Parse error: syntax error, unexpected $end in C:\wamp\www\052\processes.php on line 584
rijec je o login skripti koja koristi index.php za naslovnu pristupnu stranicu, evo koda od index.php
<?php
error_reporting (E_ALL ^ E_NOTICE);
include 'include/constants.php';
if (!$alert) { $alert = " "; }
if(isset($_COOKIE[CKIEUS]) && isset($_COOKIE[CKIEPS])){
header("Location: processes.php?function=checkusercookie"); }
else {
session_start();
if(!isset($_SESSION['username'])){
?>
<style type="text/css">
<!--
.style1 {font-family: Verdana, Arial, Helvetica, sans-serif}
.style2 {font-size: 12px}
#form1 .style6 img {
border-top-color: #FFFFFF;
border-right-color: #FFFFFF;
border-bottom-color: #FFFFFF;
border-left-color: #FFFFFF;
}
-->
</style>
<title>B und A </title><body bgcolor="#FFFFFF">
<form action="processes.php" method="post" name="form1" class="style1" id="form1">
<div align="center" class="style6">
<h1 align="center">Log In</h1>
<p align="center">
<?php echo "<font color=\"#FF0000\">".$alert."</font>"; ?>
</p>
<table width="299" border="0" align="center" cellpadding="4" cellspacing="0">
<tr>
<td width="41%" height="28"><div align="right">Username : </div></td>
<td width="59%"><input name="username" type="text" class="textfield" id="username" value=""/></td>
</tr>
<tr>
<td><div align="right">Password : </div></td>
<td><input name="password" type="password" class="textfield" id="password" value="" /></td>
</tr>
<tr>
<td height="25" colspan="2"><div align="right"><span class="style20 style2">Remember Me For 30 Day's
<input name="rember" type="checkbox" id="remberme" value="yes" />
</span></div></td>
</tr>
<tr>
<td colspan="2"></label></td>
</tr>
<tr>
<td colspan="2"><div align="left">
<p align="right"><span class="style19">
<input name="function" type="hidden" class="textfield" id="function" value="checkuser" size="50" />
<input name="Submit" type="submit" class="textfield" value="Submit" />
</span></p>
<p align="center"><span class="style16"><a href="forgotpassword.php"><span class="textarea style6 style2">Forgot your password</span></a><span class="textarea style6 style2"> | <a href="register.php">Sign Up</a></span></span></p>
<p align="left"><a href="docs/scriptby.jpg" ><img src="docs/scriptby.jpg" alt="Click Here" width="151" height="35"></a></p>
</div>
<a href="#"><span class="textarea style6 style16">
<label></label>
</span></a></td>
</tr>
</table>
</div>
</form>
<span class="style1">
<?
}
else {
header("Location: main.php");
}
}
?>
i onda kada tu unesem recimo username: test i sifru:1234 dobijem gornju gresku u fajlu processes.php, kod je ispod:
<?php
error_reporting (E_ALL ^ E_NOTICE);
include 'include/constants.php';
$function = $_GET['function'];
if (!$function) {
$function = $_POST['function'];
}
if (!$function) {
header("Location: main.php");
}
########################################################################################################
if ($function == "logout") {
########################################################################################################
error_reporting (E_ALL ^ E_NOTICE);
include 'include/db.php';
session_start();
if(!isset($_REQUEST['logmeout'])){
$cookie_name = CKIEUS;
$cookie_value = $_SESSION['username'];
$cookie_expire = time() - 60*60*24*30;
setcookie($cookie_name,$cookie_value,$cookie_expire,"/");
$cookie_name = CKIEPS;
$cookie_value = $_SESSION['password'];
$cookie_expire = time() - 60*60*24*30;
setcookie($cookie_name,$cookie_value,$cookie_expire,"/");
session_unset();
session_destroy();
if(!session_is_registered('first_name')){
?>
<html>
<head>
<style type="text/css">
<!--
.style1 {font-family: Verdana, Arial, Helvetica, sans-serif}
-->
</style>
</head>
<body>
<div align="center" class="style1">
<h1>Logged Out<br>
<br></h1>
You are now loged out.<br>
<br>
You will no longer be remembered on this computer.
</p>
<br>
<br>
<br>
<a href="index.php">Click here</a> to login again.
</p>
</div>
</body>
</html>
<?
}
}
########################################################################################################
} elseif ($function == "checkusercookie") {
########################################################################################################
session_start();
include 'include/constants.php';
include 'include/db.php';
$cookieuser = $_COOKIE[CKIEUS];
$cookiepass = $_COOKIE[CKIEPS];
$username = $cookieuser;
$password = $cookiepass;
if((!$username) || (!$password)){
$alert = "<br>Your browser refused our cookie, you must login again.<br />";
include 'index.php';
exit();
}
$sql = mysql_query("SELECT * FROM ".DBTBLE." WHERE username='$username' AND password='$password'");
$login_check = mysql_num_rows($sql);
$row=mysql_fetch_assoc($sql);
$session_username = $row['username'];
$session_first_name = $row['first_name'];
$session_last_name = $row['last_name'];
$session_email_address = $row['email_address'];
$session_info = $row['info'];
$session_user_level = $row['user_level'];
$session_password = $row['password'];
if($login_check > 0){
$_SESSION['first_name'] = $session_first_name;
$_SESSION['last_name'] = $session_last_name;
$_SESSION['email_address'] = $session_email_address;
$_SESSION['username'] = $session_username;
$_SESSION['info'] = $session_info;
$_SESSION['user_level'] = $session_user_level;
$_SESSION['password'] = $session_password;
header("Location: main.php");
}
else {
$alert = "<br>The username and password do not match.<br />";
include 'index.php';
}
########################################################################################################
} elseif ($function == "checkuser") {
########################################################################################################
session_start();
include 'include/db.php';
$username = $_POST['username'];
$passwordbef = $_POST['password'];
$rember = $_POST['rember'];
if((!$username) || (!$passwordbef)){
$alert = "<br>You didnt put all you login details in.<br />";
include 'index.php';
exit();
}
$password = md5($passwordbef);
$sql = mysql_query("SELECT * FROM ".DBTBLE." WHERE username='$username' AND password='$password'");
$login_check = mysql_num_rows($sql);
$row=mysql_fetch_assoc($sql);
$session_username = $row['username'];
$session_first_name = $row['first_name'];
$session_last_name = $row['last_name'];
$session_email_address = $row['email_address'];
$session_info = $row['info'];
$session_user_level = $row['user_level'];
$session_password = $row['password'];
if ($rember == "yes") {
$cookie_name = "".CKIEUS."";
$cookie_value = $session_username;
$cookie_expire = time()+60*60*24*30;
setcookie($cookie_name,$cookie_value,$cookie_expire,"/");
$cookie_name = "".CKIEPS."";
$cookie_value = $session_password;
$cookie_expire = time()+60*60*24*30;
setcookie($cookie_name,$cookie_value,$cookie_expire,"/");
}
if($login_check > 0){
$_SESSION['first_name'] = $session_first_name;
$_SESSION['last_name'] = $session_last_name;
$_SESSION['email_address'] = $session_email_address;
$_SESSION['username'] = $session_username;
$_SESSION['info'] = $session_info;
$_SESSION['user_level'] = $session_user_level;
$_SESSION['password'] = $session_password;
header("Location: main.php");
}
else {
$alert = "<br>Username or Password incorrect<br />";
include 'index.php';
}
########################################################################################################
} elseif ($function == "forgotpasswordprocesschange") {
########################################################################################################
session_start();
$pass2 = $_POST['pass2'];
$pass1 = $_POST['pass1'];
$username = $_POST['username'];
if((!$pass1) || (!$pass2))
{
$alert = "You didnt put all you details in.<br><br/>";
include 'forgotpassword.php';
exit();
}
if ($pass1 == $pass2)
{
$newpassword = md5($pass1);
}
else
{
$alert = "Passwords do not match.<br><br/>";
include 'forgotpassword.php';
exit();
}
$forgot = "NULL";
include 'include/db.php';
$query = "UPDATE ".DBTBLE." SET password = '$newpassword', forgot = '$forgot' WHERE username = '$username'";
mysql_query($query) or die('Error, failed please contact Administrator');
$url = "http://".SITURL."/";
$to = $email;
$subject = 'Password Request';
$message = '
Dear '.$username.',
Your password for the '.$sitename.' has been reset.
You may now login using the link below
'.$url.'
If you didnt reset your password please contact the system admin immediatly.
Thanks
'.$emailfrom.'
';
$headers = 'From: '.EMAlAD.'' . "\r\n" .
'Reply-To: '.EMAlRP.'' . "\r\n" .
'X-Mailer: PHP/' . phpversion();
mail($to, $subject, $message, $headers);
$alert = "Password has been reset sucessfully, you may now login.<br><br/>";
include 'index.php';
########################################################################################################
} elseif ($function == "forgotpasswordprocessmail") {
########################################################################################################
$email = $_POST['email'];
$username = $_POST['username'];
if((!$email) || (!$username))
{
$alert = "You didnt put all you details in.<br><br/>";
include 'forgotpassword.php';
exit();
}
include 'include/db.php';
$sql = mysql_query("SELECT * FROM ".DBTBLE." WHERE username='$username' AND email_address='$email'");
$check = mysql_num_rows($sql);
if($check > 0){
$check = "userokay";
} else {
$alert = "Username and email address dont match.<br><br/>";
include 'forgotpassword.php';
exit();
}
function createRandomcode() {
$chars = "abcdefghijkmnopqrstuvwxyz023456789";
srand((double)microtime()*1000000);
$i = 0;
$pass = '' ;
while ($i <= 50) {
$num = rand() % 33;
$tmp = substr($chars, $num, 1);
$pass = $pass . $tmp;
$i++;
}
return $pass;
}
$password = createRandomcode();
$query = "UPDATE ".DBTBLE." SET forgot = '$password' WHERE username='$username' AND email_address='$email'";
mysql_query($query) or die('Error, Check MySql');
$username = $_POST['username'];
$code = $password;
$url = "http://".SITURL."/forgotpassword.php?username=".$username."&code=".$code."";
$sitename = ''.SITNAM.'';
$emailfrom = ''.EMAlFM.'';
$to = $email;
$subject = 'Password Request';
$message = '
Dear '.$username.',
Your password for the '.$sitename.' has been requested.
To reset your password please follow the link below.
'.$url.'
If you didnt request your password please delete this email.
Thanks
'.$emailfrom.'
';
$headers = 'From: '.EMAlAD.'' . "\r\n" .
'Reply-To: '.EMAlRP.'' . "\r\n" .
'X-Mailer: PHP/' . phpversion();
mail($to, $subject, $message, $headers);
$alert = "An email has been sent to you with instructions on how to reset your password.<br><br/>";
include 'index.php';
exit();
########################################################################################################
} elseif ($function == "editpasswordprocess") {
########################################################################################################
session_start();
$username = $_SESSION['username'];
$curpass = $_POST['curpass'];
$pass1 = $_POST['pass1'];
$pass2 = $_POST['pass2'];
$current_db = $_SESSION['password'];
if (isset($_COOKIE["".CKIEUS.""]) && isset($_COOKIE["".CKIEPS.""])){
$cookiesarehere = "YES"; }
else {
$cookiesarehere = "NO"; }
$current = md5($curpass);
if((!$pass1) || (!$pass2) || (!$curpass)){
$alert = "You didnt put all you details in.<br><br/>";
include 'editpassword.php';
exit();
}
if ($pass1 == $pass2) {
$newpassword = md5($pass1);
}
else {
$alert = "Passwords do not match.<br><br/>";
include 'editpassword.php';
exit();
}
if ($current == $current_db) {
$securty = 'passed';
}
else {
$alert = "Current password is incorrect<br><br/>";
include 'editpassword.php';
exit();
}
include 'include/db.php';
$query = "UPDATE ".DBTBLE." SET password = '$newpassword' WHERE username = '$username'";
mysql_query($query) or die('Error, failed please contact Administrator');
$cookie_name = "".CKIEUS."";
$cookie_value = $_SESSION['username'];
$cookie_expire = time() - 60*60*24*30;
setcookie($cookie_name,$cookie_value,$cookie_expire,"/");
$cookie_name = "".CKIEPS."";
$cookie_value = $_SESSION['password'];
$cookie_expire = time() - 60*60*24*30;
setcookie($cookie_name,$cookie_value,$cookie_expire,"/");
session_unset();
session_destroy();
include 'include/db.php';
session_start();
$sql = mysql_query("SELECT * FROM ".DBTBLE." WHERE username='$username' AND password='$newpassword'");
$login_check = mysql_num_rows($sql);
$row=mysql_fetch_assoc($sql);
$session_username = $row['username'];
$session_first_name = $row['first_name'];
$session_last_name = $row['last_name'];
$session_email_address = $row['email_address'];
$session_info = $row['info'];
$session_user_level = $row['user_level'];
$session_password = $row['password'];
if ($cookiesarehere == "YES") {
$cookie_name = "".CKIEUS."";
$cookie_value = $session_username;
$cookie_expire = time()+60*60*24*30;
setcookie($cookie_name,$cookie_value,$cookie_expire,"/");
$cookie_name = "".CKIEPS."";
$cookie_value = $session_password;
$cookie_expire = time()+60*60*24*30;
setcookie($cookie_name,$cookie_value,$cookie_expire,"/");
}
if($login_check > 0){
$_SESSION['first_name'] = $session_first_name;
$_SESSION['last_name'] = $session_last_name;
$_SESSION['email_address'] = $session_email_address;
$_SESSION['username'] = $session_username;
$_SESSION['info'] = $session_info;
$_SESSION['user_level'] = $session_user_level;
$_SESSION['password'] = $session_password;
$alert = "<br>Password sucessfully changed. <br>";
include 'main.php';
}
else {
$alert = "Password could not be updated<br><br/>";
include 'main.php';
}
########################################################################################################
} elseif ($function == "adduser") {
########################################################################################################
include 'include/db.php';
$first_name = $_POST['first_name'];
$last_name = $_POST['last_name'];
$email_address = $_POST['email_address'];
$username = $_POST['username'];
$info = $_POST['info'];
$pass1 = $_POST['pass1'];
$pass2 = $_POST['pass2'];
if ($pass1 == $pass2) {
$password_checked = $pass1;
}
else {
$alert = "Passwords do not match!";
include 'register.php';
exit();
}
if((!$first_name) || (!$last_name) || (!$email_address) || (!$username)){
$alert = 'You did not submit the following required information. <br />';
if(!$first_name){
$alert = "First Name is a required field. Please enter it below.<br />";
} if(!$last_name){
$alert = "Last Name is a required field. Please enter it below.<br />";
} if(!$email_address){
$alert = "Email Address is a required field. Please enter it below.<br />";
} if(!$username){
$alert = "Desired Username is a required field. Please enter it below.<br />";
} include 'register.php';
exit();
}
$sql_username = mysql_query("SELECT username FROM ".DBTBLE." WHERE username = '$username'");
$username_check = mysql_num_rows($sql_username);
if($username_check > 0){
$alert = "The username you have selected has already been registered by another member in our database. Please choose a different Username!<br />";
include 'register.php';
exit();
}
$password = md5($password_checked);
$info2 = htmlspecialchars($info);
$query = "INSERT INTO ".DBTBLE." (first_name, last_name, email_address, username, password, info) VALUES ('$first_name', '$last_name', '$email_address', '$username', '$password', '$info2')";
mysql_query($query) or die('Error, failed please contact Administrator);
if(!$query){
$alert = 'There has been an error creating the account.';
include 'index.php';
}
else {
$url = "http://".SITURL."/";
$url2 = "http://".SITURL."/forgotpassword.php";
$sitename = ''.SITNAM.'';
$emailfrom = ''.EMAlFM.'';
$alert = '<strong>Sign up was sucessful, you may now log in.';
include 'index.php';
}
########################################################################################################
} elseif ($function == "edituserprocess") {
########################################################################################################
session_start();
$first_name = $_POST['first_name'];
$last_name = $_POST['last_name'];
$info = $_POST['info'];
$email_address = $_POST['email_address'];
$username = $_POST['username'];
$password = $_SESSION['password'];
if(isset($_COOKIE["".CKIEUS.""]) && isset($_COOKIE["".CKIEPS.""])){
$cookiesarehere = "YES";
} else {
$cookiesarehere = "NO";
}
include 'include/db.php';
$query = "UPDATE ".DBTBLE." SET first_name = '$first_name', last_name = '$last_name', email_address = '$email_address', info = '$info' WHERE username = '$username'";
mysql_query($query) or die('Error, Check MySql');
$cookie_name = "".CKIEUS."";
$cookie_value = $_SESSION['username'];
$cookie_expire = time() - 60*60*24*30;
setcookie($cookie_name,$cookie_value,$cookie_expire,"/");
$cookie_name = "".CKIEPS."";
$cookie_value = $_SESSION['password'];
$cookie_expire = time() - 60*60*24*30;
setcookie($cookie_name,$cookie_value,$cookie_expire,"/");
session_unset();
session_destroy();
include 'include/db.php';
session_start();
$sql = mysql_query("SELECT * FROM ".DBTBLE." WHERE username='$username' AND password='$password'");
$login_check = mysql_num_rows($sql);
$row=mysql_fetch_assoc($sql);
$session_username = $row['username'];
$session_first_name = $row['first_name'];
$session_last_name = $row['last_name'];
$session_email_address = $row['email_address'];
$session_info = $row['info'];
$session_user_level = $row['user_level'];
$session_password = $row['password'];
if ($cookiesarehere == "YES") {
$cookie_name = "".CKIEUS."";
$cookie_value = $session_username;
$cookie_expire = time()+60*60*24*30;
setcookie($cookie_name,$cookie_value,$cookie_expire,"/");
$cookie_name = "".CKIEPS."";
$cookie_value = $session_password;
$cookie_expire = time()+60*60*24*30;
setcookie($cookie_name,$cookie_value,$cookie_expire,"/");
}
if($login_check > 0){
$_SESSION['first_name'] = $session_first_name;
$_SESSION['last_name'] = $session_last_name;
$_SESSION['email_address'] = $session_email_address;
$_SESSION['username'] = $session_username;
$_SESSION['info'] = $session_info;
$_SESSION['user_level'] = $session_user_level;
$_SESSION['password'] = $session_password;
$alert = "<br>Details sucessfully changed. <br>";
include 'main.php';
}
else {
$alert = "Details could not be updated<br><br/>";
include 'main.php';
}
}
?>
Ovaj drugi fajl ima 580 linija, greska se javlja u 582. liniji
[Ovu poruku je menjao SuperC dana 22.01.2008. u 13:59 GMT+1]