du er logget ind som $username
hvordan laver jeg en code som (du er logget ind som $username)mit login ser sådan ud
<?php
define('BASEPATH', true);
require_once("config.php");
$return_uri = 'http://'.$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF'];
$form = 0;
$message = '';
if(isset($_POST['login'])){
if(empty($_POST['username']) || empty($_POST['password'])){
$message = '<div class="msg error">You have to complete both fields!</div>';
}else{
$username = $db->EscapeString($_POST['username']);
$password = base64_encode($_POST['password']);
$sql = $db->Query("SELECT username,banned FROM `users` WHERE `username`='".$username."' AND `password`='".$password."' LIMIT 1");
$result = $db->FetchArray($sql);
if($db->GetNumRows($sql) == 0) {
$message = '<div class="msg error">Worng username or password!</div>';
}elseif($result['banned'] == 1){
$message = '<div class="msg error">Your account was banned</div>';
}else{
$ip = VisitorIP();
$db->Query("UPDATE `users` SET `online`=NOW(), `ip`='".$ip."' WHERE `username`='".$username."' AND `password`='".$password."'");
$_SESSION['MNLogin'] = $result['username'];
redirect($return_uri);
}
}
}
if(isset($_POST['recover'])){
$form = $site_email;
$email = $db->EscapeString($_POST['email']);
$sql = $db->Query("SELECT username,email,password FROM `users` WHERE `email`='".$email."'");
$recover = $db->FetchArray($sql);
if($db->GetNumRows($sql) == 0){
$message = '<div class="msg error">We haven\'t found this email in our database!</div>';
}else{
$message = '<div class="msg success">Password was successfully sent to your email address!</div>';
$msg = 'Hello '.$recover['username'].',
We received the request for password recovery.
Your password is: '.base64_decode($recover['password']).'
Best Regards!';
$headers = "From: ".$site['site_title']." <".$site['site_email'].">" . "\r\n" .
"Reply-To: ".$site['site_email']." <".$site['site_email'].">" . "\r\n";
mail($recover['email'], "Your Password", $msg, $headers);
}
}
if(isset($_POST['register'])){
$form = 2;
$user = $db->EscapeString($_POST['user']);
$mail = $db->EscapeString($_POST['email']);
$invite = $db->EscapeString($_POST['invite']);
$sql = $db->Query("SELECT * FROM `invites` WHERE `code`='".$invite."'");
$check_invite = $db->GetNumRows($sql);
$sql = $db->Query("SELECT id FROM `users` WHERE `username`='".$user."' OR `email`='".$mail."'");
if($check_invite < 1){
$message = '<div class="msg error"><b>ERROR:</b> That invitation doesn\'t exists!</div>';
}elseif($db->GetNumRows($sql) > 0) {
$message = '<div class="msg error"><b>ERROR:</b> Username or email was already registered!</div>';
}elseif(!isUserID($user)){
$message = '<div class="msg error"><b>ERROR:</b> Please enter an valid username!</div>';
}elseif(!isEmail($mail)){
$message = '<div class="msg error"><b>ERROR:</b> Please enter a valid email address!</div>';
}elseif(!checkPwd($_POST['password'],$_POST['password2'])){
$message = '<div class="msg error"><b>ERROR:</b> Passwords don\'t match!</div>';
}else{
$ip = VisitorIP();
$pass = base64_encode($_POST['password']);
$db->Query("INSERT INTO `users`(username,email,password,ip,signup) values('".$user."','".$mail."','".$pass."','".$ip."',NOW())");
$db->Query("DELETE FROM `invites` WHERE `code`='".$invite."'");
$message = '<div class="msg success">Successfully Registered!</div>';
$form = 0;
}
}
if(isset($_POST['request'])){
$email = $db->EscapeString($_POST['email']);
$sql = $db->Query("SELECT id FROM `requests` WHERE `email`='".$email."'");
if($db->GetNumRows($sql) > 0){
$message = '<div class="msg success">You have already requested an invite!</div>';
}else{
$db->Query("INSERT INTO `requests`(email,date) values('".$email."',NOW())");
$message = '<div class="msg success">We have successfully received your request!</div>';
}
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title><?=(" ".$site['site_title'])?></title>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
<link href="/css/menu.css" rel="stylesheet" type="text/css">
<link rel="shortcut icon" href="../images/iconlogo.png" type="image/x-icon"/>
<link rel="stylesheet" type="text/css" href="css/style.css" />
<script src="js/cufon-yui.js" type="text/javascript"></script>
<script src="js/ChunkFive_400.font.js" type="text/javascript"></script>
<script type="text/javascript">
Cufon.replace('h1',{ textShadow: '1px 1px #fff'});
Cufon.replace('h2',{ textShadow: '1px 1px #fff'});
Cufon.replace('h3',{ textShadow: '1px 1px #000'});
Cufon.replace('.back');
</script>
</head>
<body>
<center><img src="images/logo.png"></center>
</div>
<div class="wrapper">
<?
if(!empty($message)){
echo $message;
}
?>
<div class="content">
<div id="form_wrapper" class="form_wrapper">
<form class="register<?=($form == 2 ? ' active' : '')?>" method="post" action="">
<h3>Register</h3>
<div class="column">
<div>
<label>Username:</label>
<input type="text" name="user" required="required" />
</div>
<div>
<label>Email:</label>
<input type="text" name="email" required="required" />
</div>
<div> </div>
</div>
<div class="column">
<div>
<label>Password:</label>
<input type="password" name="password" required="required" />
</div>
<div>
<label>Confirm Password:</label>
<input type="password" name="password2" required="required" />
</div>
<div> </div>
</div>
<div>
<label>Invite Code:</label>
<input type="text" name="invite" style="width:454px" required="required" />
</div>
<div class="bottom">
<input type="submit" name="register" value="Register" />
<a href="#" rel="login" class="linkform">You already have an account? Login here</a>
<div class="clear"></div>
</div>
</form>
<form class="login<?=($form == 0 ? ' active' : '')?>" method="post" action="">
<h3>Login</h3>
<div>
<label>Username:</label>
<input type="text" name="username" required="required" />
</div>
<div>
<label>Password: <a href="forgot_password.html" rel="forgot_password" class="forgot linkform">Forgot your password?</a></label>
<input type="password" name="password" required="required" />
</div>
<div class="bottom">
<input type="submit" name="login" value="Login" />
<a href="#" rel="register" class="linkform">You don't have an account yet? Register here</a>
<div class="clear"></div>
</div>
</form>
<form class="forgot_password<?=($form == 1 ? ' active' : '')?>" method="post">
<h3>Forgot Password</h3>
<div>
<label>Email:</label>
<input type="text" name="email" required="required" />
</div>
<div class="bottom">
<input type="submit" name="recover" value="Send reminder" />
<a href="#" rel="login" class="linkform">Suddenly remembered? Login here</a>
<a href="#" rel="register" class="linkform">You don't have an account? Register here</a>
<div class="clear"></div>
</div>
</form>
<center><a href="http://wingisites.com/pdf/tilmeldingsblanket.pdf" target="_blank"><img src="images/Pdf.png"/></a><br>
<a href="about.php" target="_blank"><font size="7" font color="blue">Om os</a></font>
</div>
</div>
<?if($x != 1){?>
<script type="text/javascript" src="https://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="js/system.min.js"></script>
<?}?>
</body>
</html>
min index ser sårdan ud
<?php
include('protect.php');
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<title>klub wingisites</title>
<link rel="stylesheet" type="text/css" href="css/main.css" />
<link href="css/menu.css" rel="stylesheet" type="text/css">
<link rel="shortcut icon" href="images/iconlogo.png" type="image/x-icon"/>
</head>
<body>
<!-- Begin Wrapper -->
<div id="wrapper">
<!-- Begin Header -->
<div id="header">
<img src="images/logo.png">
</div>
<!-- End Header -->
<!-- Begin Naviagtion -->
<div id="navigation">
<div id='cssmenu'>
<ul>
<li class='active '><a href='index.php'><span>forside</span></a></li>
</li>
<li><a href='logout.php'><span>log af</span></a></li>
</ul>
</div>
</div>
<!-- End Naviagtion -->
<!-- Begin Content -->
<div id="content">
</div>
<!-- End Content -->
<!-- Begin Footer -->
<div id="footer">
<!-- Auto Updating Copyright Script created with Spider Webmaster Tools (http://spiderwebmastertools.com). -->
<script language="JavaScript">
<!--
function y2k(number) { return (number < 1000) ? number + 1900 : number; }
var today = new Date();
var year = y2k(today.getYear());
document.write('© '+year+' wingisites.com - All Rights Reserved');
//-->
</script>
</div>
<!-- End Footer -->
</div>
<!-- End Wrapper -->
</body>
</html>
håber der er nogen der kan hjælpe som ved hvad code der skal bruge kan kun kode html ikke php