PHP - Password Protect A Certain Part Of The Page

I have a problem w/ a widely used password protect php code. I use a business directory program that allows custom input fields. I'm using this code to password protect a business listing page in my directory code. I created custom fields for the username & password so a listing can enter their own user/pass but when I test it it won't work when I'm calling/echoing the fields. When I hardcode it w/ a user/pass it works. Any ideas on how I should recode this?:
Quote

<?php
// Define your username and password
$username = "<?php echo $custom_74; ?>";
$password = "<?php echo $custom_16; ?>";
if ($_POST['txtUsername'] != $username || $_POST['txtPassword'] != $password) {
?>
<h1>Login</h1>
<form name="form" method="post" action="<?php echo $_SERVER['REQUEST_URI']; ?>">
    <p><label for="txtUsername">Username:</label>
    <br /><input type="text" title="Enter your Username" name="txtUsername" /></p>
    <p><label for="txtpassword">Password:</label>
    <br /><input type="password" title="Enter your password" name="txtPassword" /></p>
    <p><input type="submit" name="Submit" value="Login" /></p>
</form>
<?php
}
else {
?>


I close the code correctly.
<?php echo $custom_74; ?> & <?php echo $custom_16; ?> are just incidently my custom field echo codes. I have over 150 custom fields working fine for user/listee options. The password protect code won't accept echos it seems as coded above.

Thanks, Gene

This topic has been moved to Apache HTTP Server.

http://www.phpfreaks.com/forums/index.php?topic=358740.0

I'm trying to password protect and admin area but an included script, but it's not working very well.

I've used this script forever, but for some reason it pops up an alert that says "The URL is not valid and cannot be loaded," when the form is submitted. It's an old script from PHPBuddy.

Here is the script: // password_protect.php
Code: [Select]
<?php

# Simple password protection
#
# (c) http://www.phpbuddy.com
# Author: Ranjit Kumar
# Feel free to use this script but keep this message intact!
# 
# To protect a page include this file in your PHP pages!

session_start();

$admin_user_name = "admin";
$admin_password = "admin";
//you can change the username and password by changing the above two strings 

if (!isset($HTTP_SESSION_VARS['user'])) {

if(isset($HTTP_POST_VARS['u_name'])) 
$u_name = $HTTP_POST_VARS['u_name'];

if(isset($HTTP_POST_VARS['u_password'])) 
$u_password = $HTTP_POST_VARS['u_password'];

if(!isset($u_name)) {
?>
<HTML>
<HEAD>
<TITLE><?php echo $HTTP_SERVER_VARS['HTTP_HOST']; ?> : Authentication Required</TITLE>
</HEAD>
<BODY bgcolor=#ffffff>
<table border=0 cellspacing=0 cellpadding=0 width=100%>
<TR><TD>
<font face=verdana size=2><B>(Access Restricted to Authorized Personnel)</b> </font></td>
</tr></table>
<P></P>
<font face=verdana size=2>
<center>
<?php
$form_to = "http://$HTTP_SERVER_VARS[HTTP_HOST]$HTTP_SERVER_VARS[PHP_SELF]";

if(isset($HTTP_SERVER_VARS["QUERY_STRING"]))
$form_to = $form_to ."?". $HTTP_SERVER_VARS["QUERY_STRING"];

?>
<form method=post action=<?php echo $form_to; ?>>
<table border=0 width=350>
<TR>
<TD><font face=verdana size=2><B>User Name</B></font></TD>
<TD><font face=verdana size=2><input type=text name=u_name size=20></font></TD></TR>
<TR>
<TD><font face=verdana size=2><B>Password</B></font></TD>
<TD><font face=verdana size=2><input type=password name=u_password size=20></font></TD>
</TR>
</table>
<input type=submit value=Login></form>
</center>
</font>
</BODY>
</HTML>

<?php
exit;
}
else {

function login_error($host,$php_self) {
echo "<HTML><HEAD>
<TITLE>$host :  Administration</TITLE>
</HEAD><BODY bgcolor=#ffffff>
<table border=0 cellspacing=0 cellpadding=0 width=100%>
 <TR><TD align=left>
 <font face=verdana size=2><B> &nbsp;You Need to log on to access this part of the site! </b> </font></td>
 </tr></table>
<P></P>
<font face=verdana size=2>
<center>";

echo "Error: You are not authorized to access this part of the site!
<B><a href=$php_self>Click here</a></b> to login again.<P>
</center>
</font>
</BODY>
</HTML>";
session_unregister("adb_password");
session_unregister("user");
exit;
}

$user_checked_passed = false;


if(isset($HTTP_SESSION_VARS['adb_password'])) {

$adb_session_password = $HTTP_SESSION_VARS['adb_password'];

if($admin_password != $adb_session_password) 
login_error($HTTP_SERVER_VARS['HTTP_HOST'],$HTTP_SERVER_VARS['PHP_SELF']);
else {
$user_checked_passed = true;
}
}


if($user_checked_passed == false) {

if(strlen($u_name)< 2) 
login_error($HTTP_SERVER_VARS['HTTP_HOST'],$HTTP_SERVER_VARS['PHP_SELF']);

if($admin_user_name != $u_name) //if username not correct
login_error($HTTP_SERVER_VARS['HTTP_HOST'],$HTTP_SERVER_VARS['PHP_SELF']);

if(isset($admin_password)) {

if($admin_password == $u_password) {

session_register("adb_password");
session_register("user");

$adb_password = $admin_password;
$user = $u_name;
}
else { //password in-correct
login_error($HTTP_SERVER_VARS['HTTP_HOST'],$HTTP_SERVER_VARS['PHP_SELF']);
}
}
else {
login_error($HTTP_SERVER_VARS['HTTP_HOST'],$HTTP_SERVER_VARS['PHP_SELF']);
}

$page_location = $HTTP_SERVER_VARS['PHP_SELF'];
if(isset($HTTP_SERVER_VARS["QUERY_STRING"]))
$page_location = $page_location ."?". $HTTP_SERVER_VARS["QUERY_STRING"];

header ("Location: ". $page_location);
}
}
}
?>

And here is the file I'm trying to protect: //index.php

Code: [Select]
<?php
include('password_protect.php');
include("connection.php");


//Logout
if($_REQUEST['action'] == "logout")
{
session_unset();
session_destroy(); 
header('Location:index.php');
}

//Script Actions

//Add Main Display
if ($_REQUEST['action'] == "add_main_d") {

//Upload Image
$target_path = "main_display/";
$target_path = $target_path . basename( $_FILES['image']['name']); 

if(move_uploaded_file($_FILES['image']['tmp_name'], $target_path)) {
     $msg1 = "<p>The image ". basename( $_FILES['image']['name']). " has been uploaded</p>";
} 
else {
     $msg1 = "<p>There was an error uploading the image, please try again!</p>";
} 

$image = $_FILES['image']['name'];

//Add Info to Database
$query = "INSERT INTO main_display (title,descrip,link,image)
VALUES('$_REQUEST[title]','$_REQUEST[descrip]','$_REQUEST[link]','$image')";
$result = mysql_query($query)
or die ("Can't do anything with the query!");
$msg = "<p>" . $_REQUEST['title'] . " added to the main display.</p>";
}

//Add Guest
if ($_REQUEST['action'] == "add_guest") {

//Upload Image
$target_path = "guests/";
$target_path = $target_path . basename( $_FILES['image']['name']); 

if(move_uploaded_file($_FILES['image']['tmp_name'], $target_path)) {
     $msg1 = "<p>The image ". basename( $_FILES['image']['name']). " has been uploaded</p>";
} 
else {
     $msg1 = "<p>There was an error uploading the image, please try again!</p>";
} 

$image = $_FILES['image']['name'];

//Add Info to Database
$query = "INSERT INTO guest (name,ep,link,image)
VALUES('$_REQUEST[name]','$_REQUEST[ep]','$_REQUEST[link]','$image')";
$result = mysql_query($query)
or die ("Can't do anything with the query!");
$msg = "<p>" . $_REQUEST['name'] . " was added to the guest list.</p>";
}

//Delete Item
if($_REQUEST['action'] == "delete_item"){
$query = "SELECT * FROM main_display WHERE id = '$_REQUEST[item]'";
$result = mysql_query($query)
or die ("Can't do anything with the query!");
$row = mysql_fetch_array($result,MYSQL_ASSOC);
  $image = $row['image'];
unlink("main_display/$image");

//Delete news
$query = "DELETE FROM main_display WHERE id = '$_REQUEST[item]'";
$result = mysql_query($query)
or die ("Can't do anything with the query!");
$msg = "Display Meny Item erased.";
}

//Delete Guest
if($_REQUEST['action'] == "delete_guest"){
$query = "SELECT * FROM guest WHERE id = '$_REQUEST[item]'";
$result = mysql_query($query)
or die ("Can't do anything with the query!");
$row = mysql_fetch_array($result,MYSQL_ASSOC);
  $image = $row['image'];
unlink("guests/$image");

//Delete news
$query = "DELETE FROM guest WHERE id = '$_REQUEST[item]'";
$result = mysql_query($query)
or die ("Can't do anything with the query!");
$msg = "Display Meny Item erased.";
}


?>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<link rel="stylesheet" type="text/css" href="style.css" />
<title>Admin Window</title>

<?php 
//Form Check - Javascript
if($_REQUEST['view'] == "main_d") {
include("add_main_d_check.php");
}

if($_REQUEST['view'] == "guest_d") {
include("add_guest_d_check.php");
}
?>
</head>

<body>
<div id="wrapper">

<h1>
Admin Window
</h1>

<div id="links">
<ul>
<li><a href="index.php">Main</a></li>
<li><a href="index.php?view=main_d">Main Display</a></li>
<li><a href="index.php?view=guest_d">Guests</a></li>
<li><a href=\"index.php?action=logout\">Logout</a></li>
</ul>
</div>

<?php
if (isset($msg1)) {
echo $msg1 . "<br />";
}
if (isset($msg)) {
echo $msg;
}

//Page Controller
switch($_REQUEST['view']) {

case "main_d":
include("main_d.php");
break;

case "guest_d":
include("guests.php");
break;

default:
if(!isset($_REQUEST['action'])){
echo "<p>Please select an action.</p>";
}
break;

}

?>

</div>
</body>
</html>

I will be grateful for any help on this. Thanks!

Hi.  I am working on a website that sells online subscriptions to premium content.  On the low end this includes articles, and on the high end guides and books.

In the back of my mind I had always planned on putting this content into MySQL for safe keeping, but in the last day or so it has occurred to me that putting an entire book into MySQL could be cumbersome at best?!

Which leads to this question...

Can you easily protect a PHP page from unauthorized users and outsiders?

My original desire to put things in MySQL was driven much more by security than any of the more obvious reasons you'd use a database.

I will be putting articles into MySQL, but the more I think about it, trying to put a 500 or 1,000 page book into MySQL could be difficult at best.

For articles, I simple have a PHP page that loads up the article from MySQL and first checks that the logged in user has the proper access rights - meaning they are a paid subscriber - before allowing the article to load.

I could do that with a guide or book, but the question becomes, "How do you put even 500 pages into a database table and easily access it?"

What do you think?

 

 

I've been trying to do this for a while and can't understand why I'm getting a 503 Error. I'm making a download center which counts the downloads of each file, and the only thing I can't get to work is the actual downloading of the file. It took a while for me to realize I was having an issue as my code works perfectly on my home server.   Here is my current code:

 function download_file_to_user($target_file, $filename) {

Partially a continuation from my other thread, as this a little similar, but...

The below should be redirecting a user that is not logged into the admin control panel back to the admincp log-in page. Instead it's showing the actual page. This is only the case if the user has a cadmin number of 3 or 4... so it is limiting the access to people that should have access and blocking those that shouldn't. But it should still be pointing a user not logged in back to the admincp log-in page because the mypassword3 session variable should not be set. When I var_dump $_SESSION mypassword3 is NULL. Everything else is set properly.


<?php
require_once 'db_select.php';
require_once 'func.php';
session_start();
$cadmin2=$_SESSION['admin_check'];
if($cadmin2=="4" || $cadmin2=="3"  && isset($_SESSION['mypassword3']) && $_SESSION['mypassword3']==$_SESSION['mypassword2']){
if($_GET['view']=="applications"){
$section.=' - New Applications';
$content.='
<div class="main">
<div class="main_header">New Investor Applications</div>
</div>
';
}
elseif($_GET['view']=="accounts"){
$section.=' - View Accounts';
$content.='
<div class="main">
<div class="main_header">View Investor Accounts</div>
</div>
';
}
else{
header("Location: ./index.php?admincp");
}
}
else{
header("Location: ./index.php?usercp");
}
?>



Here's the admin panel/admin panel log-in if it helps anything:


<?php
require_once 'func.php';
session_start();
$cadmin2=$_SESSION['admin_check'];
if($cadmin2=="3" || $cadmin2=="4"){
if(isset($_SESSION['myusername2']) && kam3($_POST['password'])==$_SESSION['mypassword2'] || isset($_SESSION['myusername2']) && $_SESSION['mypassword3']==$_SESSION['mypassword2']){
if(!empty($_POST['password'])){
$_SESSION['mypassword3']=kam3($_POST['password']);
}
$content.='
<div class="main">
<p class="main_header">Admin Control Panel</p>
</div>

<div class="usercp_links">';
if($cadmin2=="4"){
$content.='
<div class="ilink">
<a href="./index.php?admincp=users&do=add">New User</a>
</div>
<div class="ilink">
<a href="./index.php?admincp=investors&view=applications">Investor Applications</a>
</div>
<div class="ilink">
<a href="./index.php?admincp=requests&view=donation">Additional Donation Requests</a>
</div>
';
}
$content.='
<div class="ilink">
<a href="./index.php?admincp=manage&view=ideas">Manage Idea Submissions</a>
</div>
</div>

<div class="usercp_links">';
if($cadmin2=="4"){
$content.='
<div class="ilink">
<a href="./index.php?admincp=users&do=edit">Edit Users</a>
</div>
<div class="ilink">
<a href="./index.php?admincp=investors&view=accounts">Investor Accounts</a>
</div>
<!--<div class="ilink">
<a href="./index.php?admincp=requests&view=credit">Additional Credit Requests</a>
</div>-->';
}
$content.='
<div class="ilink">
<a href="./index.php?admincp=manage&view=exclusive">Manage Exclusive Content</a>
</div>
<div class="ilink">
<a href="./logout.php?logout=admin">Log-Out</a>
</div>
</div>';
}
else{
if(!isset($_SESSION['myusername2'])){
header("Location: ./index.php");
}
$content='
<table class="actors_table">
<tr>
<td align="center">';

if(isset($_GET['e']) && $_GET['e']=="0")
{
$content .= '<span style="color: #FF0000; font-weight: bold;">Incorrect Username or Password</span><br/><br/>';
} 

else{
$content .="";
}

$content .='Re-Type your password to view this information:
 <form action="" method="post">
    <p>Username: <input type="text" name="username" value="'.$_SESSION['myusername2'].'" disabled="disabled" /></p>
<p>Password: <input type="password" name="password" /></p>
    <p><input type="submit" value="Submit" name="Submit" /></p>
    </form>

</td>
</tr>
</table>
';
}
}
else{
header("Location: ./index.php?usercp");
}
?>

This topic has been moved to Miscellaneous.

http://www.phpfreaks.com/forums/index.php?topic=327715.0

How do you have a script, after getting the page, search for and as the result, post *part* of every link that ends like...

&amp;v=ANYTHING">Link text</a>

and as the result, posting just

ANYTHING">Link text<BR>

I'm messing with...

<?php

$page = $_GET['page'];
$user = $_GET['user'];

$doc = new DOMDocument;
$doc->load('http://m.youtube.com/profile?gl=US&client=mv-google&hl=en&user=$user&view=videos&p=$page');

$items = $doc->getElementsByTagName('a');

foreach($items as $value) {
echo $value->nodeValue . "\n";
$attrs = $value->attributes;
echo $attrs->getNamedItem('href')->nodeValue . "\n";
};

?>

but it get's way too much stuff. Get's data from every link on the page, and posts it as

Page Text
/watch?gl=US&client=mv-google&hl=en&v=XXXXX

And I can't get

$page = $_GET['page'];
$user = $_GET['user'];

to get the data from the URL.

Hi,

Im a little confused on how to go about setting up a news section.

i.e

On my homepage i got it displaying
Title:
Postedby:
brief:

i would like a read more button...

So it will go around index.php?news=$idfullstory (something like that)

and on that page it will automatically show the full story etc..

Just a bit confused, so can someone break it down or even better point me in the right direction please?

Thanks,
J

I have a page that functions like this:   The user begins by loading ajaxtest.php, then using a drop-down menu, selects a user, after which a DIV on ajaxtest.php is populated with the user's selction to getuser.php?q=John%Doe   Here's a visual representation of what is currently happening, along with the part I don't understand.   getuser.php consists largely of a a large HTML table which interacts through PHP with my SQL database.  Several of the fields in this table are editable, and after the user changes one of these fields, he can press an "update" button, which calls an AJAX script in update.js and runs update.php, which contains all my SQL queries to update the database, without the user being redirected to this update.php page. All of this is processing perfectly - the user makes some sort of edit, hits "update", and the database gets updated without any redirection or refresh.   Here's what I can't figure out though.  Once the user makes a change, and hits "update," the database updates, but the end user doesn't see those changes that he made.  I can't just do a simple page refresh, because the action is taking place on getuser.php, but getuser.php is loaded inside of a #DIV on ajaxtest.php.  If I use something like window.location.reload(), this just refreshes ajaxtest.php and puts the user back to the starting point of having to select a user.  This is not what I want.  I don't want to refresh ajaxtest.php, I want to "refresh" ajaxtest.php with getuser.php?q=John%Doe insidethe DIV on ajaxtest.php.   It seems like this is very common - several forums have this capability, where a user has a page loaded, adds a comment, and sees that comment immediately without a full page refresh.  I just don't know how to do it, and I've tried at lengths to search the web for an answer with no luck.   Can someone walk me through how to do this?

Code: [Select]
<?
$out = preg_replace('/^(.{701}[^.]*).*/i','$1.',$detrsltnewsrow[news_desc]);
echo $out;
?>

</td></tr><tr><td colspan="2" class="para" style="padding-left:10px;">

<?=
substr(stripslashes(trim($detrsltnewsrow[news_desc])),701)
?>
                                             
</td></tr>

I have the above snippet.. The first php statement, basically grasp the first 701 characters with the closet next stop "." character and out puts it. then out puts the HTML tags

I have a problem with the second statement. I want to output anything after what has been outputted by:
Code: [Select]
<?
$out = preg_replace('/^(.{701}[^.]*).*/i','$1.',$detrsltnewsrow[news_desc]);
echo $out;
?>

So need the correct syntax for
Code: [Select]
<?=
substr(stripslashes(trim($detrsltnewsrow[news_desc])),701)
?>
Currently it breaks at exactly the 701 character, want it to continue from the sentence the first code ended in.

My query gets the results and orders by one of the fields.

Once I get the MySQL results I would like to find the first entry that has a letter as the first character of the same field that the list was ordered by, then split the results in to two parts and swap them.

So that the results that have a letter at the start of the same sorted field are as the begining and the results that have the numbers as the start at the end of the array.

But also so that the array works the same way as the original results string, so i can use say $results['mysqlfield']

Hi, I have a CMS, I am creating a forgotten password page, the page will require a user to enter an email address and the code will find it in the database and send them an email, in my database, i have multiple users accounts assigned to one email address. I want it so that if the user enters an email address and it was more than one accuont assigned to it, to error a message saying please contact your admin, but atm, it is not doing this. Any suggestions?

I paid someone to develop my site and for some reason the Forgot Password page is not working.  Once the user types in their email address and submits, nothing happens.  The user should get a message displayed instantly letting them know if the password was sent or if their account was not found.

Any help would be greatly appreciated!

Code: [Select]
[php]
<?
   include_once "connect.php";
   if(isset($_SESSION['RES_LoginID']) && $_SESSION['RES_LoginID']!="")
   {
      echo "<script>window.location='myprofile.php';</script>";
      exit;
   }
   
   // code to send mail to user (account details)
   if(isset($_REQUEST["btnLogin"]))
   {
      $sel="select name,email,password from users where email='".$_REQUEST['RES_EMAIL']."'";
      $urs=mysql_query($sel);
      if (mysql_affected_rows()>0) // send mail if mail existing in database
      {
         $row=mysql_fetch_array($urs);
         $name=$row['name'];
         $username=$row['email'];
         $password=$row['password'];

         $message="<link href='".WEBSITEURL."site.css' rel='stylesheet' type='text/css' />
            <body>
            <table border=0 cellspacing='5' cellpadding=0 width=600 align='center' class='purple_11'>
            <tr><td>
               $SITE_LOGO<br><br>
               Dear <b>".$name."</b>,<br><br>
               
               Your login details a <br>
               Username : $username<br>
               Password : $password<br>
               <br><br>
               Login at: <a href='".WEBSITEURL."login.php' target='_blank'>$SITE_NAME</a><br><br><br>
               Thank You,<br>
               $SITE_NAME
            </td></tr></table>
            </body>";
   
         $sub="Forgot Password?";
         
         SendHTMLMail($username,$sub,$message,ADMIN_MAIL);

         $redirect="<script>window.location='forgot_password.php?msgs=1';</script>";
      }   
      else // if mail doesnot match
      {
           $redirect="<script>window.location='forgot_password.php?msgs=2';</script>";
      }
      echo $redirect;
      exit;
   }
   
   // generate message for display
   $msg="";
   if(isset($_REQUEST['msgs']))
   {
      switch($_REQUEST['msgs'])
      {
         case 1 :   $msg="Your password sent successfully.";
                  break;
         case 2 :   $msg="Email Address does not exists.";
                  break;
      }
   }
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "[url=http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd]http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd[/url]">
<html xmlns="[url=http://www.w3.org/1999/xhtml]http://www.w3.org/1999/xhtml[/url]">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="keywords" content="<?=$KEYWORD?>" />
<link rel="shortcut icon" href="images/favicon.gif">
<title><?=$SITE_TITLE?></title>
<link href="site.css" rel="stylesheet" type="text/css" />
<script language="javascript">
function valid_login()
{
   form=document.frmLogin;
   if(form.RES_EMAIL.value=="")
   {
      alert("Please enter your email.")
      form.RES_EMAIL.focus();
      return false;
   }
   else if (!(/^\w+([\.-]?\w+)*@\w+([\.-]?\w+)*(\.\w{2,3})+$/.test(form.RES_EMAIL.value)))
   {
         alert("Please enter a proper email address.");
         form.RES_EMAIL.focus();
         return false;
   }   
   else
   {
      form.submit();
   }   
}
</script>
</head>

<body onload="MM_preloadImages('images/about-us-hover.jpg','images/my-pofile-hover.jpg','images/help-hover.jpg','images/home.jpg')">
<table width="1000" border="0" align="center" cellpadding="0" cellspacing="0">
  <tr>
    <td width="1251" align="center" valign="top" class="main_bg"><table width="850" border="0" align="center" cellpadding="0" cellspacing="0">
      <tr>
        <td height="153" align="left" valign="top"><? include_once "top.php"; ?></td>
      </tr>
      <tr>
        <td valign="top"><table width="100%" border="0" cellspacing="0" cellpadding="0">
            <tr>
              <td height="18"></td>
            </tr>
            <tr>
              <td><table width="822" border="0" align="center" cellpadding="0" cellspacing="0">
                  <tr>
                    <td width="11" align="left" valign="top"><img src="images/white-crv1.jpg" width="11" height="11" /></td>
                    <td width="100%" height="11" class="gray-top-bdr"><img src="images/blank-img.gif" width="1" height="1" /></td>
                    <td width="11" align="right" valign="top"><img src="images/white-crv2.jpg" width="11" height="11" /></td>
                  </tr>
                  <tr>
                    <td width="11" class="gray-left-bdr"><span class="gray-top-bdr"><img src="images/blank-img.gif" width="1" height="1" /></span></td>
                    <td align="center"><?   include("gad_hori.php");?></td>
                    <td width="11"class="gray-rightt-bdr"><span class="gray-top-bdr"><img src="images/blank-img.gif" width="1" height="1" /></span></td>
                  </tr>
                  <tr>
                    <td width="11" height="11" align="left" valign="bottom"><img src="images/white-crv3.jpg" width="11" height="11" /></td>
                    <td height="11" class="gray-bot-bdr"><img src="images/blank-img.gif" width="1" height="1" /></td>
                    <td width="11" height="11" align="left" valign="bottom"><img src="images/white-crv4.jpg" width="11" height="11" /></td>
                  </tr>
              </table></td>
            </tr>
            <tr>
              <td height="73" align="left" valign="top"></td>
            </tr>
            <tr>
              <td align="left" valign="top"><table width="822" border="0" align="center" cellpadding="0" cellspacing="0">
                <tr>
                  <td width="587" align="left" valign="top"><table width="587" border="0" cellspacing="0" cellpadding="0">
                    <tr>
                      <td width="19"><img src="images/gray-left-crv.jpg" width="19" height="247" /></td>
                      <td width="321" align="left" valign="top" class="gry-bg-rpt">
                 <form name="frmLogin" id="frmLogin" action="" method="post">
                 <table width="100%" border="0" cellspacing="0" cellpadding="0">
                        <tr>
                          <td height="20"></td>
                        </tr>
                        <tr>
                          <td height="27" class="gray-bot-bdr red-txt20" valign="top">Forgot Password?</td>
                        </tr>
                        <tr>
                          <td height="25" align="center" valign="middle" class="red-txt12"><?=$msg;?></td>
                        </tr>
                        <tr>
                          <td><table width="100%" border="0" cellspacing="0" cellpadding="0">
                            <tr>
                              <td colspan="2" height="22" align="left" style="padding-left:15px;"><strong>Please enter your E-mail address to get the password .</strong></td>
                            </tr>
                            <tr height="15"><td>&nbsp;</td></tr>
                            <tr>
                              <td width="33%" align="center"><strong>Email Address :</strong></td>
                              <td width="67%"><input name="RES_EMAIL" type="text" class="input"  style="width:176px; height:20px;"/></td>
                            </tr>

                            <tr>
                              <td>&nbsp;</td>
                              <td height="40" align="center">
                          <input type="submit" name="btnLogin" value="" class="btn_submit" title="Sign In" onclick="return valid_login();" />
                       </td>
                            </tr>
                            <tr>
                              <td>&nbsp;</td>
                              <td height="25" align="left" valign="bottom">Know your password? <a href="login.php">Login here</a></td>
                            </tr>
                          </table></td>
                        </tr>
                      </table>
                 </form>
                 </td>
                      <td width="247" align="left" valign="top" class="red-box2"><table width="100%" border="0" cellspacing="0" cellpadding="0">
                        <tr>
                          <td height="88">&nbsp;</td>
                          <td>&nbsp;</td>
                        </tr>
                        <tr>
                          <td width="77">&nbsp;</td>
                          <td><table width="100%" border="0" cellspacing="0" cellpadding="0">
                            <tr>
                              <td height="85" align="left" valign="top"><img src="images/dont-acc.jpg" width="135" height="65" hspace="10" /></td>
                            </tr>
                            <tr>
                              <td height="40" align="left" valign="top"><a href="register.php"><img src="images/register-but.jpg" alt="Register Here" width="146" height="30" border="0" /></a></td>
                            </tr>
                          </table></td>
                        </tr>
                      </table></td>
                    </tr>
                  </table></td>
                  <td width="235" align="right" valign="top"><?   include("square_ads.php");?></td>
                </tr>
              </table></td>
            </tr>
        </table></td>
      </tr>
      <tr>
        <td valign="top"><? include_once "bottom.php"; ?></td>
      </tr>
    </table></td>
  </tr>
</table>
</body>
</html>[/php]