Login Base On Access Level

[Login Base On Access Level]

aik...ni yg muskil ni...aku dok try asyik access denied je...

[Login Base On Access Level]

ok...mmang username unik...kire sy kene change code tu jd gini ke?
[code]
if($result) {

if($result==1){
if($num==1){

//Login Successful
session_regenerate_id();
$member = mysql_fetch_assoc($result);
$_SESSION['SESS_MEMBER_ID'] = $member['id_staff'];
$_SESSION['SESS_FIRST_NAME'] = $member['Nama'];
session_write_close();

if($usertype=="1"){
echo $usertype;
echo'<meta http-equiv="refresh" content="0;URL=../skp/syarat_wajib.php">';
}

if($usertype=="2"){

echo'<meta http-equiv="refresh" content="0;URL=../skp/staff_baru.php">';
}

}else {
//Login failed
header("location: login_gagal.php");
exit();
}
}
}else {
die("Query failed");
}
[/code]

tp kali ni langsung tak jd pe...page statik...tak pi mane2 pun...hadeh..

[Login Base On Access Level]

hehehe...yg banyak komen tu ssb dok try macam2...tu yg terkomen sane sini tu..
camni fist pagenye login-form.html...then proses form nye pro_log.php...then untuk fail session auth.php.....ni sebenarnye coding amik dari intenet...asalnye takde access level...tp di tambah access levelnye..ok ni coding original nye

[code]
<?php
//Start session
session_start();

//Include database connection details
require_once('config.php');

//Array to store validation errors
$errmsg_arr = array();

//Validation error flag
$errflag = false;

//Connect to mysql server
$link = mysql_connect(DB_HOST, DB_USER, DB_PASSWORD);
if(!$link) {
die('Failed to connect to server: ' . mysql_error());
}

//Select database
$db = mysql_select_db(DB_DATABASE);
if(!$db) {
die("Unable to select database");
}

//Function to sanitize values received from the form. Prevents SQL injection
function clean($str) {
$str = @trim($str);
if(get_magic_quotes_gpc()) {
$str = stripslashes($str);
}
return mysql_real_escape_string($str);
}

//Sanitize the POST values
$login = clean($_POST['login']); //idpengguna
$password = clean($_POST['password']);

//Input Validations
if($login == '') {
$errmsg_arr[] = 'Sila masukan Id Pengguna!';
$errflag = true;
}
if($password == '') {
$errmsg_arr[] = 'Sila masukkan Katalaluan!';
$errflag = true;
}

//If there are input validations, redirect back to the login form
if($errflag) {

$_SESSION['ERRMSG_ARR'] = $errmsg_arr;
session_write_close();
header("location: login-form.php");
exit();
}

//Create query
$qry="SELECT * FROM staff WHERE ID_Pengguna='$login' AND Kata_Laluan='".md5($_POST['password'])."'";
$result=mysql_query($qry);

//Check whether the query was successful or not
if($result) {
if(mysql_num_rows($result) == 1) {
//Login Successful
session_regenerate_id();
$member = mysql_fetch_assoc($result);
$_SESSION['SESS_MEMBER_ID'] = $member['ID_Staff'];
$_SESSION['SESS_FIRST_NAME'] = $member['Nama'];
//$_SESSION['SESS_LAST_NAME'] = $member['lastname'];
session_write_close();

header("location: syarat_wajib.php");
exit();
}else {
//Login failed
header("location: login_gagal.php");
exit();
}
}else {
die("Query failed");
}
?>
[/code]


yg di bawah ni lak coding yg dh dimodified dengan meletakan access level

[code]
<?php
//Start session
session_start();

//Include database connection details
require_once('config.php');

//Array to store validation errors
$errmsg_arr = array();

//Validation error flag
$errflag = false;

//Connect to mysql server
$link = mysql_connect(DB_HOST, DB_USER, DB_PASSWORD);
if(!$link) {
die('Failed to connect to server: ' . mysql_error());
}

//Select database
$db = mysql_select_db(DB_DATABASE);
if(!$db) {
die("Unable to select database");
}

//Function to sanitize values received from the form. Prevents SQL injection
function clean($str) {
$str = @trim($str);
if(get_magic_quotes_gpc()) {
$str = stripslashes($str);
}
return mysql_real_escape_string($str);
}

//Sanitize the POST values
$login = clean($_POST['login']); //idpengguna
$password = clean($_POST['password']);

//Input Validations
if($login == '') {
$errmsg_arr[] = 'Sila masukan Id Pengguna!';
$errflag = true;
}
if($password == '') {
$errmsg_arr[] = 'Sila masukkan Katalaluan!';
$errflag = true;
}

//If there are input validations, redirect back to the login form
if($errflag) {

$_SESSION['ERRMSG_ARR'] = $errmsg_arr;
session_write_close();
header("location: login-form.php");
exit();
}

//Create query
$qry="SELECT * FROM staff WHERE ID_Pengguna='$login' AND Kata_Laluan='".md5($_POST['password'])."'";
$result=mysql_query($qry);
$mysql=mysql_fetch_array($result);

$usertype=$mysql['Tahap_Capaian'];
$num=mysql_num_rows($result);


//Check whether the query was successful or not
if($result) {

if($result && $num==1){

//Login Successful
session_regenerate_id();
$member = mysql_fetch_assoc($result);
echo $_SESSION['SESS_MEMBER_ID'] = $member['ID_Staff'];
echo $_SESSION['SESS_FIRST_NAME'] = $member['Nama'];
session_write_close();
//header("location: syarat_wajib.php");
//exit();
//include("auth.php");
//include("Index.php");

if($usertype=="1"){
echo $usertype;
//echo'<meta http-equiv="refresh" content="0;URL=../skp/syarat_wajib.php">';
}

if($usertype=="2"){

echo'<meta http-equiv="refresh" content="0;URL=../skp/staff_baru.php">';
}

}else {
//Login failed
header("location: login_gagal.php");
exit();
}
}else {
die("Query failed");
}

?>

[/code]


masalahnya sekarang ni yg dekat session_regenerate_id() tu...dia tak leh nk generate id..agak faham dak prob saye ni..

[Login Base On Access Level]

salam,

nak bertanya, sy dok wat login yang ada access level, contohnya bila admin login system akan direct ke page admin then bile user login system akan direct user ke page user...masalahnya skang ni..sy ade prob sikit, when admin login boleh lepas..trus masuk ke adminye page...tp dia tak boleh pass session...username admin tu tak boleh di display...then bile user biase login, langsung tak lepas..system direct ke access denied nye page...hadeh...fenin dh dok ekjas2...nk mintak jasa baik sahabat2 boleh dak tlong tengok2 kn code ni...

pro_log.php
[code]<?php
//Start session
session_start();

//Include database connection details
require_once('config.php');

//Array to store validation errors
$errmsg_arr = array();

//Validation error flag
$errflag = false;

//Connect to mysql server
$link = mysql_connect(DB_HOST, DB_USER, DB_PASSWORD);
if(!$link) {
die('Failed to connect to server: ' . mysql_error());
}

//Select database
$db = mysql_select_db(DB_DATABASE);
if(!$db) {
die("Unable to select database");
}

//Function to sanitize values received from the form. Prevents SQL injection
function clean($str) {
$str = @trim($str);
if(get_magic_quotes_gpc()) {
$str = stripslashes($str);
}
return mysql_real_escape_string($str);
}

//Sanitize the POST values
$login = clean($_POST['login']); //idpengguna
$password = clean($_POST['password']);

//Input Validations
if($login == '') {
$errmsg_arr[] = 'Sila masukan Id Pengguna!';
$errflag = true;
}
if($password == '') {
$errmsg_arr[] = 'Sila masukkan Katalaluan!';
$errflag = true;
}

//If there are input validations, redirect back to the login form
if($errflag) {

$_SESSION['ERRMSG_ARR'] = $errmsg_arr;
session_write_close();
header("location: login-form.php");
exit();
}

//Create query
$qry="SELECT * FROM staff WHERE ID_Pengguna='$login' AND Kata_Laluan='".md5($_POST['password'])."'";
$result=mysql_query($qry);
$mysql=mysql_fetch_array($result);

$usertype=$mysql['Tahap_Capaian'];
$num=mysql_num_rows($result);


//Check whether the query was successful or not
if($result) {

if($result && $num==1){

//Login Successful
session_regenerate_id();
$member = mysql_fetch_assoc($result);
echo $_SESSION['SESS_MEMBER_ID'] = $member['ID_Staff'];
echo $_SESSION['SESS_FIRST_NAME'] = $member['Nama'];
session_write_close();
//header("location: syarat_wajib.php");
//exit();
//include("auth.php");
//include("Index.php");

if($usertype=="1"){
echo $usertype;
//echo'<meta http-equiv="refresh" content="0;URL=../skp/syarat_wajib.php">';
}

if($usertype=="2"){

echo'<meta http-equiv="refresh" content="0;URL=../skp/staff_baru.php">';
}

}else {
//Login failed
header("location: login_gagal.php");
exit();
}
}else {
die("Query failed");
}

?> [/code]


auth.php

[code]
<?php
//Start session
session_start();

//Check whether the session variable SESS_MEMBER_ID is present or not
if(!isset($_SESSION['SESS_MEMBER_ID']) || (trim($_SESSION['SESS_MEMBER_ID']) == '')) {
header("location: access-denied.php");
exit();
}
?>
[/code]

[Dwi Language Web Site]

a checker that determine whether to load malay or english? does this means that u still have to prepare both of the malay and bi pages manually?

[Dwi Language Web Site]

properties file? camne nk gune..sowy..i'm a beginner..still much to learn...already search the net for the properties file,tp hape pun tak paham..just a little intro about the thing would be nice..

[Dwi Language Web Site]

mm..ok.....mmang sakit nk double module...penat..if de perubahan kene wat kt kedua2 skali...mmang leceh...pe pun..thanks bebanyak k...

[Kenapa Laman Web Putera.com Tak Boleh Bukak@access]

tp...gane ngan post yg terdahulu...dekat forum sementara tu?.....boleh tak kalau nk access blik?

[Dwi Language Web Site]

salam....

Nk mintak kepastian...
Kalau kite nk buat dwi language web site...selain dari kite buat dua modul berasingan (cth BM n BI)..ade tak care lain yg kita buleh gunekan??

[Php Programming Remote Control Through Internet]

tq...helps a lot..sy try buat dulu...

terima kasih again...

[Php Programming Remote Control Through Internet]

mmm...ok...tp kalau printer port tu digunakan untuk sambungkan ke litar untuk nyalakan led..konsepnye same jugak ke..

[Php Programming Remote Control Through Internet]

salam...

mmm...sy ni nak mintak tips or panduan dari kengkwn sume...

ade tak sesiape yg familiar dengan parallel printer port programming nih...dengan menggunakan javascript kite boleh send bit ke parallel port...sy dh try cari kt internet...memang ade info....tp terlampau banyak n mendalam...so kalau boleh..nk mintak kengkawan yang tahu tuh...explain sikit as intro..so boleh sy faham dengan lebih mudah sikit...

[Tr/vundo.gen]

selepas buat sume tuh...ble shutdown then nk on balik trus x leh load win....thanks for the info..nanti try buat..

ala...x simple la...complicated gk..sy dh try dh update av sume..sblm ni sy gune avg, lg la x leh nk detect langsung trojan tuh...bile change pada avira bru boleh detect...dh bpe banyak av yg sy install n uninsntall sume xleh..

[Tr/vundo.gen]

adeh...my laptop is now officially lingkup...x boleh load window..it say "NTLDR is missing..please press any key to reboot"....anyway thanks for the help....

terima kasih

[Tr/vundo.gen]

[Tr/vundo.gen]

salam...

nk mintak tolong sume camne nk remove virus ni TR/Vundo.Gen...now my C;D;E;F can't open when sy double click..nanti dia keluar another window 'Open With: , choose the program you want to use to open this file'...

[Prob Wif Update User Password]

hehehe...sory-sory...xperasan lak yang tuh...human eror...dh running...tp rekod dlm database dia still x update la...pe pun thanks eh

[Prob Wif Update User Password]

salam...

nak mintak jasa baik kengkawan sumer...boleh x nak mintak tolong tengok pe eror pada code update user password yang sy dh buat ni....

eror dia - Warning: mysql_result() [function.mysql-result]: Unable to jump to row 0 on MySQL result index 4 in D:\xampp\htdocs\SPLI\pro_kemaskini_katalaluan_PI.php on line 10

Katalaluan yang anda masukkan SALAH!!TAHNIAH, katalaluan anda berjaya ditukar

can anyone help me...appreciate it so much....

<?php 
include 'conn.php'; 

$username = $_POST['id'];
$password = $_POST['password'];
$newpassword = $_POST['newpassword'];
$confirmnewpassword = $_POST['confirmnewpassword'];

$result = mysql_query("SELECT katalaluan FROM pengguna WHERE katalaluan='$username'");
if($password != mysql_result($result,0)) 
{ 
echo "Katalaluan yang anda masukkan SALAH!!"; 
} 
if($newpassword == $confirmnewpassword) 
    $sql=mysql_query("UPDATE pengguna SET katalaluan='$newpassword' where id_pengguna='$username'"); 
    if($sql) 
    { 
    echo "TAHNIAH, katalaluan anda berjaya ditukar"; 
    }
else
{ 
echo "The new password and confirm new password fields must be the same"; 
}  
?>

[Multiple Update]

mmmm....ok...ok...trimas.....mmm...kalau nk tanye lg satu boleh x...

tp ni mayb x berkaitan dengan dengan multiple insert nih....ade x sesaper yg tahu camne nk buat no rujukkan contoh macam ni PUO/JMSK/300-8/5(25)...yang boleh auto increment, bile setiap kali user issued out a new surat, nombor dia akan bertambah jd PUO/JMSK/300-8/5(26) and so on...

[Multiple Update]

to li9ht ur were right..i've change my db and added a new primary key

then...$result tuh sepatutnye $sql...hehehe...xperasan...pe pun thanks a bunch...ni coding yang sy dh edit dr hasil tunjuk ajar amin007 n li9ht...

<?php


// connect to the database and select the correct database
mysql_connect('localhost','root','');
mysql_select_db("course") or die("Unable to select database");

echo $size = count($_POST['barang']);


for ($i = 0; $i < $size; $i++)
{
echo $sql = "UPDATE barang2 SET barang = '".$_POST['barang'][$i]."', kuantiti = '".$_POST['kuantiti'][$i]."' where id = '".$_POST['id'][$i]."' AND no_pesanan = '".$_POST['no_pesanan'][$i]."'";
mysql_query($sql) or die ("Error in query: $sql");
}

if ($sql == TRUE) echo "<a href='papar.php'>data berjaya dikemaskini</a> ";
if ($sql == FALSE) echo "data gagal dikemaskini";

mysql_close(); 

?>

to amin007 tq bebanyak.....

[Multiple Update]

mmm...ni contoh table dia...tp data dalam table just dummy je la...just untuk testing query ni je

-- phpMyAdmin SQL Dump
-- version 2.11.4
-- http://www.phpmyadmin.net
--
-- Host: localhost
-- Generation Time: May 02, 2008 at 10:20 AM
-- Server version: 5.0.51
-- PHP Version: 5.2.5

SET SQL_MODE="NO_AUTO_VALUE_ON_ZERO";

--
-- Database: `course`
--

-- --------------------------------------------------------

--
-- Table structure for table `barang2`
--

CREATE TABLE IF NOT EXISTS `barang2` (
  `id` varchar(7) NOT NULL,
  `barang` varchar(30) NOT NULL,
  `kuantiti` varchar(30) NOT NULL
) ENGINE=MyISAM DEFAULT CHARSET=latin1;

--
-- Dumping data for table `barang2`
--

INSERT INTO `barang2` (`id`, `barang`, `kuantiti`) VALUES
('0002900', 'pensel', '3'),
('0002900', 'pembaris', '2'),
('0002900', 'pemadam', '1'),
('0003000', 'buku latihan', '10'),
('0003000', 'buku Computer Security', '1');

[Multiple Update]

still xboleh jalan lagi...x tahu nape....still cakap data gagal dikemaskini

[Multiple Update]

salam to all

sy ade prob ckit utk coding multiple update nih.....boleh x sesaper yg xpert tolong tenggok kn kt mane yg salah...asyik x boleh update je.....

ni coding utk form update dia

<form id="form1" name="form1" method="post" action="proses_kemaskini.php">
  <table width="50%" border="0" cellspacing="2" cellpadding="2">

    <tr>
          <?

    
     while($row=mysql_fetch_array($result))
  {
  ?>
      <td>Kod Barang </td>
      <td><input name="id[]" type="text" id="id[]" value="<?=$row['id'];?>" disabled/></td>
    </tr>
    <tr>
      <td>Butiran</td>
      <td>Kuantiti</td>
    </tr>
    <tr>
      <td><input name="butiran1[]" type="text" id="butiran1[]" value="<?=$row['barang'];?>" /></td>
      <td><input name="kuantiti1[]" type="text" id="kuantiti1[]" value="<?=$row['kuantiti'];?>" /></td>
    </tr>    
    <? 

    } ?>
    <tr>
      <td>&nbsp;</td>
      <td><input type="submit" name="Submit" value="Submit" /></td>
    </tr>
  </table>
</form>

yang ni lak tuk proses dia

<?php
// connect to the database and select the correct database
mysql_connect('localhost','root','');
mysql_select_db("course") or die("Unable to select database");

$size = count($_POST['butiran1']);


for ($i = 0; $i < $size; $i++)
{
$sql = "UPDATE barang2 set barang = '".$_POST['butiran1'.$i]."', kuantiti = '".$_POST['kuantiti1'.$i]."' where id = '".$_POST['id'.$i]."'";
mysql_query($sql) or die ("Error in query: $sql");
}



if ($result == TRUE) echo "<a href='papar.php'>data berjaya dikemaskini</a> ";
if ($result == FALSE) echo "data gagal dikemaskini";
mysql_close();
?>

hope korang sume dapat membantu....plzzzz...dh blur sesangat dh nih....

[Strtotime]

trimas atas sume suggestion yg diberi....setelah di edit-edit kesemuanye ni la hasilnye

    $result=mysql_query ("SELECT * FROM pesanan where status='pending'");
    

while($row = mysql_fetch_array($result)){
$exp_date=$row['Tarikh_penghantaran'];
$id=$row['id'];

function compare_date($expired,$id){


        $exp_date=$expired;
        $todays_date=date("Y-m-d");
        $today=strtotime($todays_date);
        $expiration_date=strtotime($exp_date);
        
            if ($expiration_date >= $today) { 
                echo "Tiada Kelewatan Penghantaran";
                echo "<br>";
                }
                
            else {
                echo "Amaran pertama sehingga ";
                $expiration_date = date("Y-m-d", strtotime($exp_date. "+2 week"));
                echo "$expiration_date";
                echo "<br>";
                

                }
            }
        echo compare_date($exp_date,$id); 

        }

function perbandingan dh selesai...tapi...masalahnye sekarang...function ni xdapat nk running kalau ader lebih dari satu data.....dia ckp

Fatal error: Cannot redeclare compare_date() (previously declared in D:\xampp\htdocs\SPKPP&P\papar_amaran2.php:78) in D:\xampp\htdocs\SPKPP&P\papar_amaran2.php on line 78

hope korang leh membantu....

[Strtotime]

salam...

nk mintak tolong tengokkn code yang sy buat ni boleh x...

    $result=mysql_query ("SELECT * FROM pesanan where status='pending'");
    

while($row = mysql_fetch_array($result)){

function compare_date(){

        $exp_date=$row['Tarikh_penghantaran'];
        $todays_date=date("Y-m-d");
        $today=strtotime($todays_date);
        $expiration_date=strtotime($exp_date);
        
            if ($expiration_date >= $today) { 
                echo "Tiada Kelewatan Penghantaran";
                echo "<br>";
                }
                
            else {
                echo "Amaran pertama ";
            
                
                $expiration_date = date("Y-m-d", strtotime($expiration_date . "+2 week"));
                
                echo "$expiration_date";
                echo "<br>";
                
                }
            }
        echo compare_date(); 
        }

problem sy skang nih...dekat $exp_date tuh...dia cam x boleh nk tarik data tarikh penghantaran dr database....betul ke cara sy isytiharkan variable cam tu....

output yg sy dapat jadi gini

Amaran pertama 1970-01-01

then nk tanye betul ke cara pengiraan tarikh yg sy buat tu..nk dapat expired date yang seterusnya tambah lagi 2 minggu...