




}

for ($i = 0; $i < count($pid_arr); $i++) {

for ($a = 0; $a < count($ppid_arr); $a++) {
$pid = $pid_arr[$i]; // pid = post id
$ppid = $ppid_arr[$i]; // ppid = parent id

//echo "<div>~~ PID $pid ~~ PPID $ppid ~~</div>";

if ($ppid === NULL) {
$ppid_is_null = " & parent_id is NULL";
} else {
$ppid_is_null = NULL;
}

// Select Top level Thread
$z = "SELECT * FROM test_db WHERE post_id = '$pid'";
$y = @mysql_query($z);

while ($t_row = @mysql_fetch_object($y)) 
{

$title = $t_row->title;  // title of child thread
$level = $t_row->level;  // level of child thread...is this useful?
}




// Display top level thread lvl 1
if ($ppid === NULL) {  // If the parent_id is NULL, display top level thread
echo '<div>PID: ' . $pid . ' || PPID: ' . $ppid . " || Title: " . $title . "</div><br>\n";

$post = $pid; // PostID = 1
$parent = $ppid; // Parent ID ex: [1]

// Get child id, where parent id = [1]
// trying to get the child thread here...but it's not working
$child_q = "SELECT * FROM test_db WHERE parent_id = '$post'";
$child_r = @mysql_query($child_q);

while($c_row = @mysql_fetch_object($child_r)) {
$c_arr[] = $c_row->post_id;
$c_ppid_arr[] = $c_row->parent_id;
}
for ($n = 0; $n < count($c_arr); $n++) {
if ($c_ppid_arr[$n] === $post) {
echo "<div>$c_arr[$n]</div>";



}

}
break;

//echo "<div>PID: $pid</div>";




} 




break;
}

}



Using While:

<?php 
require_once('db_connection');
echo '<hr><hr><br>';

// I just realized that selecting * where parent id is null might limit the amount of rows retrieved.

// Query to select threads
$n = NULL;
$q = "SELECT * FROM test_db WHERE (test_db.parent_id is NULL) Order By date ASC";
$r = @mysql_query($q);

while ($threads = @mysql_fetch_object($r)){
$pid = $threads->post_id;
$sid = $threads->subject_id;
$parent_id = $threads->parent_id;
$title = $threads->title;
$body = $threads->body;



echo '<div>PostID: ' . $pid . ' || Parent: ' . $parent_id . ' || SubjectID: ' . $sid . ' || Title: ' . $title . ' || Body: ' . $body . '</div>';

$q2 = "SELECT * FROM test_db WHERE parent_id = '$pid' Order by date DESC";
$r2 = @mysql_query($q2);

while ($level2 = @mysql_fetch_object($r2)) {
$level2_pid = $level2->post_id;
$level = 1.5 *($level2->level); // lvl 2: 3em


echo '<div style="text-indent:' . $level . 'em">' . 'PostID: ' . $level2->post_id . ' || ParentID: ' . $level2->parent_id . '</div>';


$q3 = "SELECT * FROM test_db WHERE parent_id = '$level2_pid'";
$r3 = @mysql_query($r3);
while ($level3 = @mysql_fetch_object($r3)) {

$level3 = 1.5 + $level;

echo '<div style="text-indent:' . $level3 . 'em">' . 'PostID: ' . $level3->post_id . ' || ParentID: ' . $level3->parent_id . '</div>';

}






}


}


?>


I'm not a comp. sci major or anything, so I'm learning this as I go.  Any help would be greatly appreciated.   It seems like the while & for is more practical, but i'm not quiet sure.  What am I doing wrong?

- K

I just joined this forum today ^_^  Hope to be good friends with you guys and gals

I am creating a new forum software known as Iforum, it will  use php and a database. I just started this yesterday and I all ready have the registration/login system up and working as well as connected to the database.  I have selected the CKeditor for my forum (I was initially thinking of using the TinyMCE editor) I can't seem to figure out how when you click the "Post New Thread Button" How to send the information to the database and then carry the user back to the thread. (I am good with php, html, and CSS but I am not great with databases
Any suggestions?

Okay, I've read all the rules for Headers...still can't it to execute properly.  At the bottom is my code.  I basically want to check the database, see if the user is already registered, and redirect as appropriate (there is no HTML on my page, no info sent to the browser).  My server doesn't send any error messages.  All I get are white screens. 

Now, if I do the headers_sent()...it tells me that it's sent right after the initial connection with the database. 

The ONLY way I can get it to redirect, is if I put
<?php
header("location:index.php?msg=3");
?>
 at hte very top, but then I can't evalute...which doesn't help me much.

Here is the code (obviously, I have more...but it's sending headers in these lines)


<?php
$connection = mysql_connect("localhost","####","#####");

if (!$connection){
echo mysql_errno().": ".mysql_error()."<br/>";
exit;
}

if(!mysql_select_db("prixaurora")){
echo("Database not found<br>");
}

I am trying to do a page redirect using the header() function. I am aware that header() must be called before any actual output is sent, either by normal HTML tags, blank lines in a file, or from PHP. and also that reading code with include, or require, functions, or another file access function, can create spaces or empty lines that are output before header() is called. thus causing a redirect failure. I have therefore used this output control function (ob_start(); ob_implicit_flush()  right at the top of my page. I am then creating the redirect like this as part of my login() function:

if($user_role == ADMIN_LEVEL || $user_role == EDITOR_LEVEL)
{
		if (!headers_sent($filename, $linenum)) 
		{
				return header("Location:http://mysite.com/dashboard.php");
				exit;
		}
		else
		{
				echo "Headers already sent in $filename on line $linenum\n" .
				  "Cannot redirect\n";
				exit;
		}
}

Unfortunately I am still getting this error:

Headers already sent in /home/steveoje/public_html/login.php on line 1 Cannot redirect

And this is what I have at the top of the login.php page:

<?php ob_start(); 
ob_implicit_flush(); 
require_once 'includes/config.php';
if(isset($_POST['submit']))
{
	login($_POST['username'], $_POST['password']);	
}
require_once "includes/header.inc.php" ?>
//other html content

So why would the redirect fail in this instance?   Thanks.
Edited by terungwa, 28 September 2014 - 05:28 AM.

My error:

Code: [Select]
Warning: Cannot modify header information - headers already sent by (output started at /www/zxq.net/w/e/b/webaskius/htdocs/index.php:7) in /www/zxq.net/w/e/b/webaskius/htdocs/functions.php on line 6

Now, I can't quite figure out why it's doing this. The section of code that is causing this problem is above any HTML tags, at the very beginning of the file.


<?php 
include('functions.php'); 
?>
<link href="style.css" rel="stylesheet" type="TEXT/CSS">
<img src="logo.png" border="0">
<div id="maincontent">


As you can see, the functions that cause this error are at the VERY beginning of my file. This is where they are called within index.php:


if(mysql_num_rows($query_verify_login) > 0)
{
        create_cookie(10000, 'user', $username);
redirect('index.php');
}
else
{
       echo 'Woops! You\'ve entered in the wrong username and password combination!';
}


And finally, my functions:


<?php

//our cookie creator function
function create_cookie($time, $name, $data)
{
setcookie($name, $data, time()+$time);
}

function redirect($url)
{
header('Location: '. $url .'');
}

function get_replies($id)
{
//set query to find posts that match our id
$query_get_replies = mysql_query("SELECT * FROM replies WHERE to = {$id}");

return mysql_num_rows($query_get_replies);
}

?>

I have a form as a php include and it's giving me this error:

Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /home/altimusw/public_html/www.csmsolution.com/register.php:6) in /home/altimusw/public_html/www.csmsolution.com/core.php on line 17

Here is the main page that includes the php include:

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<title>CSM Solution </title>
<style type="text/css">
<!--
#Layer1 {
position:absolute;
left:100px;
top:70px;
width:800;
height:62px;
z-index:1;
}
.style1 {
font-family: Arial, Helvetica, sans-serif;
color: #535959;
font-size: 12px;
}
-->
</style>
</head>
<body>
<div id="Layer1">
  <table width="800" border="0" cellspacing="0" cellpadding="0">
    <tr>
      <td height="97"><img src="images/header.jpg" width="800" height="59" border="0" usemap="#Map" /><br />
      <img src="images/navbar.jpg" width="800" height="38" border="0" usemap="#Map2" />
      <map name="Map2" id="Map2">
        <area shape="rect" coords="506,1,552,26" href="contact.php" /><area shape="rect" coords="459,1,502,26" href="form.php" /><area shape="rect" coords="396,-1,455,25" href="login.php" />
        <area shape="rect" coords="357,0,393,26" href="index.php" />
      </map>
      </td>
    </tr>
    <tr>
      <td><img src="images/welcome_img.jpg" width="131" height="21" /></td>
    </tr>
    <tr>
      <td><?php include("form.php"); ?></td>
    </tr>
    <tr>
      <td><img src="images/placeholderclouds_bottem.jpg" width="800" height="60" /></td>
    </tr>
  </table>
</div>
</body>
</html>

Here is the Core.php the error is referring to:

<?php
//CSM Solution Core. Rahul Parkar 2010
$_config = array();
$_config['db_type'] = "mysql";
$_config['db_server'] = "localhost";
$_config['db_username'] = "altimusw_csm";
$_config['db_password'] = ']17=rXh7tJ0~';
$_config['db_database'] = "altimusw_csm";
$_config['db_tbl_prefix'] = '';
$_config['user_table'] = "customers";
$_config['user_username'] = "username";
$_config['user_password'] = "password";
$_config['user_active'] = "approved";
$_config['user_role1'] = "prirole";
$_config['user_role2'] = "secrole";
$_config['pass_hash_func'] = "SHA1";
session_start();

function fetch_row($query)
{
        build_connection($db);
        sql_exec($db, $query, $result);
        sql_fetchone($result, $row);
        finish_connection($db);
        return $row;
}
 
function build_connection(&$db)
{
global $_config;
if ($_config['db_type'] == "mysql")
{
$db = mysql_connect($_config['db_server'], $_config['db_username'], $_config['db_password']) or die(mysql_error());
mysql_select_db($_config['db_database'], $db) or die(mysql_error());
}
}
 
function sql_exec(&$db, $query, &$result)
{
        global $_config;
        if ($_config['db_type'] == "mysql")
              $result = mysql_query($query, $db) or die(mysql_error() . "/$query");
}
 
function sql_fetchone(&$result, &$row)
{
global $_config;
      if ($_config['db_type'] == "mysql")
      {
              $row = mysql_fetch_assoc($result);
              @mysql_free_result($result);
      }
}

function sql_do(&$db, $query)
{
global $_config;
sql_exec($db, $query, $noclue);
finish_connection($db);
}

function finish_result(&$result)
{
global $_config;
if ($_config['db_type'] == "mysql")
@mysql_free_result($result);
}

function finish_connection(&$db)
{
global $_config;
if ($_config['db_type'] == 'mysql')
mysql_close($db);
}
 
function check_auth($username, $password)
{
global $_config;
      $row = fetch_row("SELECT `" . $_config['user_active'] . "`, `" . $_config['user_password'] . "`, " . $_config['pass_hash_func'] . "('" . $password . "') AS `passcheck`, `fname`, `lname` FROM `" . $_config['user_table'] . "` WHERE `" . $_config['user_username'] . "`='" . $username . "' LIMIT 1");
      if (!$row[$_config['user_active']]) { return -1; }
      else
      {
              if ($row[$_config['user_active']] != 1) { return -2; }
              else if ($row[$_config['user_password']] == $row['passcheck'])
              {
                      $_SESSION['username'] = $username;
                      $_SESSION['fname'] = $row['fname'];
  $_SESSION['lname'] = $row['lname'];
                      return 1;
              }
              else
              {
                      return -1;
              }
      }
}
 
function load_access()
{
global $_config;
        if ($_SESSION['username'])
        {
                $row = fetch_row("SELECT `" . $_config['user_role1'] . "` FROM `" . $_config['user_table'] . "` WHERE `" . $_config['user_username'] . "`='" . $_SESSION['username'] . "' LIMIT 1");
                $role1 = $row[$_config['user_role1']];
                $_SESSION['role1'] = $role1;
        }
        else
        {
                return -1;
        }
}

function has_level()
{
for ($i = 0; $i < func_num_args(); $i++)
{
if (func_get_arg($i) == $_SESSION['role1']) { return 1; }
}
return 0;
}
?>

Hi
I am getting the following php error that is on all my pages and it works fine on the other pages except index.php
Code: [Select]
<?php
session_start();
include 'includes/conn_db.php';
  if (isset($_POST['submit'])) {
    
    if (empty($_POST['userName'])) {
      $u = FALSE;
      $nouser = '<font color="red" size="2" face="arial">You forgot to enter your username!</font>';
    } else {
    $u = $_POST['userName'];
    }  
    if (empty($_POST['userPassword'])) {
      $p = FALSE;
      $nopass = '<font color="red" size="2" face="arial">You forgot to enter your password!</font>';
    } else {
    $p = $_POST['userPassword'];
    } 
    $errorMessage = $nouser . "<br>" . $nopass;
    if ($u && $p) {
    $query = "SELECT * from clients WHERE email = '$u' AND pword = '$p'";
$result = mysql_query($query, $conn);
while ($row = mysql_fetch_assoc($result)){
if ($u == $row["email"] && $p == $row["pword"]) {
  $query_name = "SELECT * FROM clients WHERE email = '$u' AND pword = '$p'";
    $result_name = @mysql_query ($query_name);
    while ($row_name = mysql_fetch_assoc($result_name)){
$client_id_out = $row_name['client_id'];
    $firstname_out = $row_name['firstname'];
    $lastname_out = $row_name['lastname'];
    
    


// Create sessions
$_SESSION['client_id'] = $client_id_out;
    $_SESSION['firstname'] = $firstname_out;
    $_SESSION['lastname'] = $lastname_out;
   
    
    ob_end_clean();
    header ("Location: myaccount.php");
    exit();
    }} } } }
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=EmulateIE8" />
    <title></title>
    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
    <meta http-equiv="Content-Style-Type" content="text/css" />
    <link href="style.css" rel="stylesheet" type="text/css" />
    <link href="layout.css" rel="stylesheet" type="text/css" />

    <script src="js/jquery-1.3.2.min.js" type="text/javascript"></script>

    <script src="js/cufon-yui.js" type="text/javascript"></script>

    <script src="js/cufon-replace.js" type="text/javascript"></script>

    <script src="js/Futura_Bk_BT_400.font.js" type="text/javascript"></script>

    <script src="js/Futura_XBlk_BT_400.font.js" type="text/javascript"></script>

    <!--[if lt IE 7]>
   <script type="text/javascript" src="js/ie_png.js"></script>
   <script type="text/javascript">
       ie_png.fix('.png');
   </script>
<![endif]-->
</head>

Thanks

Lional

Hi all,

It's probably something obvious, but perhaps someone could explain to me what is going on here...

I spent a lot of time this afternoon trying to fix what seemed to be a very odd problem, which involved an image being chucked out like so:

Code: [Select]
<?php
header("Content-Type: image/png");
echo file_get_contents("http://www.example.com/some_image.png");
?>
Except the image was coming out as corrupted, ultimately because I had some white space before this snippet (foolish, I know). The reason it took me so long to diagnose the problem was because I wasn't getting PHP errors (even though they were switched on). As far as the script was concerned, it seems I wasn't sending anything before attempting to modify the headers.

After solving the problem, I put the following little bit of code together, trying to force a header error... And yet I get nothing. It all works, and I get redirected, when I'm sure I shouldn't be. I've run this on a default install of XAMPP, and a configured CentOS server, and the same thing happens on both.

If anyone can explain to me what is going on, I would be most appreciative! There are some inline comments which should help clarify what I mean.

Code: [Select]
<?php

error_reporting(E_ALL);
ini_set("display_errors","1");

?>

<p>Hello! The very existence of this text should really have resulted in the headers being sent... Shouldn't it?</p>
<p>So I'd expect to see a "Headers already sent" message... Shouldn't I?</p>

<?php

// Headers sent?
echo "<p>";
echo "Headers ";

if(!headers_sent()) {
echo "not "; // This "not" does echo out.
}
echo "sent.</p>";

// This WILL start a session (or at least, won't throw an error)
session_start();

// This redirect WILL work, and you will never see the above messages.
header("Location: redirect.php");

// What?!

?>
Thanks!

Dave