PHP - Help With Logging Into Two Programs With One Login Name

I am new to php and starting to write my first programs.

I have a laptop (my local pc) and I am wondering if there is some kind of php-interpreter available so I can test them out on my local machine without having to upload them to my website?

Is there anyway I can avoid having to install a web-sever on my machine?
Is there an all-in-one php interpreter?   (someone suggested something called  Xampp, - is this the best?)

thanks,,

Hi guys,
I'm trying to write a script that generates a multipart plaintext/HTML email with a pdf attachment. After much research and trial & error, I seem to have reached a wall.
 
At the moment, I am testing in gmail, hotmail and Outlook 2003. Gmail displays the HTML alternative of the message and attaches the pdf document, while hotmail & Outlook only attach the pdf without displaying either of the message alternatives.
 
Here is the code:
 // Error display
  ini_set ('display_errors', 1);
  error_reporting (E_ALL | E_STRICT);
 
 // Setting a timestamp
  date_default_timezone_set('Australia/Perth');
  $timestamp = date("d/m/y H:i:s", time());
  
  // Create a boundary string. It must be unique, so we use the MD5 algorithm to generate a random hash 
  $random_hash = md5(time()); 
  
  // Read the attachment file contents into a string, encode it with MIME base64 & split it into smaller chunks
  $attachment = chunk_split(base64_encode(file_get_contents("success.pdf")));
  
  // Create the Plain text message to be sent in the email body
  $content_text = "Hello, World!! \nIs this a Plain Text alternative?";
  
  // Create the HTML message to be sent in the email body
  $content_html = "<html><body><h1>Hello, World!!</h1><p>This is <b>HTML</b> formatting.</p></body></html>";
  
  // Sending the email
  $to = "$email";
  $subject = "Test5-3.php :: $timestamp"; 
  
  $headers = "From: The Company <webmaster@example.com>\n";
  $headers .= "MIME-Version: 1.0\n";
  $headers .= "Content-Type: multipart/mixed; boundary=\"$random_hash\"\n";
  $headers .= "--$random_hash\n";
  $headers .= "Content-Type: application/pdf\n";
  $headers .= "Content-Transfer-Encoding: base64\n";
  $headers .= "Content-Disposition: attachment; filename=\"success.pdf\"\n\n";
  $headers .= "$attachment\n";
  
  $message = "Content-Type: multipart/alternative; boundary=\"$random_hash\"\n";
  $message .= "Content-Type: text/plain; charset=\"iso-8859-1\"\n"; 
  $message .= "Content-Transfer-Encoding: 7bit\n"; 
  $message .= "$content_text\n";
  $message .= "--$random_hash\n";
  $message .= "Content-Type: text/html; charset=\"iso-8859-1\"\n"; 
  $message .= "Content-Transfer-Encoding: 7bit\n"; 
  $message .= "$content_html\n";
  $message .= "--$random_hash--";
  
  // Send the data in an email
  $mail_sent = @mail ($to, $subject, $message, $headers, "[email]-froot@clarebyrnedesign.com.au[/email]");

 
(That's not the full script, but it is the relevant part of it. The full script is attached.)
 
Other variations of this code I have tried out include:
     - surrounding all the variables with ". .", eg:   $headers .= "--".$random_hash."\n";
     - sending the entire function as headers, instead of splitting it into message and headers, eg:   $headers = "From: The Company <webmaster@example.com>\n";
  $headers .= "MIME-Version: 1.0\n";
  $headers .= "Content-Type: multipart/mixed; boundary=\"$random_hash\"\n";
  $headers .= "--$random_hash\n";
  $headers .= "Content-Type: application/pdf\n";
  $headers .= "Content-Transfer-Encoding: base64\n";
  $headers .= "Content-Disposition: attachment; filename=\"success.pdf\"\n\n";
  $headers .= "$attachment\n";
  $headers .= "Content-Type: multipart/alternative; boundary=\"$random_hash\"\n";
  $headers .= "Content-Type: text/plain; charset=\"iso-8859-1\"\n"; 
  $headers .= "Content-Transfer-Encoding: 7bit\n"; 
  $headers .= "$content_text\n";
  $headers .= "--$random_hash\n";
  $headers .= "Content-Type: text/html; charset=\"iso-8859-1\"\n"; 
  $headers .= "Content-Transfer-Encoding: 7bit\n"; 
  $headers .= "$content_html\n";
  $headers .= "--$random_hash--";
 
Does anyone know why I would be having this problem? It seems that nothing I've tried will work!!
 
Thanks

I can seem to login it tells me to check my password and username but i dont know the username and password are correct here is my whole code 

<?php
	//start the sessoin
	session_start();
	
	//connect to db
	require "scripts/connect.php";
	
	$username = $_POST['username'];
	$password = $_POST['password'];
	
	$username = mysqli_real_escape_string($db,$username);
	$password = mysqli_real_escape_string($db,$password);

	if(isset($_POST['loginbtn'])){

	if(!empty($username) && !empty($password)){
	
	//sql command
	$getstaff = "SELECT * FROM `users` WHERE `username` = '$username'";
	
	//execute the query 
	$query = mysqli_query($db,$getstaff);
	
	//get the number of rows
	$num_rows = mysqli_num_rows($query);
	
	if($num_rows != 0){
	
	//get the info
	$rows = mysqli_fetch_assoc($query);
	
	//setting the data in indivaul variables
	$dbusername = $rows['username'];
	$dbpassword = $rows['password'];
	
	//getting the password the user enter and making it hash
	//in order for it to match in the database
	$password = md5($password);

	if($dbusername === $username && $dbpassword === $password){
	
		//create the session
		$_SESSION['username'] = $username;
		//redircet them to the control panel
		header("location: controlpanel.php");
	
	}else
		$msg = "Please check your username or password";
	}else
		$msg = "User does not exist";
	}else
		$msg = "Please enter your username and password";
	}
?>

This is where it is giving me a hard time

	if($dbusername === $username && $dbpassword === $password){
	
		//create the session
		$_SESSION['username'] = $username;
		//redircet them to the control panel
		header("location: controlpanel.php");
	
	}else
		$msg = "Please check your username or password";

Any ideas why its not letting me enter

First time poster so please bear with me.  Is there a script that will show me the process of my php program as it runs, maybe log it to a log file each step so I can see what is happening.  Fairly new to php so there maybe something that I can set there.  I can read the code and follow it there but I'd like to see it in a log after each step or after each process completes.  I have done this in the old days of dbase and it really helps with the errors that can develop. 

Thanks in advance and what a great forum.

After getting my site hacked, I'm not really up for learning PhP, so I'm trying to use uMScript.   On the demo site, and when I just load up the files on my server, it will redirect upon log in. But when I then use my styling, for some reason the login_submit.php gives me a blank page and does not redirect, nor does it log the user in. I don't change anything except the positioning of the forum and the container around it, no PhP or JS changes, weird?


I can not seem to get a hold of the creator, nor can I find a user script that matches what I'm looking for. Heck, I'm so close to going mad, I'm even willing to pay someone to do the user PhP for me haha       Has anyone used this script successfully?     You can try it out he  http://mod-universe.com/index.php   Demo: http://www.ventureha.../demo/index.php (I couldn't get the demo credentials to log in, created a new user = Okriani, kieran09)

will the following code work to log any php errors i may have on the page this code is included?

Code: [Select]
ini_set('error_reporting', E_ALL);
error_reporting(E_ALL);
ini_set('log_errors',TRUE);
ini_set('html_errors',FALSE);
ini_set('error_log','./error_log.txt');
ini_set('display_errors',FALSE);

Hi,
I've been semi-teaching myself curl, and I decided to try logging into Facebook with it.
This is what I have so far...

<?PHP
$Email = strip_tags(str_replace(' ', '', $_POST['email']));
$Password = strip_tags(str_replace(' ', '', $_POST['password']));

$FBlogin = 'https://www.facebook.com/login.php?login_attempt=1';

$MoreData = "charset_test=%E2%82%AC%2C%C2%B4%2C%E2%82%AC%2C%C2%B4%2C%E6%B0%B4%2C%D0%94%2C%D0%84&lsd=u2nsf&locale=en_US&email=".urlencode($Email)."&pass=".urlencode($Password)."&default_persistent=0&charset_test=%E2%82%AC%2C%C2%B4%2C%E2%82%AC%2C%C2%B4%2C%E6%B0%B4%2C%D0%94%2C%D0%84&lsd=u2nsf";
$Cookie = "cookie.txt";

$fp = fopen($Cookie,'wb');   

$agent = "Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.12) Gecko/20050915 Firefox/1.0.7";
//login to facebook
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL,$FBlogin);   
curl_setopt($ch, CURLOPT_USERAGENT, $agent);
curl_setopt($ch, CURLOPT_COOKIEFILE, $Cookie);
curl_setopt($ch, CURLOPT_COOKIEJAR, $Cookie);
curl_setopt($ch, CURLOPT_REFERER, $FBlogin);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_HEADER, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_POSTFIELDS, $MoreData);
       
$Excecute = curl_exec($ch);
echo $Excecute;
?>


Right now I have it echo'ing out to see what's going wrong. I'm getting cookie errors from facebook saying that "I must have cookies enabled".
What could be wrong in my script that would trip such an error?
Thanks.

I have built a simple website to share photos with people at work.  And it is based on code - known to work - from a larger website that I built a few years ago.

When you land on the site, you have a login screen, and if the username/password match what is hardcoded, then I set $_SESSION['loggedIn'] = TRUE; and I redirect to the menu.php page.

If your credentials do not match, then I redirect the user to an access-denied.php (403) page.

Here is the problem...

Occasionally, when you try to log in you will get routed to the access-denied page.  But then if you try a second time you end on on the menu page.

I uploaded my otherwise working code to my hosted webserver, and now I can never seem to log in.

It seems to me that something is getting screwed up with the session variable?

Any ideas what could be causing this strange behavior?

Hi guys,

I got a little bit of an issue. I have a register page, which works fine and submits to itsself, however i also have a login page which currently has no errors but doesnt allow any1 to log in.

If some1 can see why that will be great, as this is causing so many issues. This is the last step i cant get past.

Here is the code
Code: [Select]
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>
<title>Forensics E-learning Package</title>
    <script type="text/javascript" src="start.js"></script>

<link rel="stylesheet" type="text/css" href="style.css" />
</head>
<body>
<div id="wrapper">
<div id="header">
<div id="toplinks">
   

</div>
  </div>
<div id="menu">
<ul>
<li><a class="selected" href="index.html">Home</a></li>
<li><a href="index.php">Initial Quiz</a></li>
<li><a href="about.php">About</a></li>
            <li><a href="member.php">Member Section</a></li>
     

</ul>
  </div>
<div id="content">
<div id="main">

<h1>Forensics E-Learning Package</h1><BR /></head>
            Login to the User Profiled E-Learning Course which is specifically aimed to raise awareness in computer forensics. 
<?php
$submit =&$_POST['submit'];


if(isset($submit))
{
if($username && sha1($password))
{
$username =&$_POST['username'];
$password =&$_POST['password'];

$_SESSION['$username'] = $username;
$_SESSION['$password'] = sha1($password);

$connect = mysql_connect("localhost","root", "") or die ("Couldn't Connect!");
mysql_select_db("userlogin", $connect) or die("Couldn't find db");

//$con = mysql_connect('userscores.db.7767668.hostedresource.com','userscores','L3tt3r09');
//mysql_select_db('userscores', $con);

$query = mysql_query("SELECT * FROM users WHERE username=' $username'");
$numrows = mysql_num_rows($query);

if ($numrows!=0)
{
//code to login
while ($row = mysql_fetch_assoc($query))
{
$dbusername = $row['username'];
$dbpassword = $row['password'];
$dbscore = $row['score'];
$dbdclty = $row['dclty'];
$dbid = $row['id'];
$dbnewdclty = $row['newdclty'];
}

$_SESSION['id'] = $dbid;
$_SESSION['PreviousScore'] = $dbscore;
$_SESSION['dclty'] = $dbdclty;
$_SESSION['newdclty'] = $dbnewdclty;



if ($username==$dbusername&&sha1($password)==$dbpassword)
{
$username==$dbusername;
}
else
{
echo ("Incorrect Password!");
}
}
else
{
echo("That user doesn't exist!");

}


}
else
{
echo("Please enter a username and password!");
}

echo ("You Successfully Logged In!");
}
else
{
?><BR /><BR /><?php
echo("Please Log In!");

}
if ($submit)
echo "Logged In Successfully!";
?>

<BR /><BR />

<form action='index.php' method='POST'>
        Username:
          <input type='text' name='username'><BR />
        Password:
         <input type='password' name='password'><BR />
        <input type='submit' value='Log In'>
    </form> <p><BR /><BR />
    <a class="button" href='register.php'><span><button class="button" id="save">Register</button></span></a>

</div>
<div id="right">
<h2>Right Menu</h2>
<div class="rightitem">
<ul>
<li><a class="selected" href="index.html">Home</a></li>
<li><a href="index.php">Initial Quiz</a></li>
<li><a href="about.php">About</a></li>
            <li><a href="member.php">Members Area</a></li>
            <li><a href="contact.php">Leave Feedback</a></li>
</ul>
</div>
</div>
  </div>
<div class="clearbottom"></div>
<div id="footer"></div></div>
</body>
</html>
Thanks for any help

Lance

Hi Guys. Really Stuck here. I am making a website, its basicall an online shop of sorts. I am making a login page for our customers and an admin page for us lot to upload new products to sql etc. Whats its meant to do is accept the username and pw then allow me to access the adminpage. Although its just saying that user doesnt exist all the time. I dont know why becuase the details are correct.

admin_login page is the code below.

<?php
session_start();
if(isset($_SESSION["manager"])){
header("location:index.php");
exit();
}

?>
<?php
if(isset($_POST["username"])&&isset($_POST["password"])){

$manager = preg_replace('#[A-Za-z0-9]#i','',$_POST["username"]);
$password = preg_replace('#[^A-Za-z0-9]#i','',$_POST["password"]);

include"../storescripts/connect_to_mysql.php";
$sql = mysql_query("SELECT id FROM admin WHERE username='$manager' AND password='$password' LIMIT 1");

$existCount = mysql_num_rows($sql);
if($existCount == 1){
while($row = mysql_fetch_array($sql)){
$id = $row["id"];
}
$_SESSION["id"] = $id;
$_SESSION["manager"] = $manager;
$_SESSION["password"] = $password;
header("location: index.php");
exit();
}else{
echo 'That Information Is Incorrect. Try again <a href="index.php">Click Here</a>';
exit();
}
}


?>


and now the index.php which is what the admin see when they log in successfully.

<?php
session_start();
if(isset($_SESSION["manager"])){
header("location: admin_login.php");
exit();
}
//Be Sure To Check That This Manager Session Value Is Infact In The DataBase
$managerID = preg_replace('#[^0-9#i','',$_SESSION["id"]);
$manager = preg_replace('#[^A-Za-z0-9]#i','',$_SESSION["manager"]);
$password = preg_replace('#[^A-Za-z0-9]#i','',$_SESSION["password"]);

include "../strorescripts/connect_to_mysql.php";
$sql = mysql_query("SELECT * FROM admin WHERE id='$managerID' AND username='$manager' AND password='$password' LIMIT 1");

$existCount = mysql_num_rows($sql);
if($existCount == 0){
header("location:../index.php");
exit();
}

?>

Hi all,

My session is not destroy even after I have click 'log out'

The user will only log out only when I have closed the browser. May I know what could have caused the problem?
Below is my code

My admin.php page
Code: [Select]
<?php
// For logging out
    if (isset($_SESSION['username'])) {
echo '<a href="admin_logout.php">Log Out (' . $_SESSION['username'] . ')</a>';

// Connect to the database 
$dbc = mysqli_connect(DB_HOST, DB_USER, DB_PASSWORD, DB_NAME); 

// Retrieve the user data from MySQL
$query = "SELECT tutor_id, name FROM tutor_profile ORDER BY name ASC";
$data = mysqli_query($dbc, $query);

  
// Loop through the array of user data, formatting it as HTML
echo '<h4>Latest members:</h4>';
echo '<table>';
while ($row = mysqli_fetch_array($data)) {
echo '<td><a href="viewprofile.php?tutor_id=' . $row['tutor_id'] . '">' . $row['name'] . '</a></td></tr>';
}
echo '</table>';

mysqli_close($dbc);
}
else {
echo '<a href="admin_login.php">Log In</a>';
}
?>


My logout.php page
Code: [Select]
<?php
  // If the user is logged in, delete the session vars to log them out
  session_start();
  if (isset($_SESSION['admin_id'])) {
    // Delete the session vars by clearing the $_SESSION array
    $_SESSION = array();

    // Delete the session cookie by setting its expiration to an hour ago (3600)
    if (isset($_COOKIE[session_name()])) {
      setcookie(session_name(), '', time() - 3600);
    }

    // Destroy the session
    session_destroy();
  }

  // Delete the user ID and username cookies by setting their expirations to an hour ago (3600)
  setcookie('admin_id', '', time() - 3600);
  setcookie('username', '', time() - 3600);

  // Redirect to the home page
  $home_url = 'http://' . $_SERVER['HTTP_HOST'] . dirname($_SERVER['PHP_SELF']) . '/admin_login.php';
  header('Location: ' . $home_url);
?>

I would like to create a script that can login to my account on xbox.com, check my messages, and store messages into my database (only messages that have not been stored yet).

The purpose for this is: I want my users to register their accounts using their Xbox Live Username. To make them verify their Username they send a message to my Xbox Account with a message saying 'Verify" or something. My script will check my xbox account's messages for new messages with the body saying 'Verify' to verify the username, and store it in a database that it has been successfully verified.

How do I go about doing this?

i am trying to log out a user after account deletion by re-directing them.  for some reason, the directories are not being removed, and i am not being redirected after that. 

As long as it's SQL injection proof, would it be alright for me to let non-members add comments to a post and give the Author the ability to delete them?    

This topic has been moved to Miscellaneous.

http://www.phpfreaks.com/forums/index.php?topic=353007.0