PHP - While Statement - Excluding User Ids

My application displays posts based on currentness and popularity, in two distinct lists.

Users can also vote on posts, after which they are hidden. The post IDs that users have voted on are stored in a cookie.

I need to construct a concise query that prevents "popular" posts and posts that have been voted on from appearing within the "new" list. In my current system, the used values are explicitly excluded from appearing in the query with some very inelegant code.

$num_posts = 5;
$sql = "SELECT * FROM posts ORDER BY popularity LIMIT ".$num_posts;
$query = mysql_query($sql);
$excluded_ids = array()
while($row = mysql_fetch_assoc($query)) {
    // ...do some stuff...
    $excluded_ids[] = $row['post_id'];
}
if(!empty($_COOKIE['voted_on'])) {
   // example value "12|19|23|26"
   foreach(explode("|", $_COOKIE['voted_on']) as $val)) {
        $excluded_ids[] = $val;
   }
}
$sql = SELECT * FROM posts WHERE post_id <>";
$num_excluded_ids = count($excluded_ids);
$i = 0;
foreach($excluded_ids as $val) {
    $i++;
    $sql .= $val;
    if($i <= $num_excluded_ids) {
        $sql .= " AND post_id <> ";
    }
}
$sql .= " ORDER BY date_posted LIMIT ".$num_posts;
$query = mysql_query($sql) // ... 
This method is ugly and probably very slow. What would be a better approach?

Thanks in advance for anything you can suggest.

Lets say I have an array of different values... for example,

$alreadyViewed = array("hi.jpg","cow.jpg","dog.png");

Lets say my database contains:

Code: [Select]
animals.jpg
cat.jpg
cow.jpg
hi.jpg
dog.png

How do you I tell MySQL to only fetch the remaining entries? And ignore everything in the $alreadyViewed array?

Hi Guys,

I've been using PHP for a few years now but for some reason I can never seem to get my head around arrays, basically I have a blog site that I want to show all posts that have been posted in public categories but ignore those in the private categories, I had the idea to put all the private category ID's into an array and use that to check against the posts, however my array isn't working out the way I'd hoped.

This is what I have:

$isPrivate = mysql_query("SELECT categoryID FROM mod_cat WHERE isPrivate =1") or die (mysql_error());
while ($isPrivateList = mysql_fetch_array($isPrivate, MYSQL_NUM)) {
$ignoreList = $isPrivateList;
}


However this isn't working at all. I know its wrong I just can't work out how to make it right. This is the mySQL I want to use it with:

mysql_query("SELECT COUNT(*) AS total_entries FROM mod_posts WHERE articlePosted =1 AND articleCat != $ignorelist")

Could anyone please help me?

Thanks in advance.

I was just wondering if this is a way that you can exclude certain rows from a MySQL query.  For example if I have 10 records each with a unique id, is there anyway I can get all of the records except record 5?  Thanks for any help.   

When I run this query to exclude records where id = $userarray['id'],

$q = "SELECT * FROM users WHERE inst_id = '". $userarray['inst_id'] ."' AND id != '". $userarray['id'] ."' ";


it actually ONLY returns records with $userarray['id']  as opposed to excluding them.  Isn't the way to exclude them to use != ?

Hello, I need to hide products with same title from WooCommerce shop page and i'm trying to achieve that with a custom loop.

For example i have 5 products called "Plex" and the only diferrence between them is the SKU field and the color. I don't care which of the same product will be displayed in the shop page, i just want to display only one of all these products.

I created a loop which is working and does hide products with same name but i have a problem. If i set posts_per_page=8 it shows less because it counts the hidden products also.

$args = array(
   'post_type'         => 'product',
   'posts_per_page'    => 8
);
$query = new WP_Query($args);
$list = array();

while ($query->have_posts()) : $query->the_post(); 
if(in_array(get_the_title(), $list)){ continue; }
   $list[] = get_the_title();
?>

<li><?php wc_get_template_part( 'content', 'product' ); ?></li>

<?php endwhile;
wp_reset_postdata();

P.S. I don't want to remove these products, i just want to hide them from shop loop!

Any ideas what is the problem with the loop? Is there a better way to achieve that?

Hi Everyone,
I have a rather stupid question, but I haven't been able to find the correct method / syntax to do this. I want to allow users to upload a maximum of 5 photos - less then 5 is OK too. I've been testing the following script and haven't gotten it to ignore error # 4 (no file uploaded):

Code: [Select]
   if ($_FILES['userfile']['error'] == 1 || 2 || 3 || 6 || 7)   {
 
    echo 'Problem: ';
    switch ($_FILES['userfile']['error'])   {

      case 1: echo 'File exceeded upload_max_filesize';
  break;
      case 2: echo 'File exceeded max_file_size';
  break;
      case 3: echo 'File only partially uploaded';
  break;
  case 6:   echo 'Cannot upload file: No temp directory specified.';
  break;
  case 7:   echo 'Upload failed: Cannot write to disk.';
  break;
    }
    exit;
  }
I will be using a while loop and incrementing through the script (this is simpler version). Does anyone know the proper syntax for the IF statement ' if ($_FILES['userfile']['error'] == 1 || 2 || 3 || 6 || 7)" ?
Thanks much,
Rick

I must be brain dead...I've searched everywhere and can't seem to find a snippet for this. I'm just looking for some code to show a directory listing, but only certain files (by extension) and I don't want to show any sub-directories.

I thought I might have been able to do this in the .htaccess file, but I can't find anything that will get rid of the sub-directories.

So, I figure there must be a way to get a file listing, check the extension, add it to the page, or skip it if it's a sub-directory or doesn't match the extension.

Or, I could just be totally, way off...anyway, any help would be greatly appreciated...I'm fairly new to php.

I'm having issues with the following:

Code: [Select]
<?php
session_start();
$_SESSION['username']=$_POST['username'];
$_SESSION['password']=$_POST['password'];
if($_SESSION['username']=="username" && $_SESSION['password']=="password"){
if($_GET['product']=="add"){
$content.='
<p><label>Product Name:</label> <input type="text" name="product_name" size="30" />
<label>Product Price:</label> <input type="text" name="product_price" size="5" />
</p>
<p><label>Product Category:</label> <input type="text" name="product_category" size="30" /></p>
<p><label>Product Link:</label> <input type="text" name="product_link" size="30" /></p>
<p><label>Product Image:</label> <input type="text" name="product_image" size="30" /></p>
<p><label>Product Tag:</label> <input type="text" name="product_tag" size="30" /></p>
<p><label>Product Keywords:</label> <input type="text" name="keyword" size="30" /></p>
<p><label>Product Features:</label><br />
<textarea name="product_features" rows="10" cols="60"></textarea>
</p>
<p><label>Product Pros:</label><br />
<textarea name="product_pros" rows="5" cols="30"></textarea>
</p>
<p><label>Product Cons:</label><br />
<textarea name="product_cons" rows="5" cols="30"></textarea>
</p>
<p><label>Product Description:</label><br />
<textarea name="product_description" rows="10" cols="60"></textarea>
</p>
<p><label>Product Notes:</label><br />
<textarea name="product_notes" rows="5" cols="30"></textarea>
</p>
';
$logout='<div><a href="./acp_admincp.php?log-out">Log-Out</a></div>';
}
elseif($_GET['product']=="view"){
}
else{
$content.='
<a href="./admincp.php?product=add">Add New Product</a>
<br />
<a href="./admincp.php?product=view">View Products</a>
';
}
}
elseif(isset($_GET['log-out'])){
session_start();
session_unset();
session_destroy();
header("Location: ./admincp.php");
}
else{
$content='
<form action="./admincp.php" method="post">
<p><label>Username:</label> <input type="text" name="username" size="30" />';
$content.='</p>
<p><label>Password:</label> <input type="password" name="password" /></p>';
$content.='<p><input type="submit" value="Submit" name="Submit" /></p>
</form>';
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>
<base href="http://ghosthuntersportal.com/" />
<title>Ghost Hunter's Portal - Admin Control Panel</title>
<meta http-equiv="content-type" content="text/html; charset=utf-8" />
<meta name="verify-v1" content="" />
<meta name="keywords" content="ghost, hunters, hunter, ghosts, spirit, spirits, paranormal, investigation, investigator, investigators, k2, emf, meter, kii" />
<meta name="description" content="Ghost Hunters Potal. Parnormal research equipment store." />
<meta name="author" content="Andrew McCarrick" />
<meta name="robots" content="index, follow"
<link rel="stylesheet" type="text/css" href="style.css" />
</head>
<body>
<img src="./logo.png" alt="Ghost Hunter's Portal Admin Control Panel" />
<br />
<div style="color: #AA44AA; font-size: 26px; margin-top: -30px; margin-left: 125px;">Admin Control Panel</div>
<?php
echo $logout;
echo $content;
?>
</body>
</html>

I can log-in, and get to the page with the two links on it. However, once I click one of the links it falls back to the log-in page, and it ends up being a never ending loop.

It's doing this:
Log-In --> Page with links ---> Log-In page again

Should be doing this:
Log-In --> Page with links --> Add Product page or View Products page

I can never get into the the actual sub page.

Just to be clear, the address bar actually shows product=add or product=view, but it still shows the log-in page.

I would appreciate your assistance, there are tons of login scripts and they work just fine. However I need my operators to login and then list their activities for the other operators who are logged in to see and if desired send their clients on the desired activity. I have the login working like a charm and the activities are listed just beautifully. How do I combine the two tables in the MySQL with PHP so the operator Logged in can only make changes to his listing but see the others.

FIRST THE ONE script the member logges in here to the one table in MSQL:
<?php
   session_start();
   
   require_once('config.php');
   
   $errmsg_arr = array();
   
   $errflag = false;
   
   $link = mysql_connect(DB_HOST, DB_USER, DB_PASSWORD);
   if(!$link) {
      die('Failed to connect to server: ' . mysql_error());
   }
   
   $db = mysql_select_db(DB_DATABASE);
   if(!$db) {
      die("Unable to select database");
   }
   
   function clean($str) {
      $str = @trim($str);
      if(get_magic_quotes_gpc()) {
         $str = stripslashes($str);
      }
      return mysql_real_escape_string($str);
   }
   
   $login = clean($_POST['login']);
   $password = clean($_POST['password']);
   
   if($login == '') {
      $errmsg_arr[] = 'Login ID missing';
      $errflag = true;
   }
   if($password == '') {
      $errmsg_arr[] = 'Password missing';
      $errflag = true;
   }
   
   if($errflag) {
      $_SESSION['ERRMSG_ARR'] = $errmsg_arr;
      session_write_close();
      header("location: login-form.php");
      exit();
   }
   
   $qry="SELECT * FROM members WHERE login='$login' AND passwd='".md5($_POST['password'])."'";
   $result=mysql_query($qry);
   
   if($result) {
      if(mysql_num_rows($result) == 1) {
         session_regenerate_id();
         $member = mysql_fetch_assoc($result);
         $_SESSION['SESS_MEMBER_ID'] = $member['member_id'];
         $_SESSION['SESS_FIRST_NAME'] = $member['firstname'];
         $_SESSION['SESS_LAST_NAME'] = $member['lastname'];
         session_write_close();
         header("location: member-index.php");
         exit();
      }else {
         header("location: login-failed.php");
         exit();
      }
   }else {
      die("Query failed");
   }
?>

................................................. ................................
Now I need the person who logged in to the table above to be able to make multiple entries to the table below

<?
$ID=$_POST['ID'];
$title=$_POST['title'];
$cost=$_POST['cost'];
$activity=$_POST['activity'];
$ayear=$_POST['aday'];
$aday=$_POST['ayear'];
$seats=$_POST['special'];
$special=$_POST['seats'];
mysql_connect("xxxxxx", "xxx350234427", "========") or die(mysql_error());
mysql_select_db("xxxx") or die(mysql_error());
mysql_query("INSERT INTO `activity` VALUES ('ID','$title', '$cost','$activity', '$aday', '$ayear', '$special', '$seats')");
Print "Your information has been successfully added to the database!"
?>
Click <a href="member-profile.php">HERE</a> to return to the main menu
  <?php      
?>

hi,

i have made a website where people resgister their details of them and products.

they have to enter the following details in form

Name of company

name of the product

company address

email id 

password 

mobile number contact

and 

brief details about their company 

after filling all details user is registered on website.

user can then login with email id and pwd.

now after login ..user will get a page where he can upload the photos of products images and their price, so now my question is that when he finishes uploading (|by clicking on upload button) the product images and price text box ..then on final uploaded webspage it should show all other things which he registerd before (company name , mobile number etc) along with images and price...hence the main question that user does not need to enter mobile and address while uploading images and filling proce ..but on the final page it should show mobile and address along with price and images..as user is not going to enter mobile and address again and again as he will have multiple products to upload.

thanks in advance .

Hi,

so far I have managed to set up a somewhat basic login website with a mysql database backend.

Once they have logged on they go to a "main menu" page.

What I need to define is that user A sees button A but only that button, etc.

(Then of course that same rule would have to apply if they tried to directly go to the page, but I am guessing I can do that in the same way that I currently do to force a login).

If anyone has any tutorials or sample code I would much appreciate it.

Thanks,

Actually, what i want to do is to use the email to fetch the $email,$password and $randomnumber from database after

Hi guys,

I am trying to put together a little system that allows users to log onto my website and access there own personal page. I am creating each page myself and uploading content specific to them which cannot be viewed by anyone else.

I have got the system to work up as far as:

1/ The user logs in
2/ Once logged in they are re-directed to their own page using 'theirusername.php'

Thats all good and working how I need it too. The problem I have is this. If I log onto the website using USER A details - I get taken to USER A's page like I should but - If I then go to my browser and type in USERBdetails.php I can then access USER B's page.

This cannot happen!! I need for USER A not to be able to access USER B profile - there is obviously no point in the login otherwise! If you are not logged in you obviously cannot access any secure page. That much is working!

Please find below the code I am using:


LOGIN

<?php
session_start();


function dbconnect()
{
    $link = mysql_connect("localhost", "username", "password") or die ("Error: ".mysql_error());

}
?>

<?php
if(isset($_SESSION['loggedin']))
{
    header("Location:" . strtolower($username) . ".php");
if(isset($_POST['submit']))
{
   $username = mysql_real_escape_string($_POST['username']);
   $password = mysql_real_escape_string($_POST['password']);
   $mysql = mysql_query("SELECT * FROM clients WHERE username = '{$username}' AND password = '{$password}'");
   if(mysql_num_rows($mysql) < 1)
   {
     die("Password or Username incorrect! Please <a href='login.php'>click here</a> to try again");
   }   $_SESSION['loggedin'] = "YES";
   $_SESSION['username'] = $username;
 $_SESSION['name']
   header("Location:" . strtolower($username) . ".php");
}
?> 

HEADER ON EACH PHP PAGE

<?php
session_start();
if(!isset($_SESSION['loggedin']))
{
    die(Access to this page is restricted without a valid username and password);
?>

---------------------------------------------------

Am I right in thinking it is something to do with the "loggedin" part?

The system I have here is adapted from a normal login system I have been using for years. The original just checks the details and then does a 'session start'. This one obviously has to re-direct to a user specific page. To do this I used the <<header("Location:" . strtolower($username) . ".php");>> line to redirect to a page such as "usera.php" or "userb.php"

Any help would be greatly appreciated! 

Ta

Hi,

I am getting frustrated beyond belief at the moment with trying to get a very simple script to run, I am using PHP 5.3.3 and MySQL 5.1 on a Win2k8 server with IIS7.5. Basically my script is connecting to a local database, running a single select query, returning those rows and building up a string from them.

The problem is that I am receiving complete BS responses from PHP that the access is denied for the user being specified. This is complete rubbish since the user can connect via mysql, sqlyog, ASP.NET MVC without issue but for some bizarre reason it is not working via PHP.

The code for the script is here :

Code: [Select]
<?php

$mysql = mysql_connect('127.0.0.1:3306', 'myuser', 'mypass', 'mydatabase');


if (!$mysql) {
  die(mysql_error());
  $content = "<nobr></nobr>";
} else {
  
  $result = mysql_query('SELECT * FROM tblEventGroup'); 
  $content = "<nobr>";
  
  if ($result) {     
      while($row = mysql_fetch_assoc($result)) {
       $content .= "<span>";
       $content .= $row['GroupName'];
       $content .= "</span>";
       $content .= "<a href=\"../Event/EventSearch?groupid=";
       $content .= $row['GroupId'];
       $content .= "\" target=\"_blank\">Book here</a> ";
      }
  }
  
  mysql_close($mysql);
  $content .= "</nobr>";

}

?>
I cannot for the life of me understand what the problem is, the return error is

Access denied for user 'myuser'@'localhost' (using password: YES)