PHP - Getting An Error When Submitting A Form With The Mail() Function

I am using magento for sending mail with condition,

My code:

<?php
class Gta_MerchantNotification_Model_Observer {
    public function merchantremainder($Observer) {
       $order = $Observer->getEvent()->getOrder();
       $order_details = $order->getAllVisibleItems();

       $itemData = array();
       foreach ($order_details as $list) {
          $incrementid = $order->getIncrementId();
          $sku = $list->getsku();
          $name = $list->getName();
          $price = $list->getPrice();
          $Qty = $list->getQtyOrdered();
          $extra = $order->getIncrementId();
          $message = 

          "
          <tr>
          <!-- <td>$incrementid</td> -->
          <td>$sku</td>
          <td>$name</td>
          <td>$price</td>
          <td>$Qty</td>
          </tr>";

          $itemData[$list->getId()] = $message;

      }
  
      $finalMessage =  "
      <p>Order Id : $incrementid</p>
      <table border='1'>

      <tr>
      <!-- <th>Id</th> -->
      <th>Sku</th>
      <th>Product name</th>
      <th>Price</th>
      <th>Qty Ordered</th>
      </tr>";
      if (!empty($itemData)) {
          foreach ($itemData as $data) {
             $finalMessage .= $data;
         }

         $finalMessage .= "</table>";
         $this->sendMail($finalMessage);
     }

 }

 public function sendMail($message) {
   $body ="$message";
   $emailTemplate = Mage::getModel('core/email');
   $emailTemplate->setFromName('abc');
   $emailTemplate->setBody($body);
   $emailTemplate->setSubject("Custom Email from observer");
   $emailTemplate->setType('html');
   $emailTemplate->setToEmail('abc@gmail.com');
   $emailTemplate->send();

}
}

?>

 

Output :

 

If order placed mail send to abc@gmail.com.
How to set email sender based on SKU $sku from order.

I want :

1) If SKU starts with 2, email should go to the mail id abc@gmail.com,
screenshot :

 

2) If SKU starts with 3, email should go to the mail id xyz@gmail.com,
screenshot :

 

3) If SKU starts with 4, email should go to the mail id qwe@gmail.com,
screenshot :

 

FYI - If an order contains 10 items email should go separately based on SKU. But an order id the same must include all the emails.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Hi all,

I'm coding an automated mailer for a dentist office. They set appointment dates through a web interface, and then this appointment is mailed to the customer via PHP's mail() function.

However, some users are not receving the mail. They claim that it is not even in the junk mail folder. Is it because I'm setting or not setting certain properties in the header? Should I be setting something else?

Here is my code
Code: [Select]
ini_set("SMTP", "mail.isp-provider.net");
$headers = 'From: Schedule Manager <schedule@address.com>' . "\r\n" .
'Reply-To: Schedule Manager <schedule@address.com>' . "\r\n" .
'Bcc: internal@address.com' . "\r\n" .
'Content-type: text/html; charset=iso-8859-1' . "\r\n" .
'X-Mailer: PHP/' . phpversion();

mail($customerAddress, $subject, $body, $headers);
Note that customerAddress, subject, and body are all just regular normal strings.

As I said, it works for most customers, but some customers do not receive the emails.

Hello there,

I've come across a issue with using PHP's mail function due to the fact I've tried a assortment of different headers yet Hotmail continues to place my sent emails in the junk folder.

Here is my method of emailing my clients:


function Email($AccountID, $Subject, $Message)
{
if($this->IsValidAccount($AccountID))
{
$Account = $this->AccountKeys($AccountID);

$headers .= 'To: '.$Account['account_client'].' <'.$Account['account_email'].'>' . "\r\n";

$headers .= "From: X-Host <no-reply@X-Host.co.uk>\r\n"; 
$headers .= "Reply-To: X-Host <no-reply@X-Host.co.uk>\r\n"; 
$headers .= "Return-Path: no-reply@X-Host.co.uk\r\n"; 
$headers .= "MIME-Version: 1.0\r\n"; 
$headers .= "Content-Type: text/html; charset=ISO-8859-1\r\n"; 
$headers .= "Organization: X-Host\r\n";
echo $Account['account_email']. $Subject. $Message;

return mail($Account['account_email'], $Subject, $Message, $headers);
}
else return InvalidAccount;
}


So could anybody help me out please and tell me what headers I should be using.

why is $item not submitting to google docs like it is supposed to?  does it have something to do with how it is in a loop? Code: [Select]
<?php
session_start(); 
require_once "connect.php";
 

if(isset($_SESSION['logged'])){
// Query member data from the database and ready it for display

$cid = $_SESSION['complete'];  
 $academy = $_SESSION['academy']; 
 if($academy=="Old_Cheney"){$city= "Lincoln";}else if($academy=="Yankee_Hill"){$city= "Lincoln";}else if($academy=="Holdrege"){$city= "Lincoln";}else if($academy=="Maple"){$city= "Omaha";}
 else if($academy=="Center"){$city= "Omaha";}
 else if($academy=="PNS"){$city= "Pensacola";}
$sql = mysql_query("SELECT * FROM login where academy ='$academy'");
while($row = mysql_fetch_array($sql)){
$date =$row["date"];
if ($date !=="".date('m-d-Y')){echo '<meta http-equiv="REFRESH" content="0;url=login.php">';
   exit(); }
   

}
}else{
echo '<meta http-equiv="REFRESH" content="0;url=login.php">';
   exit(); 
}


echo $cid;

echo $academy;
echo $city;

?>

<?php 
   // load Zend Gdata libraries
    require_once 'Zend/Loader.php';
    Zend_Loader::loadClass('Zend_Gdata_Spreadsheets');
    Zend_Loader::loadClass('Zend_Gdata_ClientLogin');

    // set credentials for ClientLogin authentication
    $user = "blahb";
    $pass = "password";

    try {
      // connect to API
      $service = Zend_Gdata_Spreadsheets::AUTH_SERVICE_NAME;
      $client = Zend_Gdata_ClientLogin::getHttpClient($user, $pass, $service);
      $service = new Zend_Gdata_Spreadsheets($client);
 

      // set target spreadsheet and worksheet
      $ssKey = '0AoUMgja4GxpJdFZwbn4444444XRU5pUlE';
      $wsKey = 'od6';
 
$sql4 = mysql_query("SELECT * FROM labels where item_id='".$pid."'");
$counter = 0;
while($row = mysql_fetch_array($sql4)){
$label =$row["label"];
$lid=$row['id'];

$counter = $counter + 1;
print $counter . "<BR>";


$item = $_POST['item'];
}

$date1234= date('m-d-y');
if($item ==''){$item=$dri;}
      // create row content
      $row = array(
        "date" => $date1234, 
        "name" => $name, 
        "item" => $item,
        "quantity" => $qty,
        "academy" => $academy,
        "paid" => 'yes'
      );

      // insert new row
      $entryResult = $service->insertRow($row, $ssKey, $wsKey);
      
    } catch (Exception $e) {
      die('ERROR: ' . $e->getMessage());
    }
    
    ?>

system: vista ultimate sp2
IIS 7 server installed and running
PHP 5
fastCGI

im not sure if this is within the purview of the forum but you all seem like smart people with an expertise in this area.

i have a web site http://penumbraproductions.dyndns-remote.com/ .  it is hosted locally on my desktop using the above mentioned IIS7 server options using dyndns to list the url cause my ISP has DHCP without static ip's for non-business accounts

that has a contact form... form mail.  i've tried numerous php codes to get it to send mail to my email account but none of them are working

my IIS smtp setting a
email to: archaismic@gmail.com
smtp server: smtp.gmail.com
port number: 465
using login credentials

i've also tried to configuring the smtp options in IIS to dump the mail to a folder on my computer which also did not work

attached is the feedback.php file im currently working with minus the captcha private key

and the code for the form i'm using is:

Code: [Select]
<form action="feedback.php" method="post">
<table border="0" cellpadding="8" cellspacing="8">
<tr><td><label for="tswname">Name</label>:</td><td><input type="text" name="fullname" id="tswname" size="25" /></td></tr>
<tr><td><label for="tswemail">Email address</label>:</td><td><input type="text" id="tswemail" name="email" size="25" /></td></tr>
<tr>
<td colspan="2">
<label for="tswcomments">Comments</label><br />
<textarea rows="15" cols="45" name="comments" id="tswcomments"></textarea>
</td>
</tr>
<tr>
<td align="center" colspan="2">
<script type="text/javascript" src="http://api.recaptcha.net/challenge?k=6LcYjcASAAAAAH1NwZ0IH_TUO4XDANZqWu3Ei9yh"></script>
<noscript>
<iframe src="http://api.recaptcha.net/noscript?k=6LcYjcASAAAAAH1NwZ0IH_TUO4XDANZqWu3Ei9yh" height="300" width="500" frameborder="0" title="CAPTCHA test"></iframe>
<br />
<label for="tswcaptcha">Copy and paste the code provided in above box he </label><br />
<textarea name="recaptcha_challenge_field" id="tswcaptcha" rows="3" cols="40"></textarea>
<input type="hidden" name="recaptcha_response_field" value="manual_challenge" />
</noscript>
</td>
</tr>
<tr>
<td align="center" colspan="2">
<input type="submit" value="Send Feedback" />
</td>
</tr>
</table>
</form>

I have a firm that post to my database. When I tested it always posted my information correctly. I require the user to be logged in before they can access the page with the form. I do I ensure that each php variable has a value in it before the data is posted? Any help would be appreciated. I can post my code if needed.

i have a php script and i want it to submit to itself having the php script on the same page, the problem is when i do it it tries to upload the file without waiting for the form resaulting in format you tried to upload was not allowed" (its an image uploader)

heres my code Code: [Select]
<?php
   // Configuration - Your Options
      $allowed_filetypes = array('.jpg','.gif','.bmp','.png'); // These will be the types of file that will pass the validation.
      $max_filesize = 1524288; // Maximum filesize in BYTES (currently 1.5MB).
      $upload_path = './files/'; // The place the files will be uploaded to (currently a 'files' directory).
 
   $filename = $_FILES['userfile']['name']; // Get the name of the file (including file extension).
   $ext = substr($filename, strpos($filename,'.'), strlen($filename)-1); // Get the extension from the filename.
 
   // Check if the filetype is allowed, if not DIE and inform the user.
   if(!in_array($ext,$allowed_filetypes))
      die('<font size="4"><font color="red">The file you attempted to upload is not allowed.</font></font>');
 
   // Now check the filesize, if it is too large then DIE and inform the user.
   if(filesize($_FILES['userfile']['tmp_name']) > $max_filesize)
      die('The file you attempted to upload is too large.');
 
   // Check if we can upload to the specified path, if not DIE and inform the user.
   if(!is_writable($upload_path))
      die('You cannot upload to the specified directory, please CHMOD it to 777.');
 
   // Upload the file to your specified path.
   if(move_uploaded_file($_FILES['userfile']['tmp_name'],$upload_path . $filename))
         echo '<font size="4"><span style="color: white; text-shadow: lime 0px 0px 3px;"><h2>Upload Successful!</h2><br>  
<img src="' . $upload_path . $filename . '"><br>
<p id="codes"><label for="codedirect">Direct Link:</label><br />

            <input type="text" id="codebb" value="http://imageplanet.site90.net/' . $upload_path . $filename . '" onclick="javascript:this.focus();this.select();" readonly="true" /><br />
            <label for="codehtml">HTML code:</label><br />
            <input type="text" id="codehtml" value="&lt;img src=&quot;http://imageplanet.site90.net/' . $upload_path . $filename . '&quot;&gt;" onclick="javascript:this.focus();this.select();" readonly="true" /><br />
            <label for="codebb">IMG code:</label><br />
            <input type="text" id="codebb" value="[IMG]http://imageplanet.site90.net.info/' . $upload_path . $filename . '[/IMG]" onclick="javascript:this.focus();this.select();" readonly="true" /></p></div>




</span></font>'; // It worked.
      else
         echo '<font size="4"><font color="red">There was an error during the file upload.  Please try again.</font</font>'; // It failed :(.
 
?>

<form action="upload.php" method="post" enctype="multipart/form-data">
   <p>
      <label for="file"><font color="white">Select a image:</font></label>
<br><br> <input type="file" name="userfile" id="file"> <br />
      <button>Click Here To Upload</button>
   <p>
<br>
<br>
<font color="#006FFF"><span style="font-family: Criovision; font-weight: normal; font-style: normal; text-decoration: none; font-size: 15pt;">Max File Upload Size: 1.5MB<br></span></font>

</div>
</span>


i just want it so it doesn't display that error

I have this HTML form that isn't doing anything when the submit button pressed, I am using PHP to validate it. I know I am missing something, can you help me? :/ Thanks in advance!
Code: [Select]
<?php require("styles/top.php");?>
<div id="head_reg">
 <div id="head_cen_reg">
  <div id="head_sup_reg" class="head_height_reg">
   <p class="search">
    <label>SEARCH</label>
    <input name="search" type="text" class="txt" />
    <input name="search-btn" type="submit" class="btn" value="SEARCH" />
   </p>
    <h1 class="logo"></h1>
   <?php require("scripts/links.php"); ?>
    </div>
    </div>
    </div>
<div id="content">
<br />
<div id="register_form">
<form action="register.php" method="post" enctype="multipart/form-data">
<center>
<table>
   <tr>
     <td>Desired Username&nbsp;</td>
     <td><input type="text" name="username" class="textbox" /></td>
   </tr>
   <tr>
     <td>E-Mail&nbsp;</td>
     <td><input type="text" name="email" class="textbox" /></td>
   </tr>
   <tr>
     <td>Password&nbsp;</td>
     <td><input type="text" name="pass" class="textbox" /></td>
   </tr>
   <tr>
     <td>Confirm Password&nbsp;</td>
     <td><input type="text" name="repass" class="textbox" /></td>
   </tr>
   <tr>
     <td><p class="register">
    <input name="reg-btn" type="submit" class="btn" value="REGISTER" />
   </p></td>
   </tr>
</table>
</center>
</form>
</div>
<center><a href="#" id="showreg">Why register? Click here</a></center>
 <div id="content_cen">
  <div id="content_sup">
   <div id="welcom_pan">
   <h3><span>Why</span> Register?</h3>
   <p>Class aptent taciti sociosqu ad litora torquent per conubia nostra, per inceptos himenaeos. Nulla vitae diam magna, eget fringilla tellus. Curabitur est velit, suscipit eu faucibus eget, aliquam ac enim. per inceptos himenaeos. Nulla vitae diam magna, eget fringilla tellus.</p>
   </div>
  </div>
 </div>
</div>
<div id="foot">
 <div id="foot_cen">
 <ul>
   
   </ul>
    <p></p>
 </div>
</div>
<?php
if(isset($_POST['reg_btn'])){
$username = $_POST['username'];
$email = $_POST['email'];
$password = $_POST['pass'];
$repassword = $_POST['repass'];
if ($username && $password && $repassword && $email){

  if ($password == $repassword){

if (strstr($email, "@") && strstr($email, ".") && (strlen($email) >= 6)){


$query = mysql_query("SELECT * FROM users WHERE username='$username'");
$numrows = mysql_num_rows($query);
if ($numrows == 0){

$query = mysql_query("SELECT * FROM users WHERE email='$email'");
$numrows = mysql_num_rows($query);
if ($numrows == 0){



    

$pass = md5(md5($password));
$ip = $_SERVER['REMOTE_ADDR'];
$date = date("F,d,Y:g:i:s A");

mysql_query("INSERT INTO users VALUES ('', '$username', '$pass', '$email','Member', '$date', '', '$ip', '0')");


          
   }
    else
   echo"That email is already in use!";
   }
     else 
    echo"That username is already taken!";
                    }
                      else
                          echo"That email is too short!";
                        
                           }
                             else
                                 echo"Those passwords do not match!";
                                 }
 else
    echo"<script type='text/javascript'>alert('You did not fill out the entire form!')</script>";
                                    }
       
                                
                                         
                             
                                                
?>

This topic has been moved to JavaScript Help.

http://www.phpfreaks.com/forums/index.php?topic=316807.0

Hello, I have a problem with my login form, when i press the submit button, it returns a valitation error that I made.

The error message is triggered when the submit button isn't pressed, but the form still tries to submit.

session_start();

include "sources/php/class.php";

$e = $_POST['loginname'];
$p = $_POST['loginpass'];
$s = $_POST['submit'];

if(!isset($s)) {
    header('location: '.$_SESSION['psite'].'.php?p=error&ploca=login&pid=0');
    exit();
}

Heres a piece of my code, first i define the variables, then check if the button was pressed, but something is wrong there? - But what?

Hope you can help me.
Thanks in advance.

I am trying to learn how to program in PHP. For a long time i was using WAMP and my localhost. When i ran into trouble i searched the web, watched videos and eventually find a solution.   Trying to upload my scripts into a shared hosting web server i had some difficulties in basic things, like using $_SESSION superglobal variable.   What i want to do is to use a hidden field with a value inside a form, and after submitting the form, to compare the $_SESSION variable to the $_POST variable in order to check for CSRF.

<?php

	//call all custom functions
	require_once('Custom_Functions/functions.php');

	//session must be send before HTML headers

	secure_session_start();

?>
<!DOCTYPE html>
<html lang="en">
<body>
<?php 

	if(isset($_POST['submit']))
	{
		$postvalue = $_POST['input1'];
		$sessionvalue = $_SESSION['hashed_token'];

		echo '<br />==========================<br />';
		echo '<br />AFTER PRESSING SUBMIT<br />';

		echo '<br />==========================<br />';

		echo 'Value of  $_POST["hashed_token"] = '.$postvalue.'<br />';
		echo 'Value of $_SESSION["hashed_token"] = '.$sessionvalue.'<br />';
		

	}


$hashed_token = hash('sha256', uniqid(mt_rand(), TRUE));

$_SESSION['hashed_token'] = $hashed_token;


echo '<br />==========================<br />';
echo '<br />BEFORE PRESSING SUBMIT<br />';

echo '<br />==========================<br />';


echo '<br />Value of $_SESSION["hashed_token"] = '.$hashed_token.'<br />';


?>

<form action="" method="POST">
	<input type="hidden" name="input1" value="<?php echo $hashed_token; ?>" />
	<p><input type="submit" name="submit" /></p>
</form>


</body>


</html>

In this script i have 1 custom function:   a) secure_session_start()

function secure_session_start(){

	//Set a custom session name
	$session_name = 'TESTSESSID';

	ini_set('session.use_only_cookies', 1);

	ini_set('session.entropy_file', '/dev/urandom');

	
	if (in_array('sha512', hash_algos())) {
	  
	    ini_set('session.hash_function', 'sha256');
	 }

	ini_set('session.use_trans_sid', 0);

	ini_set('session.hash_bits_per_character', 5);

	ini_set('session.cookie_secure', 1);

	$secure = TRUE;

	$httponly = TRUE;


	$cookieParams = session_get_cookie_params();
	
	session_set_cookie_params($cookieParams['lifetime'], $cookieParams['path'], $cookieParams['domain'], $secure, $httponly);

	session_name($session_name);

	
	ini_set("session.save_path", "/home/SESSIONS");

	session_start();

}

The procedure goes as follows:   FIRST COMMUNICATION WITH THE SERVER: The superglobal variable $_SESSION['hashed_token'] is assigned the random hash value, which is then passed to the hidden input field. I then echo it.   RESULT:   ==========================

BEFORE PRESSING SUBMIT

==========================

Value of $_SESSION["hashed_token"] = 93438a1b9b72085ce9430291acebdc4cfdee9d001b91a26207aebc22e04689fc   SECOND COMMUNICATION WITH THE SERVER: The user press the submit button, the script then checks if the submit button is pressed, and gets in the if statement(because is TRUE). Then i collect the $_POST and $_SESSION values and echo them. New random hash is assigned to the $_SESSION superglobal variable.   RESULT:   ==========================

AFTER PRESSING SUBMIT

==========================
Value of $_POST["hashed_token"] = 93438a1b9b72085ce9430291acebdc4cfdee9d001b91a26207aebc22e04689fc
Value of $_SESSION["hashed_token"] = 8f176aeb3a09a1b30e0ea862c78625d7c11743da933d366cface3fa238388e57

==========================

BEFORE PRESSING SUBMIT

==========================

Value of $_SESSION["hashed_token"] = c3442382b146f03394ad86911018247c57fa19d4a653d0bf6bb9bc7506e88ca0   For me this is very weird. The random hash is assigned to the $_SESSION variable, but when i try to call it after the submit is pressed its giving me a complete different value. If i remove the function secure_session_start() and just use session_start() it works:   RESULT (using session_start() ) ==========================

AFTER PRESSING SUBMIT

==========================
Value of $_POST["hashed_token"] = a5eaaaa38c428af623a599e664ea9c64a2ff0674e18e9250c54e52bbc586b614
Value of $_SESSION["hashed_token"] = a5eaaaa38c428af623a599e664ea9c64a2ff0674e18e9250c54e52bbc586b614

==========================

BEFORE PRESSING SUBMIT

==========================

Value of $_SESSION["hashed_token"] = e2d4acc239a747217860d71a80553abd41142dbeb8f6fafab511caff8a081fc4   Any ideas why this is happening? The problem is inside the secure_session_start() function but i cant find out why.   Also, when i use the secure_session_start() function and more specifically the ini_set("session.save_path", "/home/SESSIONS"); i am forcing the session to be stored inside the /home/SESSIONS folder. But when i only use the session_start() the session i still gets stored inside that path. I checked my .htaccess and there is nothing storing the sessions in that folder. Why is that?   One last thing: When using FIREBUG-->Cookies is see 2 names: the custom one (TESTSESSID) and PHPSESSID(which is the default). Shouldnt i only see the custom session name only?   Thanks in advance.

Hi - I have a form which is populated with values from a DB. This is done by looping through the DB values using a foreach. It works fine. I populate my form with those values. However, I want to be able to amend those values, and then submit the new values back to the DB with 1 single submit button. I don't want a separate submit button for each row of my form.

The problem is that because the form is built with a foreach, as the it loops through the variables on each pass of the DB, only the final row of DB are present in the form variables.

Question: My 'foreach' approach must be faulty. What is the mechanism or approach I need to use to update the values from the whole form  ??

MANY THANKS for all your help !!

I have  PHP forms that are not submitting to my database. I think it is something minor but I just can't see it! Can anyone help?

At the beginning of index.php, the page holding the forms,  I have this:

Code: [Select]
[b]<?php include("functions/globals.php"); ?>
<?php include("functions/userfunctions.php"); ?>[/b]

[b]Here are these pages:[/b]

[b]globals.php[/b]

<?php ob_start();//Required for the redirect to work?>
<?php include("loginstatus.php");?>
<?php session_start(); ?>

[b]((Here's loginstatus.php for good measu [/b]

<?php
  class cUser
  {
     public $username = "";//The User Name
     public $userid = "";//The User ID
     public $type = "";//The Type Of User 
  }
?> [b]))[/b]

[b]And here is userfunctions.php[/b]

<?php 
include_once("databasefunctions.php"); (this holds the connection)

$userdbtable = "users";

function GetHeaders()
{
        $headers  = 'MIME-Version: 1.0' . "\r\n";
        $headers .= 'Content-type: text/html; charset=iso-8859-1' . "\r\n";
        // Additional headers
        $headers .= "To: {$username} <{$email}>" . "\r\n";
        $headers .= 'From: My Website <[email]noreply@myswebsite.com[/email]>' . "\r\n";
        return $headers;
}
function CreateAccount($firstname, $lastname, $username, $password, $email, $type)
{
    global $userdbtable;
    openDatabase();
   $firstname = mysql_real_escape_string($firstname);
    $lastname = mysql_real_escape_string($lastname);
    $username = mysql_real_escape_string($username);
    $password = mysql_real_escape_string($password);
    $email = mysql_real_escape_string($email);
    $type = mysql_real_escape_string($type);
    
    $nonencrypted = $password;
    $password = sha1($password);
    $result = QuickQuery("INSERT INTO {$userdbtable}(firstname, lastname, username, password, email, type) 
                          VALUES('{$firstname}','{$lastname}','{$username}','{$password}','{$email}',{$type}')");
    if($result)
    {
        $headers = GetHeaders();
        $message = "\"Welcome to my website!\"<br />
        <br />
        Your username is: {$username}<br />
        Your password is: {$nonencrypted}<br />
        <br />
        Signed,<br />
        <br />
       Me
        ";
        mail($email, "Account Creation", $message, $headers);
        mail("[email]myemailaddress@me.com[/email]", "Account Created", "{$username} has created a new account", $headers);
    }
}

function ValidateUser($username, $password)
{
    global $userdbtable;
    openDatabase();
    $username = mysql_real_escape_string($username);
    $password = mysql_real_escape_string($password);
    $result = QuickQuery("SELECT * FROM {$userdbtable} WHERE username = '{$username}'");
    
    closeDatabase();

    if(!mysql_result($result,0,"username"))//Make sure the user exists
        return "User Does Not Exist";
    
    $temppwd=mysql_result($result,0,"password");//Make sure the passwords match
    if(sha1($password) != $temppwd)
        return "Password Does Not Match";
    
    return 1;
}

function GetUserID($username)
{
    global $userdbtable;
    openDatabase();
    $username = mysql_real_escape_string($username);
    $result = QuickQuery("SELECT id FROM {$userdbtable} WHERE username = '{$username}'");
    closeDatabase();
   
   if($result)
    return(mysql_result($result,0,"id"));//Get the user id
else
    return 0;

    return(mysql_result($result,0,"id"));//Get the UserID
}

function GetUserType($username)
{
    global $userdbtable;
    openDatabase();
    $username = mysql_real_escape_string($username);
    $result = QuickQuery("SELECT type FROM {$userdbtable} where username = '{$username}'");
    closeDatabase();
    
    return(mysql_result($result,0,"type"));//Get the user type
}

function GetUserEmail($username)
{
    global $userdbtable;
    openDatabase();
    $username = mysql_real_escape_string($username);
    $result = QuickQuery("SELECT email FROM {$userdbtable} WHERE username = '{$username}'");
    closeDatabase();
    
    return(mysql_result($result,0,"email"));//Get the user email
}

function ConfirmPassword($id, $password)
{
    global $userdbtable;
    openDatabase();
    $password = mysql_real_escape_string($password);
    $password = sha1($password);
    $result = QuickQuery("SELECT * FROM {$userdbtable} WHERE id = '{$id}' AND password = '{$password}'");
    closeDatabase();

    if(!$result)
        return 0;
    else
        return 1;
}

function ChangePassword($id, $password)
{
    global $userdbtable;
    openDatabase();
    $password = mysql_real_escape_string($password);
    $password = sha1($password);
   return QuickQuery("UPDATE {$userdbtable} SET password='{$password}' WHERE id={$id}");
}

function ResetPassword($email)
{
    global $userdbtable;
    openDatabase();
    $email = mysql_real_escape_string($email);
    $result = QuickQuery("SELECT * FROM {$userdbtable} WHERE email = '{$email}'");
    
    $num = mysql_numrows($result);
    if(!$num)
        return 0;
    $user = mysql_result($result, 0, "username");
    $email = mysql_result($result, 0, "email");
    $randompwd = RandomPwd();
    $temp = sha1($randompwd);
    $headers = GetHeaders();
    mail($email, "Blah blah blah.  Your newusername is: {$user}, and your new password is: {$randompwd}. ", $headers);
    if(QuickQuery("UPDATE {$userdbtable} SET password='{$temp}' WHERE email='{$email}'"))
        return 1;
}

function RandomPwd()
{
    $length = 10;
    $characters = '0123456789abcdefghijklmnopqrstuvwxyz';
    $string = "";    

    for ($p = 0; $p < $length; $p++) {
        $string .= $characters[mt_rand(0, strlen($characters))];
    }

    return $string;
}
?>


[b]Here is the info on index.php for login and registration[/b]

[b]Login:[/b]

    <?php
        if($_GET['logout'] == 'logout')
        {
        session_destroy();
        Redirect("index.php");
        }
        if($_POST['submitted'] == "login")
        {
//      echo ValidateUser("Jimmy", "password");
        //CreateAccount($name, $password, $email, $type);
        if(ValidateUser($_POST['username'], $_POST['password']) == 1)
        {
        $_SESSION['user'] = new cUser;
        $_SESSION['user']->username = $_POST['username'];
        $_SESSION['user']->usertype = GetUserType($_POST['username']);
        $_SESSION['user']->userid = GetUserID($_POST['username']);
        Redirect("index.php");
        }
//      CreateAccount("test", "test", "[email]me@website.com[/email]", "user");
        }
        ?>

[b]Registration[/b]

   <?php
        if($_POST['submitted'] == "register")
        {
      $firstname = $_POST['firstname'];
        $lastname = $_POST['lastname'];   
        $username = $_POST['username'];
        $email = $_POST['email'];
        $password = $_POST['password'];
        $confirmpwd = $_POST['confirmpwd'];
        if(!$firstname)
        $error = "Invalid First Name";
        else
        if(!$lastname)
        $error = "Invalid Last Name";
        else      
      if(!$username)
        $error = "Invalid User Name";
        else
        if(!$email)
        $error = "Invalid Email";
        else
        if(!$password)
        $error = "Invalid Password";
        }
        ?>

    <?php
        if($_POST['submitted'] && !$error)
        {
        $result = QuickQuery("SELECT username FROM users WHERE username='{$username}'");
        if(mysql_numrows($result) > 0)
        $error = "Be More Creative. Someone Already is Using That Username.";
        else
        {
        $result = QuickQuery("SELECT email FROM users WHERE email='{$email}'");
        if(mysql_numrows($result) > 0)
        $error = "Email Already Being Used.  Maybe you already registered.";
        else
        if($confirmpwd != $password)
        $error = "Matching passwords means the second password must be exactly like this first.";
        else
        {
        CreateAccount($firstname, $lastname, $username, $password, $email, "user");
        }
        }
        }
        ?>

[b]Both forms are here[/b]

<div class="btn-show">
<p>Login</p>
</div>

<div class="pushup-form">
<div class="btn-close">
Close
</div>
<div class="clear">
</div>
               
               
                     <form action="index.php" method="post">
                    <p style="font-size:14px">Login</p>
                    <p>Username:<input type="text" name="username" style="font-size:12px;"/></p>
                    <p>Password:<input type="password" name="password" style="font-size:12px;"/></p>
                    <p><input class="login" type="submit" name="submitted" value="login" /></p>
                    <p><a href="pwd.php?pwd=lostpwd" style="font-size:10px">Forgot Username or Password?</a></p>
                    </form>
                   
                    <div class="panel">
                    <form action="index.php" method="post">
                    <p>First Name:<input type="text" name="firstname" value="<?php echo $firstname;?>" /></p>
                    <p>Last Name:<input type="text" name="lastname" value="<?php echo $lastname;?>" /></p>
                    <p>Username:<input type="text" name="username" value="<?php echo $username;?>" /></p>
                    <p>Email:<input type="text" name="email" class="clear" value="<?php echo $email;?>" /></p>
                    <p>Password:<input type="password" name="password" value="<?php echo $password;?>" /></p>
                    <p>Confirm Password:<input type="password" name="confirmpwd" value="<?php echo $confirmpwd;?>" /></p>
                    <p class="clear">
                    <p><input class="register" type="submit" name="submitted" value="register"/></p>
                    </p>
                    </form>
                    </div>
                    <p style="text-align:center;" class="flip">Need to Register?</p>
                    </div>
[code]

These forms open from the right side of my website by clicking "Register." The top of the form has an option for login and by clicking "Need to Register?" The rest of the form expands.

Any ideas? My database is set up correctly.


MOD EDIT: code tags added.