I saw you put it inside the php code... Are you sure you put that code inside the <script language="javascript"> ..... </script>
Can I see whole your code for that
[PHP]
<?php session_start(); ?>
<?php require_once('../Connections/conn.php'); ?>
<?php
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
{
$theValue = (!get_magic_quotes_gpc()) ? addslashes($theValue) : $theValue;
switch ($theType) {
case "text":
$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
break;
case "long":
case "int":
$theValue = ($theValue != "") ? intval($theValue) : "NULL";
break;
case "double":
$theValue = ($theValue != "") ? "'" . doubleval($theValue) . "'" : "NULL";
break;
case "date":
$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
break;
case "defined":
$theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
break;
}
return $theValue;
}
$editFormAction = $_SERVER['PHP_SELF'];
if (isset($_SERVER['QUERY_STRING'])) {
$editFormAction .= "?" . htmlentities($_SERVER['QUERY_STRING']);
}
if ((isset($_POST["MM_update"])) && ($_POST["MM_update"] == "edit_profile")) {
$updateSQL = sprintf("UPDATE user_profile SET id_no=%s, password=%s, access_type=%s, full_name=%s, email=%s, department=%s, contact_no=%s, hp_no=%s WHERE user_id=%s",
GetSQLValueString($_POST['id_no'], "int"),
GetSQLValueString($_POST['password'], "text"),
GetSQLValueString($_POST['access_type'], "text"),
GetSQLValueString($_POST['full_name'], "text"),
GetSQLValueString($_POST['email'], "text"),
GetSQLValueString($_POST['department'], "text"),
GetSQLValueString($_POST['contact_no'], "double"),
GetSQLValueString($_POST['hp_no'], "double"),
GetSQLValueString($_POST['user_id'], "text"));
mysql_select_db($database_conn, $conn);
$Result1 = mysql_query($updateSQL, $conn) or die(mysql_error());
$updateGoTo = "../admin/profile_updated_saved.php";
if (isset($_SERVER['QUERY_STRING'])) {
$updateGoTo .= (strpos($updateGoTo, '?')) ? "&" : "?";
$updateGoTo .= $_SERVER['QUERY_STRING'];
}
header(sprintf("Location: %s", $updateGoTo));
}
$colname_edit_profile = "1";
if (isset($_SESSION['MM_Username'])) {
$colname_edit_profile = (get_magic_quotes_gpc()) ? $_SESSION['MM_Username'] : addslashes($_SESSION['MM_Username']);
}
mysql_select_db($database_conn, $conn);
$query_edit_profile = sprintf("SELECT * FROM user_profile WHERE user_id = '%s'", $colname_edit_profile);
$edit_profile = mysql_query($query_edit_profile, $conn) or die(mysql_error());
$row_edit_profile = mysql_fetch_assoc($edit_profile);
$totalRows_edit_profile = mysql_num_rows($edit_profile);
?>
<?php
$access_type = $_SESSION['MM_UserGroup'];
?>
<html>
<head>
<script language="javascript" type="text/javascript">
function logout()
{
var answer = confirm ("Do you really want to logout ?")
if (answer)
{
return true;
}
else
{
return false;
}
}
</script>
<title>QUALTY MANAGEMENT SYSTEM</title>
<meta http-equiv="Content-Type" content="text/html;">
<!--Fireworks MX 2004 Dreamweaver MX 2004 target. Created Wed Sep 13 14:53:43 GMT+0800 (Malay Peninsula Standard Time) 2006-->
<link href="../css/css.css" rel="stylesheet" type="text/css">
<script language="JavaScript" type="text/JavaScript">
<!--
function MM_findObj(n, d) { //v4.01
var p,i,x; if(!d) d=document; if((p=n.indexOf("?"))>0&&parent.frames.length) {
d=parent.frames[n.substring(p+1)].document; n=n.substring(0,p);}
if(!(x=d[n])&&d.all) x=d.all[n]; for (i=0;!x&&i<d.forms.length;i++) x=d.forms[i][n];
for(i=0;!x&&d.layers&&i<d.layers.length;i++) x=MM_findObj(n,d.layers[i].document);
if(!x && d.getElementById) x=d.getElementById(n); return x;
}
function MM_validateForm() { //v4.0
var i,p,q,nm,test,num,min,max,errors='',args=MM_valida teForm.arguments;
for (i=0; i<(args.length-2); i+=3) { test=args[i+2]; val=MM_findObj(args[i]);
if (val) { nm=val.name; if ((val=val.value)!="") {
if (test.indexOf('isEmail')!=-1) { p=val.indexOf('@');
if (p<1 || p==(val.length-1)) errors+='- '+nm+' must contain an e-mail address.\n';
} else if (test!='R') { num = parseFloat(val);
if (isNaN(val)) errors+='- '+nm+' must contain a number.\n';
if (test.indexOf('inRange') != -1) { p=test.indexOf(':');
min=test.substring(8,p); max=test.substring(p+1);
if (num<min || max<num) errors+='- '+nm+' must contain a number between '+min+' and '+max+'.\n';
} } } else if (test.charAt(0) == 'R') errors += '- '+nm+' is required.\n'; }
} if (errors) alert('The following error(s) occurred:\n'+errors);
document.MM_returnValue = (errors == '');
}
function MM_preloadImages() { //v3.0
var d=document; if(d.images){ if(!d.MM_p) d.MM_p=new Array();
var i,j=d.MM_p.length,a=MM_preloadImages.arguments; for(i=0; i<a.length; i++)
if (a[i].indexOf("#")!=0){ d.MM_p[j]=new Image; d.MM_p[j++].src=a[i];}}
}
function MM_nbGroup(event, grpName) { //v6.0
var i,img,nbArr,args=MM_nbGroup.arguments;
if (event == "init" && args.length > 2) {
if ((img = MM_findObj(args[2])) != null && !img.MM_init) {
img.MM_init = true; img.MM_up = args[3]; img.MM_dn = img.src;
if ((nbArr = document[grpName]) == null) nbArr = document[grpName] = new Array();
nbArr[nbArr.length] = img;
for (i=4; i < args.length-1; i+=2) if ((img = MM_findObj(args[i])) != null) {
if (!img.MM_up) img.MM_up = img.src;
img.src = img.MM_dn = args[i+1];
nbArr[nbArr.length] = img;
} }
} else if (event == "over") {
document.MM_nbOver = nbArr = new Array();
for (i=1; i < args.length-1; i+=3) if ((img = MM_findObj(args[i])) != null) {
if (!img.MM_up) img.MM_up = img.src;
img.src = (img.MM_dn && args[i+2]) ? args[i+2] : ((args[i+1])? args[i+1] : img.MM_up);
nbArr[nbArr.length] = img;
}
} else if (event == "out" ) {
for (i=0; i < document.MM_nbOver.length; i++) {
img = document.MM_nbOver[i]; img.src = (img.MM_dn) ? img.MM_dn : img.MM_up; }
} else if (event == "down") {
nbArr = document[grpName];
if (nbArr)
for (i=0; i < nbArr.length; i++) { img=nbArr[i]; img.src = img.MM_up; img.MM_dn = 0; }
document[grpName] = nbArr = new Array();
for (i=2; i < args.length-1; i+=2) if ((img = MM_findObj(args[i])) != null) {
if (!img.MM_up) img.MM_up = img.src;
img.src = img.MM_dn = (args[i+1])? args[i+1] : img.MM_up;
nbArr[nbArr.length] = img;
} }
}
//-->
</script>
</head>
<body bgcolor="#ffffff" onLoad="MM_preloadImages('../button_images/Login_button_down.png','../button_images/Home_button_down.png','../button_images/Edit_Profile_button_down.png','../button_images/Staff_Record_button_down.png','../button_images/Feedback_button_down.png','../button_images/Change_Request_button_down.png','../button_images/logout_button_down.png')">
<table width="800" border="0" align="center" cellpadding="0" cellspacing="0">
<!-- fwtable fwsrc="add_staff_page_layout.png" fwbase="add_staff.gif" fwstyle="Dreamweaver" fwdocid = "1867439519" fwnested="0" -->
<tr>
<td><img src="../image_add_staff/spacer.gif" width="137" height="1" border="0" alt=""></td>
<td><img src="../image_add_staff/spacer.gif" width="52" height="1" border="0" alt=""></td>
<td><img src="../image_add_staff/spacer.gif" width="237" height="1" border="0" alt=""></td>
<td><img src="../image_add_staff/spacer.gif" width="70" height="1" border="0" alt=""></td>
<td><img src="../image_add_staff/spacer.gif" width="70" height="1" border="0" alt=""></td>
<td><img src="../image_add_staff/spacer.gif" width="70" height="1" border="0" alt=""></td>
<td><img src="../image_add_staff/spacer.gif" width="70" height="1" border="0" alt=""></td>
<td><img src="../image_add_staff/spacer.gif" width="70" height="1" border="0" alt=""></td>
<td><img src="../image_add_staff/spacer.gif" width="24" height="1" border="0" alt=""></td>
<td><img src="../image_add_staff/spacer.gif" width="1" height="1" border="0" alt=""></td>
</tr>
<tr>
<td colspan="2"><a href="../main.php"><img name="layout_r1_c1" src="../images/layout_r1_c1.gif" width="189" height="80" border="0" alt=""></a></td>
<td height="80" colspan="7" valign="bottom" background="../images/bg.gif"><table width="611" border="0" cellspacing="0" cellpadding="0">
<tr valign="bottom">
<td width="200"><span class="white_text"> <span class="login_title_text"> </span></span></td>
<td width="200"> </td>
<td width="211" align="right" class="white_text" >
<?php if(isset($_SESSION['MM_Username']))
{
echo "Welcome, ";
?>
<span class="login_title_text">
<?php
echo $_SESSION['MM_Username'];
echo "!";
}
?>
</span> </td>
</tr>
</table></td>
<td><img src="../images/spacer.gif" width="1" height="80" border="0" alt=""></td>
</tr>
<tr>
<td colspan="9"><span class="user_id"><?php
$hourdiff = "8"; // hours difference between server time and local time
$timeadjust = ($hourdiff * 3600);
$date = date("l, d F Y h:i a",time() + $timeadjust);
print ("$date");
?></span> </td>
<td><img src="../image_add_staff/spacer.gif" width="1" height="8" border="0" alt=""></td>
</tr>
<tr>
<td height="50" colspan="3"><table width="426" height="50" border="0" cellpadding="0" cellspacing="0">
<tr>
<td width="138"><span class="title"><a href="../main.php"><strong>
<?php if(isset($_SESSION['MM_Username']))
{
?>
</strong></a><img src="../images/Editptofile.jpg" width="150" height="50">
<?php
}
?>
</span></td>
<td class="title"> </td>
<td> </td>
<td> </td>
</tr>
</table></td>
<td><img name="add_staff_r3_c4" src="../image_add_staff/add_staff_r3_c4.gif" width="70" height="50" border="0" alt=""></td>
<td><img name="add_staff_r3_c5" src="../image_add_staff/add_staff_r3_c5.gif" width="70" height="50" border="0" alt=""></td>
<td><img name="add_staff_r3_c6" src="../image_add_staff/add_staff_r3_c6.gif" width="70" height="50" border="0" alt=""></td>
<td><img name="add_staff_r3_c7" src="../image_add_staff/add_staff_r3_c7.gif" width="70" height="50" border="0" alt=""></td>
<td><img name="add_staff_r3_c8" src="../image_add_staff/add_staff_r3_c8.gif" width="70" height="50" border="0" alt=""></td>
<td><img name="add_staff_r3_c9" src="../image_add_staff/add_staff_r3_c9.gif" width="24" height="50" border="0" alt=""></td>
<td><img src="../image_add_staff/spacer.gif" width="1" height="50" border="0" alt=""></td>
</tr>
<tr>
<td width="137" height="90"><img src="../image_add_staff/add_staff2.jpg" width="137" height="90"></td>
<td height="432" colspan="8" rowspan="3" valign="top">
<br>
<br> <a href="../index.php"><strong><span class="white_text">
</span></strong></a><a href="../main.php"><strong>
<?php if(isset($_SESSION['MM_Username']))
{
?>
</strong></a><br>
<form action="<?php echo $editFormAction; ?>" method="POST" name="edit_profile" id="edit_profile" onSubmit="MM_validateForm('full_name','','R','emai l','','RisEmail','contact_no','','RisNum','hp_no', '','RisNum','password','','R');return document.MM_returnValue">
<table width="663" border="1" cellpadding="0" cellspacing="0" bordercolor="#EFEFEF">
<tr>
<td width="100" bgcolor="#D6D6D6" class="medium_body_text_bold"><br>
Department:</td>
<td valign="middle" bgcolor="#E1E1E1" class="medium_body_text"><br>
<span class="medium_title_bold"><?php echo $row_edit_profile['department']; ?></span> <input name="department" type="hidden" id="department" value="<?php echo $row_edit_profile['department']; ?>"></td>
</tr>
<tr>
<td width="100" bgcolor="#D6D6D6" class="medium_body_text_bold"><br>
User Id: </td>
<td valign="middle" bgcolor="#E1E1E1" class="medium_body_text"><br>
<span class="medium_title_bold"><?php echo $row_edit_profile['user_id']; ?></span> <input name="user_id" type="hidden" id="user_id" value="<?php echo $row_edit_profile['user_id']; ?>"></td>
</tr>
<tr>
<td width="100" bgcolor="#D6D6D6" class="medium_body_text_bold"><br>
Password:</td>
<td valign="middle" bgcolor="#E1E1E1" class="medium_body_text">
<br>
<input name="password" type="password" id="password" value="<?php echo $row_edit_profile['password']; ?>" >
<span class="dot">*</span></td>
</tr>
<tr>
<td width="100" bgcolor="#D6D6D6" class="medium_body_text_bold"><br>
Access Type: </td>
<td valign="middle" bgcolor="#E1E1E1" class="medium_body_text"><br>
<span class="medium_title_bold"><?php echo $row_edit_profile['access_type']; ?></span> <input name="access_type" type="hidden" id="access_type" value="<?php echo $row_edit_profile['access_type']; ?>"></td>
</tr>
<tr>
<td width="100" bgcolor="#D6D6D6" class="medium_body_text_bold"><br>
Full Name: </td>
<td valign="middle" bgcolor="#E1E1E1" class="medium_body_text">
<br>
<input name="full_name" type="text" id="full_name" value="<?php echo $row_edit_profile['full_name']; ?>" maxlength="30">
<span class="dot">*</span></td>
</tr>
<tr>
<td width="100" bgcolor="#D6D6D6" class="medium_body_text_bold"><br>
Email:</td>
<td valign="middle" bgcolor="#E1E1E1" class="medium_body_text">
<br>
<input name="email" type="text" id="email" value="<?php echo $row_edit_profile['email']; ?>" maxlength="40">
<span class="dot">*</span></td>
</tr>
<tr>
<td width="100" bgcolor="#D6D6D6" class="medium_body_text_bold"><br>
Office no: </td>
<td valign="middle" bgcolor="#E1E1E1" class="medium_body_text">
<br>
<input name="contact_no" type="text" id="contact_no" value="<?php echo $row_edit_profile['contact_no']; ?>" maxlength="8">
<span class="dot">*</span></td>
</tr>
<tr>
<td width="100" bgcolor="#D6D6D6" class="medium_body_text_bold"><br>
Handphone no: </td>
<td valign="middle" bgcolor="#E1E1E1" class="medium_body_text">
<br>
<input name="hp_no" type="text" id="hp_no" value="<?php echo $row_edit_profile['hp_no']; ?>" maxlength="8">
<span class="dot">*</span></td>
</tr>
<tr>
<td width="100" bgcolor="#D6D6D6"></td>
<td valign="middle" bgcolor="#E1E1E1">
<input name="id_no" type="hidden" id="id_no3" value="<?php echo $row_edit_profile['id_no']; ?>">
<br>
<input type="submit" name="Submit" value="Save"> </td>
</tr>
</table>
<input type="hidden" name="MM_update" value="edit_profile">
</form>
<?php
}
?> <br> </td>
<td><img src="../image_add_staff/spacer.gif" width="1" height="90" border="0" alt=""></td>
</tr>
<tr>
<td width="137" height="309" valign="top"><table width="137" border="0" cellspacing="0" cellpadding="0">
<tr>
<td>
<?php if(!isset($_SESSION['MM_Username']))
{
?> <a href="../index.php" target="_top" onClick="MM_nbGroup('down','group1','Login','../button_images/Login_button_down.png',1)" onMouseOver="MM_nbGroup('over','Login','../button_images/Login_button_down.png','../button_images/Login_button_down.png',1)" onMouseOut="MM_nbGroup('out')"><img src="../button_images/Login_button_up.png" alt="Login" name="Login" width="103" height="23" border="0" onload=""></a>
<table border="0" cellpadding="0" cellspacing="0">
<tr>
<td></td>
</tr>
</table>
<?php
}
?></td>
</tr>
<tr>
<td>
<?php if(isset($_SESSION['MM_Username']))
{
?> <a href="../main.php" target="_top" onClick="MM_nbGroup('down','group1','Home','../button_images/Home_button_down.png',1)" onMouseOver="MM_nbGroup('over','Home','../button_images/Home_button_down.png','../button_images/Home_button_down.png',1)" onMouseOut="MM_nbGroup('out')"><img name="Home" src="../button_images/Home_button_up.png" border="0" alt="Home" onLoad=""></a><a href="../main.php"></a>
<?php
}
?> </td>
</tr>
<tr>
<td>
<?php if(isset($_SESSION['MM_Username']))
{
?> <a href="edit_profile.php" target="_top" onClick="MM_nbGroup('down','group1','EditProfile', '../button_images/Edit_Profile_button_down.png',1)" onMouseOver="MM_nbGroup('over','EditProfile','../button_images/Edit_Profile_button_down.png','../button_images/Edit_Profile_button_down.png',1)" onMouseOut="MM_nbGroup('out')"><img name="EditProfile" src="../button_images/Edit_Profile_button_up.png" border="0" alt="Edit Profile" onLoad=""></a>
<?php
}
?> </td>
</tr>
<tr>
<td>
<?php if(isset($_SESSION['MM_Username']))
{
?> <a href="../view_records.php" target="_top" onClick="MM_nbGroup('down','group1','ChangeRequest ','../button_images/Change_Request_button_down.png',1)" onMouseOver="MM_nbGroup('over','ChangeRequest','../button_images/Change_Request_button_down.png','../button_images/Change_Request_button_down.png',1)" onMouseOut="MM_nbGroup('out')"><img name="ChangeRequest" src="../button_images/Change_Request_button_up.png" border="0" alt="Change Request" onLoad=""></a>
<?php
}
?></td>
</tr>
<tr>
<td align="left">
<?php if ($access_type == "Admin")
{
?> <a href="../admin/view_staff_record.php" target="_top" onClick= "MM_nbGroup('down','group1','StaffRecord','../button_images/Staff_Record_button_down.png',1)" onMouseOver="MM_nbGroup('over','StaffRecord','../button_images/Staff_Record_button_down.png','../button_images/Staff_Record_button_down.png',1)" onMouseOut="MM_nbGroup('out')"><img name="StaffRecord" src="../button_images/Staff_Record_button_up.png" border="0" alt="Staff Record" onLoad=""></a>
<?php
}
?> </td>
</tr>
<tr>
<td align="left"> <?php if ($access_type == "Staff" || $access_type == "super_user")
{
?> <a href="feedback.php" target="_top" onClick="MM_nbGroup('down','group1','FeedBack','../button_images/Feedback_button_down.png',1)" onMouseOver="MM_nbGroup('over','FeedBack','../button_images/Feedback_button_down.png','../button_images/Feedback_button_down.png',1)" onMouseOut="MM_nbGroup('out')"><img name="FeedBack" src="../button_images/Feedback_button_up.png" border="0" alt="FeedBack" onLoad=""></a>
<?php
}
?> </td>
</tr>
<tr>
<td><?php if(isset($_SESSION['MM_Username']))
{
?>
<a href="../logout.php" target="_top" onClick="return logout();""MM_nbGroup('down','group1','logout','../button_images/logout_button_down.png',1)" onMouseOver="MM_nbGroup('over','logout','../button_images/logout_button_down.png','../button_images/logout_button_down.png',1)" onMouseOut="MM_nbGroup('out')"><img name="logout" src="../button_images/logout_button_up.png" border="0" alt="Logout" onLoad=""></a>
<?php
}
?></td>
</tr>
<tr>
<td> </td>
</tr>
</table>
<br></td>
<td><img src="../image_add_staff/spacer.gif" width="1" height="309" border="0" alt=""></td>
</tr>
<tr>
<td> </td>
<td><img src="../image_add_staff/spacer.gif" width="1" height="33" border="0" alt=""></td>
</tr>
<tr>
<td colspan="9"><img name="add_staff_r7_c1" src="../image_add_staff/add_staff_r7_c1.gif" width="800" height="30" border="0" alt=""></td>
<td><img src="../image_add_staff/spacer.gif" width="1" height="30" border="0" alt=""></td>
</tr>
</table>
</body>
</html>
<?php
mysql_free_result($edit_profile);
?>
[/PHP]