PHP - Check Users

im new , and ... 

i hate tutorials .. books .. anything that does not make u part of the deal -  .. thats why i started by creating something and learning from my mistakes at the same time .. i like this way of learning ..

soo , while im building and trying things out .. i started thinking how the server know the person with this link is really U ? .. when u start just linking pages to each other its just a matter of finding out what is the link to do what ever u want with the users personal pages ! .. i know my questions r stupid but i just hate to go and write lessons without any effort

im confused with the concept of SESSIONS and COOKIES , r they the unswer to this security problem ? how u can work with them .. ?

im not asking for codes .. just general ideas about users and how they control their profiles and stuff with full security ?

ill be very thankful if i get any answer ^^

I have used 

$sql = "SELECT id, username FROM $tbl_name ORDER BY username";
$result = $con->query($sql);
while ($row = $result->fetch_assoc())
{
    echo "<a href='editUser.php?id={$row['id']}'>{$row['username']}</a><br><br>\n";
    echo "<style>a {color: blue; text-decoration: none;} a:hover {color: #ff0000} body {background-color: #000;} </style>";
}

in euser.php which echo's out all the users in the database via an anchor tag and includes their id in the url. but when i click on their name i want to have options like: - change password - ban user e.t.c and i have tried 

$sql = "SELECT id FROM $tbl_name";
$result = $con->query($sql);
while ($row = $result->fetch_assoc()) {

echo "<a href='editUser.php?id={$row['id']}'> Change Password  </a>

in my other page editUser.php it posts Change Password Change Password Change Password and each change password has the 3 ids of the users   this is confusing me.

how can I list a user from a table and show the results in a grid with different color eg frist in blue color second on white , 3rd on blue 4th in with etc I do need to set select command and I have db name and ip on a file called dbconfig.php from wd calendar so I just need to read the info   ps: I cant post links so search for wd calendar and see the dbconfig.php in php folder

I would get the ip address of the user that is on the site. I used $ip = $_SERVER['REMOTE_ADDR']; and it doesn't show my actual ip. Is it because im using an apache server on my computer.

Hi. my browser ist telling me there are errors on line 3 and 4 for my code. It says summin like Notice: HTTP_CLIENT_IP and HTTP_X_FORWARDED_FOR are unidentified:

below is the code see if you can spot anything btw i copied down the code from beginner php tutorial 66 if you type that into youtube .
Code: [Select]
<?php

$http_client_ip = $_SERVER['HTTP_CLIENT_IP'];
$http_x_forwarded_for = $_SERVER['HTTP_X_FORWARDED_FOR'];
$remote_addr = $_SERVER['REMOTE_ADDR'];

if (!empty($http_client_ip)){
   $ip_addr = $http_client_ip;
   
}else if(!empty($http_x_forwarded_for)){
   $ip_addr = $http_x_forwarded_for;
}else{
   $ip_addr = $remote_addr;
}

echo $ip_addr;
?>

Thanks

MOD EDIT: code tags added.

 Hi guys,

im just trying to work out an app in my head and on paper. im just wondering..
when a user registers they can choose an Avatar 100px by 100px jpg, when they upload one would i then grab the file and store all Avatars in a avatar image folder and rename it to something like.. avatar[user_id].jpg and keep them all in the same folder.

or

would i crate a folder called users, each user gets their own folder with files like avatar.jpg and it finds the [user_id] folder and pulls the avatar out from that, or is there a more prefered method?

cheers

Hi, I am having serious issues with compatibility with IE7 and below (and even 8 but they should be rectified). There is no way I can have these problems finished before the site is online, so I want to redirect users to a page apologizing and recommending alternative browsers.

Is this possible?


*Please don't reply just to tell me that banning an entire browser is bad, I know it is - I plan to sort it out. But this is an extra curricular project and I'm halfway through my penultimate year of uni, so IE and it's utterly shambolic rendering of CSS is not my priority. Thankyou*

I have a mobile app. They visit a web site where they login. The videos live above web root, thus making it impossible for anyone to directly link to the video file. On iOS, I made a PHP script that checks if they are logged in first and if they are I use a range download method that acts like streaming. Works great! On android however, the script isn't working..lame.

So I was trying to think of other methods to deliver the video, but first checking if they are logged in. My idea was to check if they are logged in, if they are, copy the video from above web root to a temp directory in web root and give it a uniqid name and insert it into the DB. That ID will then expire after two hours and I would delete the video.

Ok that sounds like it would work for both phones, except with high traffic, that could be problematic.

My next idea was symlinks, but I don't know much about them other than they are a shortcut. Could I potentially use a symlink to give the logged in user a video file that lives above web root?

Morning(at least for me anyway) All,

I am currently integrating a facebook/style chat system into my webpage. I am going to build the active user list myself but need a little guidance on how to list my users which are online and how to detect when the have gone.

When my users login i store only their userid in a session like many login systems. When they login i could simply add their name to a active_users table, but how would i detect whether they are still alive?

Any help would be great.
Thanks
Sam

Hey guys.

So I'm about to start developing a Private Messaging system for a CMS that I already have set up and working fine, and I had a problem I would like to solve before I start. I would like to add a feature that allows users to send the message to one or more users at a time. Whether it be by typing in the different usernames seperated by commas in the input field or another method, I have no idea how I'd handle submitting this into the database.

I don't want it to be like a group conversation though, I want it to submit the message seperately for each user they included in the receptitents field.

Any suggestions on how to go about doing this?
Gathering it'd be like an array of some sort but I have very little experience with arrays from forms and how to seperate them.

Hi, for my coursework i need to make a microblogging website, similar to that of Twitter

I have created a MySQL Database, and also the login and registration forms
I am able to log in as a user and also change user submitted information i.e. Name, About Me etc

The problem i am having is that when i access the logged in users profile page e.g. John Doe, i can access it fine
However, when i wish to access say James Smith or any other user, i am redirected back to John Doe's profile

login.php
Code: [Select]
$query = mysql_query("SELECT * FROM users WHERE username = '$user'") or die(mysql_error());
      $login = mysql_fetch_array($query);
     
      if(md5($pass) == $login['password'])
      {
         $_SESSION['user'] = $login['id'];
         header("Location: home.php");   
      }

home.php
Code: [Select]
<?php
include ('includes/connect.php');
session_start();

$query = mysql_query("SELECT * FROM users WHERE id = " . $_SESSION['user'] . "");
$user = mysql_fetch_assoc($query)

?>


<a href="profile.php?id=<?php echo $user['id']; ?>"> Profile | </a>


users.php
Code: [Select]
<?php
include ('includes/connect.php');
session_start();

$query = mysql_query("SELECT * FROM users WHERE id = " . $_SESSION['user'] . "");
$user = mysql_fetch_assoc($query)

?>

<?php
$members = mysql_query("SELECT * FROM users");
while($allusers = mysql_fetch_assoc($members))
{
   echo
   "<table>
    <tr>
    <td>
    <a href=\"profile.php?id=" . $allusers['id'] . "\">" . $allusers['fullname'] . "</a>     </td>
    </tr>
    </table>";   
}

?>

In all honesty i do know that the fault lies with the $_SESSION bit of the code since everything i do will only access the profile of the user who is logged in

However i dont know how i am able to allow the logged in user to access their own profile as well as view other people's profile.



Another problem is how do i follow users?
I have a table called 'follow'
I have two columns, user_id and follower_id, both being foreign keys

However i honestly dont understand how to use PHP code to make users follow each other

If anyone could assist me with any part of this i would be very grateful


Thank You

So, I'm designing a website (who isn't?) and I created the basic framework for a users page from a tutorial I found. Using some previous knowledge I managed to make it display a few custom fields that are defined by the user. Everything works fine as is, but now I want to do a few things to it that I have not the slightest clue how to even begin...

Here is my user page code so far... and oh yes I'm using WordPress which is why I made it check manually for page status in my Page.php file.

<?php
if ( is_page('Users'))
{

echo "<ul id=\"UsersList\">";

/*
First we set how we'll want to sort the user list. You could sort them by:
------------------------
* ID - User ID number.
* user_login - User Login name.
* user_nicename - User Nice name ( nice version of login name ).
* user_email - User Email Address.
* user_url - User Website URL.
* user_registered - User Registration date.
*/
$szSort = "user_nicename";
/*
Now we build the custom query to get the ID of the users.
*/
$aUsersID = $wpdb->get_col( $wpdb->prepare("SELECT $wpdb->users.ID FROM $wpdb->users ORDER BY %s ASC", $szSort ));
/*
Once we have the IDs we loop through them with a Foreach statement.
*/

foreach ( $aUsersID as $iUserID ) :

/*
We use get_userdata() function with each ID.
*/

$user = get_userdata( $iUserID );


/*
Here we finally print the details wanted.
Check the description of the database tables linked above to see
all the fields you can retrieve.

To echo a property simply call it with $user->name_of_the_column.
*/

if($user->user_login != "Unknown") // don't show the placeholder for [unknown] author

{
echo '<a href="">' . get_avatar( $iUserID, $size = '45', $border='0') . '</a>';
echo '<li>' . ucwords( strtolower(  $user->user_login ) ) . '</li>';

if($user->favorite_player != "")
{
echo '<li>' . $user->favorite_player . '</li>';
}
if($user->player_name != "")
{
echo '<li>' . $user->player_name . '</li>';
}
}
/*
     The strtolower and ucwords part is to be sure
     the full names will all be capitalized.
*/

endforeach; // end the users loop.

echo "</ul>";
};
?>


Problem one: This does NOT sort my name, despite the tutorial's insistence that it will. I have not even a guess as to why this is.

Problem two: I would like to either sort this list into two columns or paginate it or both but I am not sure how to do either.

Problem three: I want to insert some static text between the echo '<li>'  and the  . $user->player_name . '</li>'; so that it reads:

o Player Name: USER'S VARIABLE ' PLAYER NAME' HERE

Yes that 'o' is supposed to be the list item dot. I know how strings work, I just can't get my attempts to work out syntax-wise.

Any help would be greatly appreciated! Tutorials, answers, suggestions, examples, anything. The extent of my previous coding knowledge is several years of UnrealScript, so you can see why this simple thing is baffling me. Frankly I'm surprised this much of it works.

I have jobs portal where registered users posts new jobs searches This weekly newsletter will send all the jobs posted in the site (in a week) to the registered users but in a more personalized way: For example, posted jobs looking for designers should be sent to users registered as designers. what is the best way to do this? any recommendations? Thanks in advance.  

Hey guys and girls,

Okay so am trying to provide a rank for each user within my database but I cant seem to get it working here is my code

Code: [Select]
SELECT

`Table`.`Id`,
`Table`.`Photo`,
`Table`.`Fname`,
`Table`.`Lname`,
`Table`.`Gender`,
`Table`.`Gd`,
`Table`.`Bd`,
`Table`.`Point`,

(SELECT COUNT(*) + 1 FROM
(SELECT U.Id, T.`User Id` FROM `u_account` U
LEFT JOIN `score_system` T ON `T`.`User Id` = `U`.`Id`) x

WHERE Table.Point > (SELECT SUM(Good)-SUM(Bad) FROM `score_system` GROUP BY `User Id`)
) AS RANK

FROM
(SELECT
`C`.`Id`,
`C`.`Photo`,
`C`.`Fname`,
`C`.`Lname`,
`C`.`Gender`,

CASE WHEN COALESCE( SUM(`S`.`Good`), '') = '' THEN '0' ELSE SUM(`S`.`Good`) END AS Gd,
CASE WHEN COALESCE( SUM(`S`.`Bad`), '') = '' THEN '0' ELSE SUM(`S`.`Bad`) END AS Bd,

CASE WHEN COALESCE( SUM(`S`.`Good` - `S`.`Bad`), '') = ''
THEN '0' ELSE SUM(`S`.`Good` - `S`.`Bad`) END AS Point

FROM
`u_account` AS `C`
LEFT JOIN `score_system` AS `S` ON `C`.`Id` = `S`.`Child Id`

AND (SELECT Start FROM event_schedule WHERE CURDATE() >= Start AND End >= CURDATE()) < `S`.`Date`
AND (SELECT End FROM event_schedule WHERE  CURDATE() >= Start AND End >= CURDATE()) > `S`.`Date`

GROUP BY `C`.`Id`

) AS `Table`

ORDER BY Point DESC, Fname ASC

I cant seem to pull the users rank from this and its donig my head in I've tried different things and they all dont work this is perhaps as close as I've got to figuring it out.

This is the part that creates the users rank now its saying the Subquery returns more than 1 row but I just cant seem to think of away to implement this into my query above so that it displays the rank for each user.

Code: [Select]
(SELECT COUNT(*) + 1 FROM
(SELECT U.Id, T.`User Id` FROM `u_account` U
LEFT JOIN `score_system` T ON `T`.`User Id` = `U`.`Id`) x

WHERE Table.Point >= (SELECT SUM(Good - Bad) FROM `score_system` GROUP BY `User Id`)
) AS RANK

I'm also looking for this to display the same rank for both users with the same points so If bill and ben have 200points then they would both have the same rank but if bill was to have 201points then he would be higher up than ben.

So can anyone lend me a hand.

Thanks in advance

Hiya! ,

I'm currently working on a script that will allow me to track the total users on my website, and how many of these user are logged in members, or guests.

I need to be able to find out the total users, total logged in, and total guests within the last 15 minutes, and the total users, total logged in, and total guests for today.

Ideally, I would like to user only one table for this, and would also like to group together records in the database that have the same users_id and ip_address, as there's not much point in storing this more than once.

I currently have a table that contains the following fields.

sid - Stores the users session ID.
user_id - Stores the user id of a logged in user. 0 is stored if the user is a guest.
ip_address - Stores the IP address of the user.
last_updated - Stores a timestamp of when the user was last active.

I look forward to reading your responses

Cheers!