Foros del Web - Ver Mensaje Individual

djmkmix · #28 (**permalink**) 13/05/2011, 18:03

Aquí, dice que requiere la conexion a la base de datos osea el archivo, este codigo restringe el acceso a personas, solo miembros de la pagina, ademas de eso es el codigo del log out.

Código PHP:

Ver original<?php require_once('../../Connections/basededatos.php'); 
 
 
session_start();
 
//initialize the session
if (!isset($_SESSION)) {
  session_start();
}
 
// ** Logout the current user. **
$logoutAction = $_SERVER['PHP_SELF']."?doLogout=true";
if ((isset($_SERVER['QUERY_STRING'])) && ($_SERVER['QUERY_STRING'] != "")){
  $logoutAction .="&". htmlentities($_SERVER['QUERY_STRING']);
}
 
if ((isset($_GET['doLogout'])) &&($_GET['doLogout']=="true")){
  //to fully log out a visitor we need to clear the session varialbles
  $_SESSION['MM_Username'] = NULL;
  $_SESSION['MM_UserGroup'] = NULL;
  $_SESSION['PrevUrl'] = NULL;
  unset($_SESSION['MM_Username']);
  unset($_SESSION['MM_UserGroup']);
  unset($_SESSION['PrevUrl']);
    
  $logoutGoTo = "../index.php";
  if ($logoutGoTo) {
    header("Location: $logoutGoTo");
    exit;
  }
}
 
//initialize the session
if (!isset($_SESSION)) {
  session_start();
}
 
 
$MM_authorizedUsers = "";
$MM_donotCheckaccess = "true";
 
// *** Restrict Access To Page: Grant or deny access to this page
function isAuthorized($strUsers, $strGroups, $UserName, $UserGroup) { 
  // For security, start by assuming the visitor is NOT authorized. 
  $isValid = False; 
 
  // When a visitor has logged into this site, the Session variable MM_Username set equal to their username. 
  // Therefore, we know that a user is NOT logged in if that Session variable is blank. 
  if (!empty($UserName)) { 
    // Besides being logged in, you may restrict access to only certain users based on an ID established when they login. 
    // Parse the strings into arrays. 
    $arrUsers = Explode(",", $strUsers); 
    $arrGroups = Explode(",", $strGroups); 
    if (in_array($UserName, $arrUsers)) { 
      $isValid = true; 
    } 
    // Or, you may restrict access to only certain users based on their username. 
    if (in_array($UserGroup, $arrGroups)) { 
      $isValid = true; 
    } 
    if (($strUsers == "") && true) { 
      $isValid = true; 
    } 
  } 
  return $isValid; 
}
 
$MM_restrictGoTo = "../index.php";
if (!((isset($_SESSION['MM_Username'])) && (isAuthorized("",$MM_authorizedUsers, $_SESSION['MM_Username'], $_SESSION['MM_UserGroup'])))) {   
  $MM_qsChar = "?";
  $MM_referrer = $_SERVER['PHP_SELF'];
  if (strpos($MM_restrictGoTo, "?")) $MM_qsChar = "&";
  if (isset($_SERVER['QUERY_STRING']) && strlen($_SERVER['QUERY_STRING']) > 0) 
  $MM_referrer .= "?" . $_SERVER['QUERY_STRING'];
  $MM_restrictGoTo = $MM_restrictGoTo. $MM_qsChar . "accesscheck=" . urlencode($MM_referrer);
  header("Location: ". $MM_restrictGoTo); 
  exit;
}
?>

Esté codigo es la consulta e imprime en pantalla el nombre del miembro junto su apellido y el logout

Código PHP:

Ver original?php
session_start();
include('../../Connections/basededatos.php'); 
$result = mysql_query("select * from registro where correo = '$_SESSION[MM_Username]' ",$basededatos); 
$row = mysql_fetch_array($result);
$nombre_usuario = ($row["nombre"]);
$apellido_usuario = ($row["apellido"]);
;?>
 
<h1>Bienvenido</h1>
<h4>
<?php
echo " $nombre_usuario $apellido_usuario ";
mysql_free_result($result);
mysql_close($basededatos); 
?>
<a href="<?php echo $logoutAction ?>">Desconectar</a>

Esté ultimo hace la conexión a la base de datos y donde estaba el problema

Código PHP:

Ver original<?php
# FileName="Connection_php_mysql.htm"
# Type="MYSQL"
# HTTP="true"
$hostname_basededatos = "localhost";
$database_basededatos = "clientes";
$username_basededatos = "****";
$password_basededatos = "****";
$basededatos = mysql_pconnect($hostname_basededatos, $username_basededatos, $password_basededatos) or trigger_error(mysql_error(),E_USER_ERROR);
mysql_select_db($database_basededatos, $basededatos);
?>