I would like to create a page for my clients to login and check for updates on their accounts. Then I would like to create a page where my employees can login and make updates, specifically new file uploads, to the clients accounts. I have seen similar sites everywhere, such as bank websites, USPS site, et cetera. What is
required to accomplish this? I'm trying to do this with the PHP, MySQL and Adobe CS3 Master collection's 'Dreamweaver CS3'
I thought it would be as easy as setting up a database with a table containing 'Id, username, password, customer-name, text, files'
then setting up a server behavior of 'login user' where 'username, password' are the authenticating fields and then setting up dynamic text fields Where the 'customer-name' is the heading
followed by html text 'Account Files' then the where 'text' is the body of the clients information then where 'files' is the customers
links to their updated files. Does this sound correct or possible and what are the steps I need to take?
Here is my accounts page where the user is redirected after login with username and password. Also, I have set up a logout link that is supposed to redirect the user after the click
however it is not doing that. -
<?php require_once('Connections/connex.php'); ?>
-
<?php
-
//initialize the session
-
session_start();
-
-
// ** Logout the current user. **
-
$logoutAction = $HTTP_SERVER_VARS['PHP_SELF']."?doLogout=true";
-
if ((isset($HTTP_SERVER_VARS['QUERY_STRING'])) && ($HTTP_SERVER_VARS['QUERY_STRING'] != "")){
-
$logoutAction .="&". $HTTP_SERVER_VARS['QUERY_STRING'];
-
}
-
-
if ((isset($HTTP_GET_VARS['doLogout'])) &&($HTTP_GET_VARS['doLogout']=="true")){
-
//to fully log out a visitor we need to clear the session varialbles
-
session_unregister('MM_Username');
-
session_unregister('MM_UserGroup');
-
-
$logoutGoTo = "adminlogin.php";
-
if ($logoutGoTo) {
-
header("Location: $logoutGoTo");
-
exit;
-
}
-
}
-
?>
-
<?php
-
if (!isset($_SESSION)) {
-
session_start();
-
}
-
$MM_authorizedUsers = "";
-
$MM_donotCheckaccess = "true";
-
-
// *** Restrict Access To Page: Grant or deny access to this page
-
function isAuthorized($strUsers, $strGroups, $UserName, $UserGroup) {
-
// For security, start by assuming the visitor is NOT authorized.
-
$isValid = False;
-
-
// When a visitor has logged into this site, the Session variable MM_Username set equal to their username.
-
// Therefore, we know that a user is NOT logged in if that Session variable is blank.
-
if (!empty($UserName)) {
-
// Besides being logged in, you may restrict access to only certain users based on an ID established when they login.
-
// Parse the strings into arrays.
-
$arrUsers = Explode(",", $strUsers);
-
$arrGroups = Explode(",", $strGroups);
-
if (in_array($UserName, $arrUsers)) {
-
$isValid = true;
-
}
-
// Or, you may restrict access to only certain users based on their username.
-
if (in_array($UserGroup, $arrGroups)) {
-
$isValid = true;
-
}
-
if (($strUsers == "") && true) {
-
$isValid = true;
-
}
-
}
-
return $isValid;
-
}
-
-
$MM_restrictGoTo = "adminlogin.php";
-
if (!((isset($_SESSION['MM_Username'])) && (isAuthorized("",$MM_authorizedUsers, $_SESSION['MM_Username'], $_SESSION['MM_UserGroup'])))) {
-
$MM_qsChar = "?";
-
$MM_referrer = $_SERVER['PHP_SELF'];
-
if (strpos($MM_restrictGoTo, "?")) $MM_qsChar = "&";
-
if (isset($QUERY_STRING) && strlen($QUERY_STRING) > 0)
-
$MM_referrer .= "?" . $QUERY_STRING;
-
$MM_restrictGoTo = $MM_restrictGoTo. $MM_qsChar . "accesscheck=" . urlencode($MM_referrer);
-
header("Location: ". $MM_restrictGoTo);
-
exit;
-
}
-
?>
-
<?php
-
if (!function_exists("GetSQLValueString")) {
-
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
-
{
-
$theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
-
-
$theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);
-
-
switch ($theType) {
-
case "text":
-
$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
-
break;
-
case "long":
-
case "int":
-
$theValue = ($theValue != "") ? intval($theValue) : "NULL";
-
break;
-
case "double":
-
$theValue = ($theValue != "") ? "'" . doubleval($theValue) . "'" : "NULL";
-
break;
-
case "date":
-
$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
-
break;
-
case "defined":
-
$theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
-
break;
-
}
-
return $theValue;
-
}
-
}
-
-
$colname_username = "-1";
-
if (isset($_SESSION['MM_Username'])) {
-
$colname_username = $_SESSION['MM_Username'];
-
}
-
mysql_select_db($database_connex, $connex);
-
$query_username = sprintf("SELECT * FROM customerup WHERE username = %s", GetSQLValueString($colname_username, "text"));
-
$username = mysql_query($query_username, $connex) or die(mysql_error());
-
$row_username = mysql_fetch_assoc($username);
-
$totalRows_username = mysql_num_rows($username);
-
$colname_Recordset1 = "-1";
-
if (isset($_SESSION['pkid'])) {
-
$colname_Recordset1 = $_SESSION['pkid'];
-
}
-
mysql_select_db($database_connex, $connex);
-
$query_Recordset1 = sprintf("SELECT * FROM files WHERE pkid = %s", GetSQLValueString($colname_Recordset1, "int"));
-
$Recordset1 = mysql_query($query_Recordset1, $connex) or die(mysql_error());
-
$row_Recordset1 = mysql_fetch_assoc($Recordset1);
-
$totalRows_Recordset1 = mysql_num_rows($Recordset1);
-
-
-
?>
-
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
-
<html xmlns="http://www.w3.org/1999/xhtml">
-
<div id="container">
-
<img src="images/ALM.gif" name="top" width="780" height="65" id="top" />
-
<div id="nav">
-
<ul>
-
<li><a href="/index.html">Home</a></li>
-
<li><a href="/about_us.html">About Us</a></li>
-
<li><a href="/delivery_services.html">Services</a></li>
-
<li><a href="/on_line_order.html">Place Order</a></li>
-
<li><a href="adminlogin.php">Tracking/Reports</a></li>
-
<li><a href="/contact_us.html">Contact Us</a></li>
-
<li><a href="/links.html">Links</a></li>
-
</ul>
-
</div>
-
<div align="center" id="log-in">
-
-
<div align="right">
-
<table width="228" border="0" cellpadding="0" id="logtable">
-
<tr>
-
<td height="68" colspan="2" bordercolor="#FFFFFF" id="form2"><span class="style12">
-
<label></label>
-
</span>
-
<span class="style12"></span>
-
<label> </label>
-
<div align="center">
-
<p><span class="style13">Logged In</span><br />
-
<a href="<?php echo $logoutAction ?>" class="style12">Log out</a></p>
-
</div></td>
-
</tr>
-
</table>
-
</div>
-
</div>
-
<div id="body">
-
-
<h2 align="right"><span class="style2">TRACKING & REPORTS<br />
-
<br />
-
</span></h2>
-
<?php if ($totalRows_username > 0) { // Show if recordset not empty ?>
-
<?php } // Show if recordset not empty ?>
-
<div id="customername">
-
<div align="center">
-
<h3><?php echo $row_username['menu_name']; ?></h3>
-
</div>
-
</div>
-
-
-
-
<h3 align="center"><br />
-
<span class="style13"><em>CUSTOMER ACCOUNT FILES</em></span></h3>
-
-
<?php if ($totalRows_Recordset1 > 0) { // Show if recordset not empty ?>
-
<div id="files"><?php echo $row_Recordset1['clientid']; ?></div>
-
<?php } // Show if recordset not empty ?>
-
<p align="center"> </p>
-
</div>
-
-
<div id="footer"><div id="nav">
-
-
<ul>
-
<li><a href="/index.html">Home</a></li>
-
<li><a href="/about_us.html">About Us</a></li>
-
<li><a href="/delivery_services.html">Services</a></li>
-
<li><a href="/on_line_order.html">Place Order</a></li>
-
<li><a href="adminlogin.php">Tracking/Reports</a></li>
-
<li><a href="/contact_us.html">Contact Us</a></li>
-
<li><a href="/links.html">Links</a></li>
-
</ul>
-
</div>
-
<!--end of the footer div -->
-
</div>
-
<h4 align="center"><em><span class="style1">A-LINE MESSENGER SERVICE </span></em><span class="style3">- 2 - DELIVER - 4 - YOU</span><em>!</em></h4>
-
</div>
-
<!--this is the close of the container div--></body>
-
<?php
-
mysql_free_result($username);
-
-
mysql_free_result($Recordset1);
-
?>
2  2764  
Welcome to Bytes,
Looking at this, you need major help; More help than we can give you in a forum like these. By the looks of your variables all starting with $MM_, you're using Dreamweaver-built code, its not hand written?
Look here, First get up to date with PHP5, we don't use HTTP_VARS anymore.
Second, take some tutorials and design test applications and look into code modularity. Code modularity is taking the problem/requirement and dividing it into specific functions.
See: MVC.
Generally here's how your pages should be laid out.
You have a xxx.php file, this is what gets called in the browser.
This file will include a general file such as config.inc that contains site_wide global variables. (database login etc)
This page takes the role of the conductor of an extra. It tells it what to do based on it.
Create another class (yes learn about OOP early) called the controller, such as loginController.php which contains the functions (the actions) you need for the login.php file. If your using a database, it helps to create a database class that handles all your querying, inserting, and other actions for the controller class like a middle man.
After you are done, with the logic and want to display something, put your content into variables and include() an HTML file.
The HTML file should NOT contain any logic except simple echo print commands and if statements and for loops.
Its also best to use a templating system like Smarty. (I assume you'll Google all terms here that you don't understand)
When you come back with more specific question like why isn't something working, we can help you. But we cannot rewrite the entire script for you.
Remember: Learning without thought is labor lost.
Dan
Welcome to Bytes,
Looking at this, you need major help; More help than we can give you in a forum like these. By the looks of your variables all starting with $MM_, you're using Dreamweaver-built code, its not hand written?
Look here, First get up to date with PHP5, we don't use HTTP_VARS anymore.
Second, take some tutorials and design test applications and look into code modularity. Code modularity is taking the problem/requirement and dividing it into specific functions.
See: MVC.
Generally here's how your pages should be laid out.
You have a xxx.php file, this is what gets called in the browser.
This file will include a general file such as config.inc that contains site_wide global variables. (database login etc)
This page takes the role of the conductor of an extra. It tells it what to do based on it.
Create another class (yes learn about OOP early) called the controller, such as loginController.php which contains the functions (the actions) you need for the login.php file. If your using a database, it helps to create a database class that handles all your querying, inserting, and other actions for the controller class like a middle man.
After you are done, with the logic and want to display something, put your content into variables and include() an HTML file.
The HTML file should NOT contain any logic except simple echo print commands and if statements and for loops.
Its also best to use a templating system like Smarty. (I assume you'll Google all terms here that you don't understand)
When you come back with more specific question like why isn't something working, we can help you. But we cannot rewrite the entire script for you.
Remember: Learning without thought is labor lost.
Dan
I understand. I love to learn so when someone points me in the correct direction of where to find the information I need, that is great. I'm taking as
much suggestion right now as possible. Thank you for your response.
Sign in to post your reply or Sign up for a free account.
Similar topics
by: Lauren Quantrell |
last post by:
Is there a way to create a text file (such as a Windows Notepad file)
by using a trigger on a table? What I want to do is to send a row of
information to a table where the table: tblFileData has...
|
by: eastcoastguyz |
last post by:
On an Apache server, I want to be able to have a user name/password
directory. I know this can be done with .htaccess, but I want to be
able to do this for multiple users. The purpose of this, is...
|
by: joun |
last post by:
Hi all,
i want to create in my asp.net application a custom server variable, so i
can retrieve later in other pages (even asp or perl) with
request.servervariables("HTTP_mycustomvariable")
...
|
by: fred00 |
last post by:
I have been searching for information relating to what I want to do,
and I am assuming it is not a common issue. I have developed a web
service and a client for a customer. I need to give the...
|
by: anders |
last post by:
Hi!
To create a new Windows account I use this code:
const int UF_PASSWD_CANT_CHANGE = 0x0040;
const int UF_DONT_EXPIRE_PASSWD = 0x10000;
DirectoryEntry obDirEntry = new...
|
by: NRakhesh |
last post by:
I have to submit a project as a part of my final year project.
I consulted various domains and finally decided to implement a work on
delevoping a system for transcription work based company.
...
|
by: Niyazi |
last post by:
Hi,
I created application that store the data in SQL SERVER that reside on
network. The client also use this application to access the resources
provided with application. But is the client want...
|
by: Canice |
last post by:
I'm working on a web application where 90% of it is common 'product'
code an the other 10% is customer specific.
I want some method of separating the customer specific presentation,
business and...
|
by: henry |
last post by:
Folks:
Thank you all for your replies. I'll reply briefly to each key point:
Thanks! You are probably correct. I wanted to be aware of other options,
that's all. Part of what got me in...
|
by: emmanuelkatto |
last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud.
Please let me know.
Thanks!
Emmanuel
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
|
by: Hystou |
last post by:
There are some requirements for setting up RAID:
1. The motherboard and BIOS support RAID configuration.
2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers,...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
| |
