PHP - This Is My Login Script, But The Message That Shows Up For Invalid Input No Work

I'm trying to make a simple website where people register to my website.

When the user doesn't fill anything inside the boxes they get a message "Please fill all required fields" on the register.php page

On my local host require_once works good. It shows up.

 

But when i upload the files to my sever the require_once does not show up on the register.php

It just refreshes and i dont get the message "Please fill all required fields"

 

This is the code that works in local host but not in a live server

<?php require_once 'messages.php'; ?>

 

 

Here is my full code

 

Register page:

<html>


<?php require_once 'messages.php'; ?>

<br><br>


<form action="register-clicked.php" method="POST">

Username:<br>
<input type="text" name="usernamebox" placeholder="Enter Username Here">
<br><br>
Email:<br>
<input type="text" name="emailbox" placeholder="Enter email here">
<br><br>
Password:<br>
<input type="password" name="passwordbox" placeholder="Enter password here">
<br><br>
Confirm Password:<br>
<input type="password" name="passwordconfirmbox" placeholder="Re-enter password here">
<br><br>

<input type="submit" name="submitbox" value="Press to submit">
<br><br>

</form>

</html>

 

 

Register clicked

<?php


session_start();



$data = $_POST;

if( empty($data['usernamebox']) ||
    empty($data['emailbox']) ||
    empty($data['passwordbox']) ||
    empty($data['passwordconfirmbox'])) {
    $_SESSION['messages'][] = 'Please fill all required fields';
    header('Location: register.php');
    exit;

}




if ($data['passwordbox'] !== $data['passwordconfirmbox']) {
    $_SESSION['messages'][] = 'Passwords do not match';
    header('Location: register.php');
    exit;
}


$dsn = 'mysql:dbname=mydatabase;host=localhost';
$dbUser='myuser';
$dbPassword= 'password';

try{
$connection = new PDO($dsn, $dbUser, $dbPassword);
} catch (PDOException $exception){
    $_SESSION['messages'][] = 'Connection failed: ' . $exception->getMessage();
    header('Location: register.php');
    exit;
}

 

 

messages.php

<?php
session_start();

if (empty($_SESSION['messages'])){
    return;
}

$messages = $_SESSION['messages'];
unset($_SESSION['messages']);
?>



<ul>
    <?php foreach ($messages as $message): ?>
        <li><?php echo $message; ?></li>
    <?php endforeach; ?>
</ul>

 

Edited Wednesday at 12:49 AM by bee65

Hi

I would like to add a 'welcome message' (Hello John Doe, etc.) after successful login. Can this be done best in php?

Cheers,

visitor

Sir, Im in the stage to make login and registration phase but im want to try to do same as chatango



Im want type the message and  hit the set up name button first




Then after hit the set name( a small box for login is coming out in the same page by the way what the function to call that box)



The last step is after input the username and password, the message that i already put is appear in chat screeen


My doubt is is this all process is doing in one php file or many php file and how to recall that

Hope Sir can help my doubtful thank you

Hi there,
New to the forum... thank you in advance for any help!

I created a login system using a tutorial found online. Everything works perfectly.. but now the client wants "Hello [First Name]" displayed after logging in. I've tried about 12 different tutorials at this point and can't seem to tweak them enough to work with my code.

A lot of the tutorials have session_start(); at the top of their protected (welcome.php) page. But mine seems to be held in a variable in another script and the top of my welcome.php looks like this:

Code: [Select]
<?PHP

require_once("./include/membersite_config.php");

if(!$fgmembersite->CheckLogin())
{
    $fgmembersite->RedirectToURL("login.php");
    exit;
}

?>
This is what I have on my welcome page as well but I don't know how to make this all come together and work..

Code: [Select]
Hello <?php echo $_SESSION['name']; ?>
I'm using mySQL 5.0, and php 5.2. Will anyone shed light on this for me? I'll provide any other info you may need..

Thank you

Hello all, my first post after joining this very informative site, unfortunatly I was unable to find the answer to my simple yet frastrating dilemma.

I am in the process of building a website that will enable users to log-in through a dedicated loginU.php page, I have all of this working but I would like to display an error message on this page saying if the user has entered a wrong username/password, I have the message displaying on a blank white page, but I would like it to be displayed within the container I have created. the validation code is contained within a different login.php file.

At the moment I am using an iframe to display the messages, which I know is not the right way to do it, so am asking for a better way to do it. here is what I have so far:

loginU.php
Code: [Select]
<div id = "div-Login">
<form action="login.php"  method="POST" target="loginerror">
<center><h2>Login Here</h2> <p>
Username:  <input type="text" name="username"><p>
Password:  <input type="password" name="password"><p>
<input type="submit" name="submit" value="Login">
</center>
<a href="register.html"><pre>need to register? Click Here!</pre></a>
</form>

<iframe name="loginerror" style="border: 0px; width: 200px; height: 100px; overflow: hidden;" src="login.php"></iframe>
</div>

login.php
Code: [Select]
if ($username==$dbusername&&$enc_password==$dbpassword) //if the username & encrpyted password matches the records in the database
{
if($admin !=0) //if the admin flag is true
{
$_SESSION['level']='ADMIN';//admin is logging in
header ("Location: admin.php"); //the user is an admin, direct to admin page
}
else
header ("Location: index.php"); //user is a customer, direct user to index page
$_SESSION['username']=$dbusername; //set the session name to the database record username.
}
else
//$nopass='TRUE';
//header ("location: loginU.php");
echo "Incorrect Password, Please try again"; // if incorrect password
}
else
die ("That username doesn't exist"); // if user doesn't exist
}
else
die ("Please enter a username and password"); //if either field is empty

?>

I am trying to work on a code for php where you first have a form that asks the user to input a message then input a color. When they click the submit button it takes them to the output page.  It should take their message and output it into boxes in a square. And the background should turn the color that they types in.

Hello all, I'm new to PHP and to these forums and i'm having trouble with a little script I'm working on.

I have to point out at the start that the script actually works, other than for the error I'm reporting.

What it does, is lets the user upload an image to the server and creates a thumbnail imageof it in another folder. This works as intended. (I.e. the images gets uploaded and the thumbnail is created) The issue i'm having is when the work is completed successfully...

If there's an error, I update a variable $msg with an error mesage. (File too large, or invalid filetype) If this is the case, the script will render the html code correctly, display the error, then redirect you using javascript after 4 seconds to the original page.

No worries here, everything works so far.

However, if there is no errors to report and the script is successfull, I update $msg to say "it worked"(or whatever) but instead of displaying the formatted webpage displaying the message, then redirecting after 4 seconds, all that happens is the html code is displayed instead.

(If I cut and paste this code into a new htmlfile, it renders correctly.)

Attached below is the php code which does all the work. (But not the main php file which calls it)

Can someone please point me in the right direction as to what I'm doing wrong! lol

(Again, I'm new here so a big hello from me!!!)

Code: [Select]
<?php
   print( "<html>\n");
   print( "   <head>\n");
   print( "      <title>Random banner and file upload</title>\n");
   print( "      <link rel=StyleSheet href=\"styles.css\" type=\"text/css\">\n");
   print( "   </head>\n");
   print( "   <body>\n" );
   
   $file_upload = "true";
   $filetype = $_FILES[ "file_up" ][ "type" ];
   $file_name = $_FILES[ "file_up" ][ "name" ];
   $startimage = $_FILES[ "file_up" ][ "tmp_name" ];
   $largeimage = "images/uploads/$file_name";
   $thumbimage = "images/uploadthumbs/thumb-$file_name";
   $msg = "      ";
   $invalidfilesize = "<p class='centeralign'>Your uploaded file size is more than 250KB so please reduce the file size and then upload.<br>Visit the help page to know how to reduce the file size.</p>\n";
   $invalidfiletype = "<p class='centeralign'>Your uploaded file must be of PNG, JPG or GIF. Other file types are not allowed.</p>\n";
   $successfullupload = "<p class='centeralign'>File uploaded successfully! :)</p>\n";   
   $failedupload = "<p class='centeralign'>File not uploaded successfully! :(</p>\n";   
   $notinstalled = "<p class='centeralign'>The requested function is not installed on this web server. :(</p>\n";
     
   //If the image is larger than 1Mb, do not upload.
   if ( $_FILES[ "file_up" ][ "size" ] > 1048576 )
   {
      $msg = $msg.$invalidfilesize;
      $file_upload="false";
   }
   
   //If the image is an invalid file type, do not upload.
   if ( ! ( $filetype == "image/x-png" || $filetype == "image/pjpeg"  || $filetype == "image/jpeg" || $filetype == "image/gif" ) )
   {
      $msg = $msg.$invalidfiletype;
      $file_upload = "false";
   }

   //Start the thumbnail generation.
   if( $file_upload == "true" )
   {
      $n_width = 160; // Fix the width of the thumbnail images
      $n_height = 120; // Fix the height of the thumbnail imaage
      
      switch ( $filetype )
      {
     case "image/x-png";
        $FromFormat = "ImageCreateFromPNG";
    $ToFormat = "ImagePNG";
break;
 case "image/jpeg";
        $FromFormat = "ImageCreateFromJPEG";
    $ToFormat = "ImageJPEG";
break;
 case "image/pjpeg";
        $FromFormat = "ImageCreateFromJPEG";
    $ToFormat = "ImageJPEG";
break;
         case "image/gif";
        $FromFormat = "ImageCreateFromGIF";
    $ToFormat = "ImageGIF";
break;
      }
  
      if ( function_exists( "$FromFormat" ) )// Generate the thumbnail.
      {            
         $im = $FromFormat( $startimage );
         $width = ImageSx( $im ); // Original picture width is stored
         $height = ImageSy( $im ); // Original picture height is stored
         $newimage = imagecreatetruecolor( $n_width, $n_height );
         imageCopyResized( $newimage, $im, 0, 0, 0, 0, $n_width, $n_height, $width, $height );
         Header( "Content-type: $filetype" );
         $ToFormat( $newimage, $thumbimage );
      }
  else { $msg = $msg.$notinstalled; }// Unable to generate the thumbnail. (GD library not installed on web server?)

      //Move the uploaded file to the correct place..
      if( move_uploaded_file ( $startimage, $largeimage ) ) { $msg = $msg.$successfullupload; }
      else { $msg = $msg.$failedupload; }//Unable to move uploaded file.
   }
   Print( "$msg" );   
   print( "      <script type=\"text/javascript\"><!--\n" );
   print( "         setTimeout('Redirect()',4000);\n" );
   print( "         function Redirect()\n" );
   print( "         {\n" );
   print( "            location.href = 'index.php';\n" );
   print( "         }// -->\n" );
   print( "      </script>\n" );   
   print( "   </body>\n" );
   print( "</html>\n" );
?>

Hello guys,

Is there on web any updated tutorial on how can I add Facebook login on my simple php login script?

I'm using an Upload Script, and I've been working on trying to style the 'Choose File Button' (input file button)

Hi I'm using an IP database to correctly (+/-) serve related ads based on country. This seems to work fine BUT when tested on a USA proxy (I'm in the UK) I am getting TWO ads served, one for USA (correctly) and one for the UK (proxy error?). When surfing via proxy from the Netherlands I get no image at all.

Looking for somebody to see what I've done wrong he


$server   = 'localhost'; // MySQL hostname
$username = '***'; // MySQL username
$password = '***'; // MySQL password
$dbname   = '***'; // MySQL db name


$db = mysql_connect($server, $username, $password) or die(mysql_error());
      mysql_select_db($dbname) or die(mysql_error());

$sql = 'SELECT
            country
        FROM
            ip2nation
        WHERE
            ip < INET_ATON("'.$_SERVER['REMOTE_ADDR'].'")
        ORDER BY
            ip DESC
        LIMIT 0,1';

list($country) = mysql_fetch_row(mysql_query($sql));

switch ($country) {
case 'us':
// Image or USA
echo '<img src="impact/samsungN210PLUS_usa.jpg">';

case 'uk':
// Image for UK
echo '<img src="impact/samsungN210PLUS_uk.jpg">';

default:
// Image for everybody else (europe)
echo '<img src="impact/samsungN210PLUS_europe.jpg">';
end;
}


echo '<div width="420" class="loc"><span  class="loc" align="center">Not from ';


$sql = 'SELECT
            c.country
        FROM
            ip2nationCountries c,
            ip2nation i
        WHERE
            i.ip < INET_ATON("'.$_SERVER['REMOTE_ADDR'].'")
            AND
            c.code = i.country
        ORDER BY
            i.ip DESC
        LIMIT 0,1';

list($countryName) = mysql_fetch_row(mysql_query($sql));

// Output full country name
echo $countryName;
$domain = str_replace("www.","", $_SERVER['HTTP_HOST']);
 echo '? Choose your flag: <a href="http://uk.' .$domain. '"><img src="images/flags/ukflag.gif"></a>&nbsp;<a href="http://usa.' .$domain. '"><img src="images/flags/usaflag.gif"></a>&nbsp;<a href="http://europe.' .$domain. '"><img  src="images/flags/euflag.gif"></a></span></div>';





All help appreciated and thanks in advance.

PS. The script is working he http://darrenbassett.com/trial if somebody in the USA wishes to check and let me kow if it is a proxy surfing error (seeing BOTH IP's). Not a real website just a 'play' page to get the bones of the script working.

is there any way to submit a form without using a submit button?


I want the form to post after the user has entered a certain amount of charaters? maybe using javascript?



Any help is appreciated

Ant

Hi, I have this script, it all works fine until it gets to the message sending point. What I want is if the $registerMail variable is set to yes then send the message and redirect user to login page, if not then just redirect the user to the login page.

However once registered, the user is sent to the login page and the message isnt sent.

Code: [Select]
<?php

include_once("data/server.php");

function decode_variable(&$siteName)
{
    $siteName = urldecode($siteName);
    $siteName = str_replace('%20',' ',$siteName); 
    return $siteName;
} 

decode_variable($siteName);

$registerMail = $_GET['regMail'];

$password1 = $_POST['password1'];
$password2 = $_POST['password2'];
// Get Posted Variables

$username = $_POST['username'];
$firstname = $_POST['firstname'];
$lastname = $_POST['lastname'];
$address = $_POST['address'];
$town = $_POST['town'];
$county = $_POST['county'];
$postcode = $_POST['postcode'];
$email = $_POST['email'];
$approved = "no";
$IP = $_SERVER['REMOTE_ADDR'];

if ($password1 != $password2) {

echo "Your passwords did not match, please go back and register again";

} else {

// MySQL Connection

include_once("data/mysql.php");

$mysqlPassword = (base64_decode($mysqlpword));

$con = mysql_connect("$localhost", "$mysqlusername", "$mysqlPassword") or die(mysql_error());
mysql_select_db("$dbname", $con) or die(mysql_error());


$query = "SELECT COUNT(*) AS count FROM members WHERE username='$username'";
$results = mysql_query($query) or die ("Error reading from database");
$existingUsername = mysql_fetch_array($results);
 
if ($existingUsername['count'] > 0) {

echo "I'm sorry our database already contains that username please choose a new username to continue. ";

} else {

///// Check IP address does not belong to a unapproved user

$query = "SELECT COUNT(*) AS count FROM members WHERE IP='$IP' AND approved='$approved'";
$results = mysql_query($query) or die ("Error reading from database");
$bannedIP = mysql_fetch_array($results);
 
if ($bannedIP['count'] > 0) {
echo "I'm sorry your IP address has been banned from registering another account, please contact $adminEmail  ";

} else {

$sql = "INSERT INTO members (IP, username, firstname, lastname, address, town, county, postcode, email, password, approved)
VALUES
('$_SERVER[REMOTE_ADDR]','$_POST[username]','$_POST[firstname]','$_POST[lastname]','$_POST[address]','$_POST[town]','$_POST[county]','$_POST[postcode]','$_POST[email]','$_POST[password2]','$approved')";

mysql_query($sql,$con);
mysql_close($con);

}
}
}
///////////////// Send registration Mail ///////////////////////////

if ($registerMail == 'yes') {


$bodyReg = file_get_contents('data/registrationMail.php');

$to = "$email";
 $subject = "Welcome to $siteName";
 $body = "\nDear $firstname;\n$bodyReg\nUsername: $username\n Password: $password2;";
 $headers = "From: $adminEmail\r\n" .
     "X-Mailer: php";
if (mail($to, $subject, $body, $headers)) {
 echo "Registration Successful. You will be redirected to login in 5 seconds.";
 
 ?>

<meta http-equiv="REFRESH" content="5;url=../login.html">

<?php

}
} else {
 
 echo "Registration Successful. You will be redirected to login in 5 seconds.";
 
 ?>

<meta http-equiv="REFRESH" content="5;url=../login.html">

<?php
}

 
?>
As always any help is much appreciated

Here is the code:
Code: [Select]
<html>
<head>
<title>Login</title>
</head>
<body>
<form action="" method="post">
Nick: <br /> <input type="text" name="nick" /> <br />
Pass: <br /> <input type="password" name="pass" /> <br />
<input type="submit" name="uloguj_se" value="Login" />

<?
if(isset($_POST['uloguj_se'])){
include("connect.php");
$nick = $_POST['nick'];
$pass = $_POST['pass'];
$nickdva = mysql_query("SELECT * FROM klijenti WHERE nick='$nick'");
$passdva = mysql_query("SELECT * FROM klijenti WHERE password='$pass'");
if($nick==$nickdva && $pass==$passdva) {
echo "<center>Poz! :)</center>";
} else {
echo "<center>Netacan username/pw.</center>";
}
echo "</form>";
echo "</body>";
echo "</html>";
}
?>

PHP = 5.5.14 MySQL = 5.2.17   I've cloned a mysqli_connect() statement in a 'require' file placed in a non-public access location on the server.  It's the same format (and location) currently working fine with another application, EXCEPT i changed the database name to what I need to use for this application, AND added the $con= part on the front end to substitute for the commented out $con= line in the example code I'm modifying to insert data into a new MySQL DB Table.   The dB Table is fine and I have Inserted data via myPHPAdmin with no problems.  Only two form variables are in the simple PHP script thus far just to test if it will work before proceeding.   I've used pseudonames for the actual /home/.... location and filename, and am now Baffled about the Line 2 Error Message I'm getting (below the code).

<?php

require '/home/myusername/domains/mydomain.com/myclonedrequire.php';

//$con=mysqli_connect("example","uid","pwd","my_db");
// Check connection
if (mysqli_connect_errno()) {
  echo "Failed to connect to MySQL: " . mysqli_connect_error();
}

// escape variables for security
$year = mysqli_real_escape_string($con, $_POST['year']);
$callsign = mysqli_real_escape_string($con, $_POST['callsign']);


$sql="INSERT INTO `lqplogs` (`year`, `callsign`)
VALUES ('$year', '$callsign');

if (!mysqli_query($con,$sql)) {
  die('Error: ' . mysqli_error($con));
}
echo "1 record added";

mysqli_close($con);
?>

ERROR Message:   Warning: Unexpected character in input: '\' (ASCII=92) state=1 in (above file & location) on line 2   There are NO '\' characters in any of my files.   Here is the simple Form file code:

<?php
?>
<html:
<head><title></title></head>
<body>
<form action="insert.php" method="post">
YEAR: <input type="text" name="year">
CALLSIGN: <input type="text" name="callsign">
<input type="submit">
</form>
</body>
</html>
<?php
?>

Thanks for any assistance!   -FreakingOUT      

I have been using this script for years. I realise it is a little old and probably not well written, however it has been functional. I suspect the problem is that maybe they have turned the register_globals off at the server and the script is no longer working. I don't know if that is the problem. The error I get when I attempt to upload an image is this:
Error:
MySQL error reported!
Query: INSERT INTO photos values(NULL,'corrobex', 1, 10, , 'makinti', '', '', 'makinti.jpg', 571, 381, 42520, '0', 0, 0, 0, '1', , '0', 'no', '', '', '', '', '')

Result: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ' 'makinti', '', '', 'makinti.jpg', 571, 381, 42520, '0', 0, 0, 0, '1', , '0', 'n' at line 1

Database handle: Resource id #3

Now here is the script:
Code: [Select]
<?php
include("pp-inc.php");
include("login-inc.php");
include("image-inc.php");

if ( is_array($HTTP_POST_FILES) ) {
    while(list($key,$value) = each($HTTP_POST_FILES)) {
        ${$key} = $value;
    }
}

function handleupload( $location = "data" ) {
    global $HTTP_POST_FILES, $userid, $Globals, $category;
    
    $tmpname = $HTTP_POST_FILES['theimage']['tmp_name'];
    $realname = $HTTP_POST_FILES['theimage']['name'];
    $tmpcloseup = $HTTP_POST_FILES['closeup']['tmp_name'];

    if (is_uploaded_file($tmpname) ) {
        $realname = fixfilenames( $realname );
        $closeup = preg_replace("/(\.[A-Za-z]+)$/", "-closeup\\1", $realname);
 
        if ( $location != "data" ) {
            $dst_file = $location;
        }
        else {
            $dst_file = $Globals{'datafull'}."$category/$userid$realname";
            $closeup_file = $Globals{'datafull'}."$category/$userid$closeup"; 
       }

        copy($tmpname, $dst_file);
        copy($tmpcloseup, $closeup_file);
    } else {
        dieWell("Uploaded file not found: $realname<br>Typical reason is that the file exceeded allowed limits.");
        exit;
    }

    return;
}

authenticate();

$nolimit = 0;
if ( $Globals{'adminnolimit'} == "yes" && $adminedit == 1 ) {
    $nolimit = 1;
}

$adminexclude = 0;
if ( $Globals{'adminexclude'} == "yes" && $adminedit == 1 ) {
    $adminexclude = 1;
}

if ( $adminedit == 0 ) {
    if ( $Globals{'allowup'} == "no" ) {
        dieWell( "User uploads not allowed" );
    }
}

$querystring = findenv("QUERY_STRING");
if ( ($useruploads == 0 && $gologin==1) || $querystring == "gologin" ) {
    $furl=$Globals{'maindir'};
    $furl= str_replace( $Globals{'domain'}, "", $furl );
    $furl="$furl/uploadphoto.php";

    login( $furl );
    exit;
}

if ( $gologin != 0 ) {
    if ( $useruploads == 0 ) {
        dieWell("Sorry, you don't have permission to upload photos.");
        exit;
    }    
}

topmenu();

if ( !isset($theimage) ) {
    $catdefault = "";

    if ( !empty($cat) ) {
        $query = "SELECT id,catname,thumbs FROM categories WHERE id=$cat LIMIT 1";
        $resultb = ppmysql_query($query,$link);
        while ( list( $subid, $subcatname, $subthumbs ) = mysql_fetch_row($resultb) ) {
            if ( $ugcat{$subid} != 1 ) {
                $catdefault = "<option selected value=\"$subid\">$subcatname</option>";
            }
        }
        ppmysql_free_result( $resultb );
    }

    $header = str_replace( "titlereplace", "Upload Photo", $header );    

    $output = "$header<center><p>
        <table cellpadding=\"0\" cellspacing=\"0\" border=\"0\" height=\"40\" width=\"".$Globals{'tablewidth'}."\"><Tr>
        <Td valign=\"middle\" width=\"50%\">$menu2</td>
        <td width=\"50%\" align=\"right\" valign=\"middle\">$menu</td></tr></table>
        <table cellpadding=\"0\" cellspacing=\"0\"
        border=\"0\" bgcolor=\"".$Globals{'bordercolor'}."\"  width=\"".$Globals{'tablewidth'}."\" align=\"center\"><tr><td>
        <table cellpadding=\"4\" cellspacing=\"1\" border=\"0\"  width=\"100%\">
        <tr align=\"center\">
        <td colspan=\"1\" align=\"left\" bgcolor=\"".$Globals{'headcolor'}."\"><font face=\"".$Globals{'headfont'}."\"
        color=\"".$Globals{'headfontcolor'}."\" size=\"".$Globals{'fontmedium'}."\"><B>".$Globals{'galleryname'}." Image
        Upload</font></td>
        <td colspan=\"1\" align=\"right\" bgcolor=\"".$Globals{'headcolor'}."\"><font
        face=\"".$Globals{'mainfonts'}."\" color=\"".$Globals{'headfontcolor'}."\" size=\"".$Globals{'fontmedium'}."\">
        <a href=\"javascript:PopUpHelp('uploadphoto.php')\">help</a></font>
        </td>            
        </tr>
        <form method=\"post\" action=\"".$Globals{'maindir'}."/uploadphoto.php\" enctype=\"multipart/form-data\">
        <tr><Td bgcolor=\"".$Globals{'maincolor'}."\"><font size=\"".$Globals{'fontmedium'}."\" face=\"".$Globals{'mainfonts'}."\" color=\"".$Globals{'maintext'}."\">Username</font></td><td
        bgcolor=\"".$Globals{'maincolor'}."\">
        <font size=\"".$Globals{'fontmedium'}."\" face=\"".$Globals{'mainfonts'}."\" color=\"".$Globals{'maintext'}."\">$username</td></tr>
        <tr><Td bgcolor=\"".$Globals{'maincolor'}."\" width=\"50%\"><font size=\"".$Globals{'fontmedium'}."\" color=\"".$Globals{'maintext'}."\" face=\"".$Globals{'mainfonts'}."\">Choose a
        category</font></td><Td bgcolor=\"".$Globals{'maincolor'}."\"><select
        name=\"category\">$catdefault";

    if (empty($subid)) $subid="";
    $selected = $subid;
    catmoveopt(0);
    $output .= $catoptions;

    $imgdir = $Globals{'zipuploaddir'}."/$userid";
    $skiphtml = "</table><table cellpadding=\"4\" cellspacing=\"0\" border=\"0\"  width=\"100%\">
        <tr><Td bgcolor=\"".$Globals{'headcolor'}."\" align=\"center\">
        <font size=\"".$Globals{'fontmedium'}."\" color=\"".$Globals{'headfontcolor'}."\" face=\"".$Globals{'mainfonts'}."\">
        <b>ADMIN OPTIONS FOR BULK OR ZIP UPLOADS</b></font>
        </td>
        <td align=\"right\" bgcolor=\"".$Globals{'headcolor'}."\"><font
        face=\"".$Globals{'mainfonts'}."\" color=\"".$Globals{'headfontcolor'}."\" size=\"".$Globals{'fontmedium'}."\">
        <a href=\"javascript:PopUpHelp('adminskip.php')\">help</a></font>
        </td>            
        </tr></table>
        <table cellpadding=\"4\" cellspacing=\"1\" border=\"0\"  width=\"100%\">
        <tr><Td bgcolor=\"".$Globals{'maincolor'}."\"><font size=\"".$Globals{'fontmedium'}."\" color=\"".$Globals{'maintext'}."\" face=\"".$Globals{'mainfonts'}."\">Skip upload and process the files in your upload directory<br><font size=\"".$Globals{'fontsmall'}."\">Files should already be in: <b>$imgdir</b></td>
        <td bgcolor=\"".$Globals{'maincolor'}."\" align=\"center\"><input type=\"checkbox\" name=\"skipupload\" value=\"skipupload\"></td></tr>
        <tr><Td bgcolor=\"".$Globals{'maincolor'}."\"><font size=\"".$Globals{'fontmedium'}."\" color=\"".$Globals{'maintext'}."\" face=\"".$Globals{'mainfonts'}."\">Show thumbnails during processing?</td>
        <td bgcolor=\"".$Globals{'maincolor'}."\" align=\"center\"><font size=\"".$Globals{'fontmedium'}."\" color=\"".$Globals{'maintext'}."\" face=\"".$Globals{'mainfonts'}."\"><select name=\"dthumbs\"><option selected>yes</option><option>no</option></select></font></td></tr>
        <tr><Td bgcolor=\"".$Globals{'maincolor'}."\"><font size=\"".$Globals{'fontmedium'}."\" color=\"".$Globals{'maintext'}."\" face=\"".$Globals{'mainfonts'}."\">Number of thumbnails to process next?</td>
        <td bgcolor=\"".$Globals{'maincolor'}."\" align=\"center\"><font size=\"".$Globals{'fontmedium'}."\" color=\"".$Globals{'maintext'}."\" face=\"".$Globals{'mainfonts'}."\"><select name=\"numprocess\"><option selected>10</option><option>25</option><option>50</option><option>100</option></select></td></tr>";
            
    $output .= "</select></td></tr>
        <tr><Td bgcolor=\"".$Globals{'maincolor'}."\"><font size=\"".$Globals{'fontmedium'}."\" face=\"".$Globals{'mainfonts'}."\" color=\"".$Globals{'maintext'}."\">Photo to upload:</font><br><b><font size=\"".$Globals{'fontsmall'}."\" face=\"".$Globals{'mainfonts'}."\"
        color=\"red\">$maxfilesize</font></b></td><td bgcolor=\"".$Globals{'maincolor'}."\"><input type=\"file\" name=\"theimage\"></td></tr>
        <tr><Td bgcolor=\"".$Globals{'maincolor'}."\"><font size=\"".$Globals{'fontmedium'}."\" face=\"".$Globals{'mainfonts'}."\" color=\"".$Globals{'maintext'}."\">Matching closeup to upload:</font><br><b><font size=\"".$Globals{'fontsmall'}."\" face=\"".$Globals{'mainfonts'}."\"
        color=\"red\">$maxfilesize</font></b></td><td bgcolor=\"".$Globals{'maincolor'}."\"><input type=\"file\" name=\"closeup\"></td></tr>
        <tr><Td bgcolor=\"".$Globals{'maincolor'}."\"><font size=\"".$Globals{'fontmedium'}."\" color=\"".$Globals{'maintext'}."\" face=\"".$Globals{'mainfonts'}."\">Enter a title for the photo</td><td bgcolor=\"".$Globals{'maincolor'}."\"><input
        type=\"text\" name=\"title\"></td></tr>
        <tr><Td bgcolor=\"".$Globals{'maincolor'}."\"><font size=\"".$Globals{'fontmedium'}."\" color=\"".$Globals{'maintext'}."\" face=\"".$Globals{'mainfonts'}."\">To help users find your photo, please enter a few (up to 10) descriptive
        keywords (separated by spaces):</td><td bgcolor=\"".$Globals{'maincolor'}."\"><input type=\"text\" name=\"keywords\"></td></tr>
        <tr><Td bgcolor=\"".$Globals{'maincolor'}."\"><font size=\"".$Globals{'fontmedium'}."\" color=\"".$Globals{'maintext'}."\" face=\"".$Globals{'mainfonts'}."\">Photo Description</td><td bgcolor=\"".$Globals{'maincolor'}."\"><textarea
        name=\"desc\" cols=\"30\" rows=\"5\"></textarea></td></tr>
        $skiphtml
        <Center>
        <Tr><Td colspan=\"2\" bgcolor=\"".$Globals{'maincolor'}."\"><font size=\"".$Globals{'fontmedium'}."\" face=\"".$Globals{'mainfonts'}."\"><center>
        <input type=\"hidden\" name=\"password\" value=\"$password\">
        <input type=\"hidden\" name=\"userid\" value=\"$userid\">
        <input type=\"hidden\" name=\"MAX_FILE_SIZE\" value=\"2000000\">
        <input type=\"submit\" value=\"Upload/Submit\">
        <p><b>When you hit SUBMIT, the file you selected will be uploaded.</b><br></font><font size=\"".$Globals{'fontsmall'}."\" face=\"".$Globals{'mainfonts'}."\">
        (Depending on the size of the file and your connection, this may take some time. <b>Please be patient.</b>)</p></font></td></tr></table></td></tr></table><p>".$Globals{'cright'}."$footer";

    print $output;
}
else {
    if (empty($skipupload)) $skipupload="";
    
    if ( $category == "" ) {
        dieWell( "You must choose a category before uploading.");
        exit;
    }

    if ( $skipupload == "skipupload" ) {
        $deftitle = urlencode($title);
        $defdesc = urlencode($desc);
        $furl = $Globals{'zipuploadurl'}."/$userid";

        forward( $Globals{'maindir'}."/bulkupload.php?ppaction=addphotos&do=preview&photopath=$userid&deftitle=$deftitle&defdesc=$defdesc&defcat=$category&keywords=$keywords&numprocess=$numprocess&dthumbs=$dthumbs&furl=$furl", "Preparing to process image list!" );
        exit;
    }

    $realname = $HTTP_POST_FILES['theimage']['name'];
    
    if ( $realname == "" ) {
        dieWell( "You need to enter the name of a file to upload! $thevideo / $theimage" );
        exit;
    }

    $realname = fixfilenames( $realname );
    $theext   = get_ext( $realname );
    
    $filepath = $Globals{'datafull'}."$category/$userid$realname";
    $outfilename = "$userid$realname";

    $query = "SELECT userid,bigimage FROM photos where userid=$userid";
    $resulta = ppmysql_query($query,$link);

    while( list( $uid, $bgimage ) = mysql_fetch_row($resulta) ) {
        if ($uid == $userid && $uid != 0) {
            if ( $bgimage == $realname ) {
                dieWell("Sorry, you already uploaded an image called $realname.  Try a different name.");
                exit;
            }
        }
    }
    ppmysql_free_result($resulta);

    $title = fixmessage( $title );
    $keywords = fixmessage( $keywords );
    $desc = fixmessage( $desc );

    if ( $category == "notcat" ) {
        $emessage = "The category you chose is a top level category.<p>Please go back and choose one of its subcategories to upload your image.";
        dieWell($emessage);
    }

    //####// Write the file to a directory #####
    //#// Do you wish to allow all file types?  yes/no (no capital letters)
    $allowall = "no";

    //#// If the above = "no"; then which is the only extention to allow?
    //#// Remember to have the LAST 4 characters i.e. .ext
    if ($realname != "") {
        $isfilegood = "yes";
        if ( $allowall != "yes" ) {
            if ( !is_image($outfilename) ) {
                $isfilegood = "no";
            }
        }

        if ($isfilegood == "yes") {
            handleupload();
        }

        //
        // ZIP Uploads for Users
        //
        if ( $Globals{'allowzip'} ) {
            if (strtolower(substr($outfilename,strlen($outfilename) - 4,4)) == ".zip" ) {
                $filepath = $Globals{'zipuploaddir'}."/$userid";
                $filedir = "$filepath/$outfilename";

                if ( !file_exists( $filepath ) ) {
                    mkdir( $filepath, 0755 );
                    chmod( $filepath, 0777 );
                }

                chdir( $filepath );

                handleupload( $filedir );

                $sys_cmd = $Globals{'zip_command'}." -qq $filedir";
                system( $sys_cmd );
                unlink( $filedir );

                $deftitle = urlencode($title);
                $defdesc = urlencode($desc);
                $furl = $Globals{'zipuploadurl'}."/$userid";
                if ( empty($numprocess) ) $numprocess = 10;
                if ( empty($dthumbs) ) $dthumbs = "yes";

                forward( $Globals{'maindir'}."/bulkupload.php?ppaction=addphotos&do=preview&photopath=$userid&deftitle=$deftitle&defdesc=$defdesc&defcat=$category&keywords=$keywords&numprocess=$numprocess&dthumbs=$dthumbs&furl=$furl", "Preparing to process image list!" );
                exit;
            }
        }
    }

    if ( file_exists($filepath) ) {
        $insize = filesize( $filepath );
    }
    else {
        dieWell("File upload error. Cannot find uploaded file.<br>Path: [$filepath]");
        exit;
    }

    if ( $isfilegood != "yes" ) {
        dieWell( "Image must be a .jpg, .gif, .tif or .png file." );
        exit;
    }

    $thumbsize = create_thumb( $realname, $filepath, $category );
    process_image( $realname, $filepath, $category );

    $query = "SELECT id FROM photos WHERE userid=$userid AND bigimage='$realname'";
    $resulta = ppmysql_query($query,$link);
    list( $forwardid ) = mysql_fetch_row($resulta);
    ppmysql_free_result($resulta);

    if ( empty($forwardid) ) {
        dieWell( "There was a problem processing your image: $realname.<p>Please notify the System Administrator." );
        exit;
    }
    
    forward( $Globals{'maindir'}."/showphoto.php?photo=$forwardid", "Your image was uploaded successfully!" );
}

?>

Do Globals need to be on for this to work? Or is there another problem?

thanks

Paul

MOD EDIT: [code] . . . [/code] tags added.