|  Respuesta: Página Web con envío de datos por Dreamweaver  
  Y aquí el código de la pág ventas (que es pag de acceso restringido), 1ª parte:
 <?php require_once('Connections/empresa.php'); ?>
 <?php
 //initialize the session
 if (!isset($_SESSION)) {
 session_start();
 }
 
 // ** Logout the current user. **
 $logoutAction = $_SERVER['PHP_SELF']."?doLogout=true";
 if ((isset($_SERVER['QUERY_STRING'])) && ($_SERVER['QUERY_STRING'] != "")){
 $logoutAction .="&". htmlentities($_SERVER['QUERY_STRING']);
 }
 
 if ((isset($_GET['doLogout'])) &&($_GET['doLogout']=="true")){
 //to fully log out a visitor we need to clear the session varialbles
 $_SESSION['MM_Username'] = NULL;
 $_SESSION['MM_UserGroup'] = NULL;
 $_SESSION['PrevUrl'] = NULL;
 unset($_SESSION['MM_Username']);
 unset($_SESSION['MM_UserGroup']);
 unset($_SESSION['PrevUrl']);
 
 $logoutGoTo = "index.php";
 if ($logoutGoTo) {
 header("Location: $logoutGoTo");
 exit;
 }
 }
 ?>
 <?php
 if (!isset($_SESSION)) {
 session_start();
 }
 $MM_authorizedUsers = "";
 $MM_donotCheckaccess = "true";
 
 // *** Restrict Access To Page: Grant or deny access to this page
 function isAuthorized($strUsers, $strGroups, $UserName, $UserGroup) {
 // For security, start by assuming the visitor is NOT authorized.
 $isValid = False;
 
 // When a visitor has logged into this site, the Session variable MM_Username set equal to their username.
 // Therefore, we know that a user is NOT logged in if that Session variable is blank.
 if (!empty($UserName)) {
 // Besides being logged in, you may restrict access to only certain users based on an ID established when they login.
 // Parse the strings into arrays.
 $arrUsers = Explode(",", $strUsers);
 $arrGroups = Explode(",", $strGroups);
 if (in_array($UserName, $arrUsers)) {
 $isValid = true;
 }
 // Or, you may restrict access to only certain users based on their username.
 if (in_array($UserGroup, $arrGroups)) {
 $isValid = true;
 }
 if (($strUsers == "") && true) {
 $isValid = true;
 }
 }
 return $isValid;
 }
 
 $MM_restrictGoTo = "error_ingreso.php";
 if (!((isset($_SESSION['MM_Username'])) && (isAuthorized("",$MM_authorizedUsers, $_SESSION['MM_Username'], $_SESSION['MM_UserGroup'])))) {
 $MM_qsChar = "?";
 $MM_referrer = $_SERVER['PHP_SELF'];
 if (strpos($MM_restrictGoTo, "?")) $MM_qsChar = "&";
 if (isset($_SERVER['QUERY_STRING']) && strlen($_SERVER['QUERY_STRING']) > 0)
 $MM_referrer .= "?" . $_SERVER['QUERY_STRING'];
 $MM_restrictGoTo = $MM_restrictGoTo. $MM_qsChar . "accesscheck=" . urlencode($MM_referrer);
 header("Location: ". $MM_restrictGoTo);
 exit;
 }
 ?>
 <?php
 if (!function_exists("GetSQLValueString")) {
 function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
 {
 if (PHP_VERSION < 6) {
 $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
 }
 
 $theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);
 
 switch ($theType) {
 case "text":
 $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
 break;
 case "long":
 case "int":
 $theValue = ($theValue != "") ? intval($theValue) : "NULL";
 break;
 case "double":
 $theValue = ($theValue != "") ? doubleval($theValue) : "NULL";
 break;
 case "date":
 $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
 break;
 case "defined":
 $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
 break;
 }
 return $theValue;
 }
 }
 
 $editFormAction = $_SERVER['PHP_SELF'];
 if (isset($_SERVER['QUERY_STRING'])) {
 $editFormAction .= "?" . htmlentities($_SERVER['QUERY_STRING']);
 }
 
 if ((isset($_POST["MM_insert"])) && ($_POST["MM_insert"] == "form1")) {
 $insertSQL = sprintf("INSERT INTO ventas (Factura, Nombre, Telefono, Direccion, Producto, IdCliente, IdProducto, FormaPago, Cheque, Cantidad, Total) VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s)",
 GetSQLValueString($_POST['Factura'], "int"),
 GetSQLValueString($_POST['Nombre'], "text"),
 GetSQLValueString($_POST['Telefono'], "text"),
 GetSQLValueString($_POST['Direccion'], "text"),
 GetSQLValueString($_POST['Producto'], "text"),
 GetSQLValueString($_POST['IdCliente'], "int"),
 GetSQLValueString($_POST['IdProducto'], "int"),
 GetSQLValueString($_POST['FormaPago'], "text"),
 GetSQLValueString($_POST['Cheque'], "double"),
 GetSQLValueString($_POST['Cantidad'], "double"),
 GetSQLValueString($_POST['Total'], "double"));
 
 mysql_select_db($database_empresa, $empresa);
 $Result1 = mysql_query($insertSQL, $empresa) or die(mysql_error());
 }
 
 $colname_usuario = "-1";
 if (isset($_SESSION['MM_Username'])) {
 $colname_usuario = $_SESSION['MM_Username'];
 }
 mysql_select_db($database_empresa, $empresa);
 $query_usuario = sprintf("SELECT Usuario FROM clientes WHERE Usuario = %s", GetSQLValueString($colname_usuario, "text"));
 $usuario = mysql_query($query_usuario, $empresa) or die(mysql_error());
 $row_usuario = mysql_fetch_assoc($usuario);
 $totalRows_usuario = mysql_num_rows($usuario);
 
 mysql_select_db($database_empresa, $empresa);
 $query_ventas = "SELECT * FROM ventas";
 $ventas = mysql_query($query_ventas, $empresa) or die(mysql_error());
 $row_ventas = mysql_fetch_assoc($ventas);
 $totalRows_ventas = mysql_num_rows($ventas);
 ?>
     |