PHP - Trying To List Users Events By User Id Getting This Error..

The following code is what I have already done, but I have just realised that the way I have done this will not enable me to display the online users in alphabetical order, I do not know a way how to do this. Any help or suggestions?

Thanks


$friend_query = mysql_query("SELECT * FROM friend_request WHERE user='{$user_id}'");
$friend_id_array = "";
while($row = mysql_fetch_assoc($friend_query))
{
$friend_id = $row['friend_id'];
$more_query = mysql_query("SELECT * FROM friend_request WHERE friend_id='{$user_id}'");

while($row_more = mysql_fetch_assoc($more_query))
{
$more_friend_id = $row_more['user'];
//all friends in an array
$friend_id_array = $friend_id_array.$friend_id."/".$more_friend_id;


$friend_id_array = explode('/', $friend_id_array);
$friend_count = count($friend_id_array);

//how many of the friends are online
$online_count = 0;
for($i=0;$i<$friend_count;$i++)
{
$query_online = mysql_query("SELECT loggedin, fname, mname, lname FROM users WHERE id='{$friend_id_array[$i]}'"); //get loggedin and names
$row = mysql_fetch_assoc($query_online);
$loggedin = $row['loggedin'];
if($loggedin == "1") //if logged in
{
$online_count++; // final number off people online
}
}
}
}

I am a little confused with the difference between Symfony Events and Event Listners and Doctrine Events.

The Doctrine events look pretty straight forward and are primary used for entity persistence, and I have outlined my understanding below:

Doctrine Lifecycle Callbacks. Single entity and single Doctrine event. Method in class. Good performance. Don't have access to Symfony services (all others do) Doctrine Lifecycle Listeners. All entities and single Doctrine event. Separate class and configured in config.service.yaml. Doctrine Entity Listeners. Single entities and single Doctrine event. Separate class and configured in config.service.yaml. Doctrine Lifecycle Subscribers. All entities and multiple Doctrine event. Must implement EventSubscriber (or probably EventSubscriberInterface) Separate class and configured in config.service.yaml.

I am more confused with the Symfony events and my interpretation as listed below is likely incorrect.

Symfony Event Listeners. Single Symfony event. Separate class and configured in config.service.yaml. More flexible because bundles can enable or disable each of them conditionally depending on some configuration value. Symfony Event Subscribers. All specified Symfony events. Must implement EventSubscriberInterface Separate class but NOT configured in config.service.yaml but in class. Easier to reuse because the knowledge of the events is kept in the class rather than in the service definition.

Are they used for totally different purposes or can one use Symfony events to also deal with entities?  Where would one want to use these Symfony events?

Is there a reason why Doctrine Lifecycle Subscribers are located in src/EventListener and not src/EventSubscriber

Are Doctrine Lifecycle and Entity Listeners really only for a single event as I interpret the documentation states, or is it one method per Doctrine event such as the following?

    App\EventListener\SearchIndexer:
        tags:
            -
                name: 'doctrine.event_listener'
                event: 'postPersist'
            -
                name: 'doctrine.event_listener'
                event: 'postUpdate'

 

Hi.

I'm trying to display all the missing fields (errors) when the user hits SUBMIT.

My logic:

IF there is NO EMAIL THAN add $errortrack array = $errormsg[EMAIL]

IF there is NO OLDPASSWORD THAN add $errortrack array = $errormsg[OLDPASS]

and so on.

At the end, Print ALL the Error messages on the form using <?php foreach ( $errortrack as $key => $value) { 
                echo "<dt>$key:</dt>"; } ?>

The only thing it prints out is "0:" ever though there should be other errors.

What am I missing? 

Site Link http://www.fusionfashionhair.com/newpassform.php
My PHP Code:

<?php
session_start();
?>
<?php
$submit = $_POST['submit'];
// Form Data
$email = $_POST['email'];
$password_old = $_POST['password_old'];
$password_new = $_POST['password_new'];
$password_new_con = $_POST['password_new_con'];
$errorcount = 0;

$errormsg['Email'] = "Email Entered is Invalid";
$errormsg['OldPass'] = "Old Password Entered is Incorrect";
$errormsg['NewPass'] = "New Password Entered is Incorrect";
$errormsg['NewPassCon'] = "New Confirmed Password Entered is Incorrect";
$errormsg['SecCode'] = "Security Code is Incorrect";
$errormsg['NoErr'] = "No Errors, Continue";

$errortrack = array ($errormsg['NoErr']);

if ($_POST[submit]){
    if ($errorstop = "go") {
    $errorstop="go";
    while ($errorstop<>"stop") {
        // check for existance
      if ($email) {
            echo "True - Continue 1";
            echo "<p>----------</p>";
        } else {
            $errortrack = array ($errormsg['Email']);
            $errorcount++;
            $errorstop="stop";
        }
            
        // check for existance
      if ($password_old) {
            echo "True - Continue 2";
            echo "<p>----------</p>";
        } else {
            $errortrack = array ($errormsg['OldPass']);
            $errorcount++;
            $errorstop="stop";
        }        

        // check for existance
      if ($password_new) {
            echo "True - Continue 3";
            echo "<p>----------</p>";
        } else {
            $errortrack = array ($errormsg['NewPass']);
            $errorcount++;
            $errorstop="stop";
        }        

        // check for existance
      if ($password_new_con) {
            echo "True - Continue 4";
            echo "<p>----------</p>";
        } else {
            $errortrack = array ($errormsg['NewPassCon']);
            $errorcount++;
            $errorstop="stop";
        }            
        $errortrack = array ($errormsg="EVERYTHING IS OK");
        $errorstop="stop";
    }//End While Loop

    } else {
        while($errorcount>=0) {
            // Test display all error messages
            echo "<p>----------</p>";
            echo "<p>Error Count = '$errorcount'</p>";


        }
        die ("PLEASE FILL IN ALL FIELDS");
        
    }
}
?>


My Form Code with the PRINT ERROR:
Code: [Select]
    <form action='newpassform.php' method='post' id="regform">
      <fieldset>
        <legend>Change Password</legend>
        <p><?php foreach ( $errortrack as $key => $value) { 
                echo "<dt>$key:</dt>"; } ?></p>
        <p>
          <label for='email'>Email:</label>
          <input name='email' type='text' maxlength="25" value='<?php echo $email; ?>'/>
        </p>
        <p>
          <label for='password_old'>Old Password:</label>
          <input name='password_old' type='password' maxlength="32" />
        </p>
        <p>
          <label for='password_new'>New Password:</label>
          <input name='password_new' type='password' maxlength="32"/>
        </p>
        <p>
          <label for='password_new_con'>Confirm Password:</label>
          <input name='password_new_con' type='password' maxlength="32"/>
        </p>
        <p><span class="required">*</span> Note, username and password are case sensitive</p>
        <p>Forgot your password? <a href="forgot_password.php">Click Here</a></p>
        <p>Login <a href="login.php">Here</a></p>
       <h2>Security Check</h2>
      <p>Enter letters below exactly how they are displayed.  Letter are case sensitive. </p>
      <br />
      <img src="captcha.class.php?usefile=1" />
      <!--OR-->
      <!--<img src="image.php" />-->
     
      <input id='user_code' name='user_code' type='text' size='10' >
      <p>&nbsp;</p>
        <input class="reset" type='reset' value='Cancel' name='reset'>
                <input class="submit" type='submit' value='Continue' name='submit'>
      </fieldset>
    </form>
    <!--End of Form-->

Hey Everyone,
I'm getting this error when I submit my contact form.
Parse error: syntax error, unexpected $end in /home1/user/public_html/contact/process.php on line 22

I got this code from a video on youtube. http://www.youtube.com/watch?v=rdsz9Ie6h7I
If I made a mistake or TYPO please let me know. Thanks!

Here's my code:

<?php
$emailSubject = 'Contact Form Submission';
$sendto = 'info@mydomain.com';

$nameField = $_Post['name'];
$emilField = $_Post['email'];
$phoneField = $_Post['phone'];
$SubjectField = $_Post['subject'];
$messageField = $_Post['message'];
$body = <<<EOD
<br><hl><br>This Form was submitted from the Domain.com contact page.<br>
Name: $name<br>
E-Mail: $email<br>
Phone: $phone<br>
Subject: $subject<br>
Message: $message<br>
BOD;

$headers = "FROM: $email\r\n";
$headers .="Content-Type: text/html\r\n";
$success = mail($sendto, $emailSubject, $body, $headers);
?>

Hello all, i require some assistance in a bit of PHP/MySql code.

I have a website setup with register/login scripts already wrote, i also have a basic members page for now, that has there user ID assigned to it for example members.php?id=$id, which is there ID from the database.

I have a members list which shows all members with links to there profiles, now i when i mouse over the link, it will says members.php?id=1 and so on, which is correct but when clicking on any of the members to go to there profile it is my own details that is shown on there profile instead of theres.

members.php
<?php
session_start();
mysql_connect("localhost","root") or die(mysql_error());
mysql_select_db("hireacoder") or die(mysql_error());

$user = $SESSION['username'];
$sql = mysql_query("SELECT * FROM users WHERE username='$user'");
$row = mysql_fetch_assoc($sql);
echo $row['username'];
echo'<br>';
echo $row['fname'];
echo'<br>';
echo $row['lname'];
echo'<a href="users.php">Users</a>';
?>

users.php
<?php
session_start();
mysql_connect("localhost","root") or die(mysql_error());

mysql_select_db("hireacoder") or die(mysql_error());
echo "<table border='0'>
<tr>
<th>UserName</th>
</tr>";
$sql = mysql_query("SELECT * FROM users ORDER BY ID");
while($row = mysql_fetch_assoc($sql))
  {
  $id = $row['id'];
  $username = $row['username'];
  echo"
  <tr>
  <td>
  <a href='members.php?id=$id'>".$username."</a>
  </td>
  </tr>";
  }
echo "</table>";
?>

Now i know what the problem is, the query is getting the details from the DB with the username = the session user which is me and that is why my details show up on all profiles, but i dont know any other way to do it, any help with be very apprciated thanks you.

I have a server script with which i have allowed the user to mark any item as favorite, but i also want another script through which the user can unfavorite the same item if they want and that item should be deleted from their favorite list. I have kept the same table for both favorite and unfavorite code, therefore i have used update query to update the details. For this purpose i have a code, but its not working, as i am new in the programming field would appreciate if someone could provide the correct codes

 
<?php
require_once('config.php');

$favorite = $_REQUEST['favorite'];

    $unfavorite = $_REQUEST['unfavorite'];

    $id=$_REQUEST['id'];

    

$unfavoritedeal=mysql_query("SELECT * FROM favoritedeals where id='".$id."'"); //favoritedeals is the name of the table



if($row=mysql_fetch_array($unfavoritedeal))

     {

     $favorite=$row['favorite'];

     $unfavorite=$row['unfavorite'];

}



$myfavorite=(isset($_REQUEST['favorite'])?$_REQUEST['favorite']:$favorite);

         $myunfavorite=(isset($_REQUEST['unfavorite'])?$_REQUEST['unfavorite']:$unfavorite);

        

$update = mysql_query("update favoritedeals set favorite = '".$myfavorite."', unfavorite = 1 where id = '".$id."'");    



if(unfavorite="1" where id='".$id."')

{

"delete from favoritedeals WHERE id= '".$id."'";

}    





$posts[0]['message'] = 'favorite list updated';

    $selectt = mysql_query("select * from favoritedeals where id = '".$id."'");

    $results = mysql_fetch_assoc($selectt);

    $posts[0]['detail'] = $results;

    header('Content-type: application/json');

    echo json_encode($posts);

?>

Hello   I am trying to work out how many regular users I have to my site and how long those users tend to be users..   So, I have a table that logs every time a user visits my site and logs in, it stores the date / time as a unix timestamp and it logs their user id.   I started by getting the id's of any user who logs in more than 5 times in a specified period, but now I want to extend that...  

 
SELECT userID as user, count(userID) as logins FROM login_history where timestamp > UNIX_TIMESTAMP('2014-06-01 00:00:00') and timestamp < UNIX_TIMESTAMP('2014-07-01 00:00:00') group by user having logins > 5;
 

show list of files uploaded by current session user to the database. I want to show different users when they log in to the website...they can see a list of old files that they have uploaded. can anyone tell me the code/script to this.....please, ty

Hey guys, I can't wrap my head around how to make this work right...

I have three tables:
Code: [Select]
CREATE TABLE `games` (
  `g_id` int(11) NOT NULL AUTO_INCREMENT,
  `name` varchar(150) DEFAULT NULL,
  PRIMARY KEY (`g_id`));

CREATE TABLE IF NOT EXISTS `game_player` (
  `r_id` int(11) NOT NULL AUTO_INCREMENT,
  `p_id` int(11) DEFAULT NULL,
  `g_id` int(11) DEFAULT NULL,
  `bool` int(1) NOT NULL DEFAULT '0',
  PRIMARY KEY (`r_id`));

CREATE TABLE IF NOT EXISTS `players` (
  `p_id` int(11) NOT NULL AUTO_INCREMENT,
  `playerid` varchar(150) NOT NULL,
  PRIMARY KEY (`p_id`),
  UNIQUE KEY `playerid` (`playerid`));

The players table is my list of users, and they're tied to the list of games via the game_player table.

So here's my issue... I'm trying to show the full list of games, and then check mark each record where the player does play it. 
This is what I have so far - it shows all the games,  but it's not checking the boxes.

Code: [Select]
$result = mysql_query("SELECT * FROM games") or die(mysql_error());
while($row = mysql_fetch_array($result))
{
$newquery = "SELECT * FROM game_player, players
WHERE game_player.p_id = players.p_id
AND game_player.g_id = ".$row['g_id']. "
AND players.playerid = {$userid}";
$query = mysql_query($newquery) or die(mysql_error());
if($query['bool'] == 1) { $set_checked = " CHECKED";
}
else{ $set_checked = "";
}
echo "<input type=\"checkbox\" name=\"box1\" value=\"".$query['g_id']."\"" . $set_checked . "/>".$row['name']."<br />\n";
}

I built an application for a client of mine using PHPRunner about 3 years ago. It has functioned perfectly right up to today when they notified me that they were unable to Export any records. I have attached the error report that comes up when you run Export function.

According to the report it is unable to find a file or path. I have been on to server with FTP client and all the paths, files and contents are present.

Can anyone please give me any advise on what might suddenly cause this error after many years. All other functionality of the Database is fine. 

Many thanks,

Carl.

Edited August 1, 2019 by wscwt01
Spelling error

on all my secured pages at the the very top the code is
Code: [Select]
<?php
require ("u_check_login.php");
?>
and then the u_check_login.php code is
Code: [Select]
<?php
require('database.php'); //Include DB connection information
$ip = mysql_real_escape_string($_SERVER["REMOTE_ADDR"]); //Get user's IP Address
$email = mysql_real_escape_string($_COOKIE['uemail']); //Get username stored in cookie
$pp = mysql_real_escape_string($_COOKIE['pp']);
if ($pp == 1){
$sessionid = mysql_real_escape_string($_COOKIE['sessionid']); //Get user's session ID
$check = mysql_query("SELECT * FROM `users` WHERE `email` = '$email' AND `session_id` = '$sessionid' AND `login_ip` = '$ip' AND `pp` = '1' ") or die(mysql_error()); //Check if all information provided from the user is valid by checking in the DB
$answer = mysql_num_rows($check); //Return number of results found. Equal to 0 if not logged in or 1 if logged in.
if ($answer == 0 || $sessionid == '') { //Check if login is valid. If not redirect user to login page
header('Location: ulogin.php');
exit();
}
$row = mysql_fetch_array($check);
$email = stripslashes($row['email']);
}else{
header('Location: ulogin.php');
}
?>
and this error is being displayed on my page that is supposed to not have let me on because i was not logged in
Code: [Select]
Warning: Cannot modify header information - headers already sent by (output started at /home/content/03/8587103/html/pinkpanthers/pinkpanthers.php:1) in /home/content/03/8587103/html/pinkpanthers/u_check_login.php on line 17

I just discovered that I have a major security flaw with my website.
Anyone who logs in to the website can easily access other users information as well as delete and edit other users information just by changing the ID variable in the address bar.
I have user ID Session started on these pages but still people can do anything they like with other users information just by editing the address bar.
For example if your logged in in the address bar of www.mywebsite.com/delete_mystuff.php?id=5 and change the "5" say to a "9" then you will have access to user#9 information.

Every important page that I have has this code:
Code: [Select]
 session_start();

if (!isset($_SESSION['user_id'])) {
// Start defining the URL.
         $url = 'http://' . $_SERVER['HTTP_HOST'] . dirname($_SERVER['PHP_SELF']);
// Check for a trailing slash.
         if ((substr($url, -1) == '/') OR (substr($url, -1) == '\\') ) {
         $url = substr ($url, 0, -1); // Chop off the slash.
}
// Add the page.
$url .= '/index.php';
ob_end_clean(); // Delete the buffer.
header("Location: $url");
exit(); // Quit the script.
} else {
                //Else If Logged In Run The Script

if((isset($_GET['id'])) && (is_numeric($_GET['id']))) {
         $id = (int) $_GET['id'];
} elseif ((isset($_POST['id'])) && (is_numeric($_POST['id']))) {
         $id = (int) $_POST['id'];
} else {
         echo ' No valid ID found, passed in url or form element';
        
         exit();
}



What am I doing wrong?
Please help if you know how to correct this.

Many thanks in advance.

I am trying to insert a new user into my database from my php code.

This is the error message that I am getting from the webpage:

Quote

Error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'order, previousOrder) VALUES ('c_s@gmail.com','test','3','callulm','Smith','17' at line 1


This is the code that I am using:

Code: [Select]
<?php
$con = mysql_connect("localhost","root","");

if (!$con)
  {
  die('Could not connect: ' . mysql_error());
  }
  
mysql_select_db("deliverpizza", $con);



$sql="INSERT INTO customer(userName, password, privilege, firstName,  lastName, address, postCode, order, previousOrder)
VALUES
('$_POST[username]','$_POST[password]','$_POST[privilege]','$_POST[firstname]','$_POST[lastname]','$_POST[address]','$_POST[postcode]','$_POST[order]','$_POST[previousOrder]')";

if (!mysql_query($sql,$con))
  {
  die('Error: ' . mysql_error());
  }
echo "1 record added";

mysql_close($con)
?>

This topic has been moved to Third Party PHP Scripts.

http://www.phpfreaks.com/forums/index.php?topic=349834.0

Hi All,

I am currently struggling with the my user info function which is supposed to display an image on my profile page along with the following parts of information taken from my database.

The error is a mysql error stating that the $info = mysql_fetch_assoc($result); is not a valid arguement.

Code: [Select]
function fetch_user_info($uid)
{

$uid=(int)$uid;
       
    $sql = "SELECT
`user_id AS `id`
                `user_username` AS `username`,
                `user_firstname` AS `firstname`,
                `user_lastname` AS `lastname`,
                `user_email` AS `email`,
                `user_location` AS `location`,
                `user_about` AS `about`,
                `user_gender` AS `gender`
FROM `users`
WHERE `user_id` = {$uid}";
                                 
        $result = mysql_query($sql);
       
        $info = mysql_fetch_assoc($result);
       
        $info['avatar'] = "core/user_avatars/{$info['id']}.jpg";

return $info;

}
I have looked through the code a few times, but I can tell what is wrong.

I have included below the profile page code in case it may be an issue there.

Code: [Select]
<?php

include('core/init.inc.php');

$userinfo = fetch_user_info($_GET['uid']);

?>

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title><?php echo $userinfo ['username']; ?>'s Profile</title>
</head>
<body>
<div>
   
    <?php

if($userinfo == false)
{

echo 'Sorry, the user does not exist.';

}
else
{
?>
        <h1><?php echo $userinfo ['firstname']; ?> <?php echo $userinfo ['lastname']; ?></h1>
            <img src="<?php echo $userinfo['avatar'];?>" alt="avatar"/>
    <p>Username: <?php echo $userinfo ['username']; ?></p>
    <p>First Name: <?php echo $userinfo ['firstname']; ?></p>
    <p>Last Name: <?php echo $userinfo ['lastname']; ?></p>
            <p>Gender: <?php echo ($userinfo ['gender'] == 1) ? 'Male' : 'Female'; ?></p>
    <p>Email: <?php echo $userinfo ['email']; ?></p>
    <p>Location: <?php echo $userinfo ['location']; ?></p>
    <p>About: <?php echo $userinfo ['about']; ?></p>
           
    </div>
    <?php
}
?>
</body>
</html>
Thanks

Jamie