Implementation of a sign-up (not sign-in) form in MySQL

Report · Sep 27, 2006

Hi,

I am a newbie to PHP/MySQL. However, I have successfully created several databases and connected to them. I've been able to create users and sign-in pages (admin sections) to add, edit and delete items to the database.

However, I've hit a wall with a project I'm working on.

The goal is to create a system where people can sign their kids up for a class. So, I have created several tables for that purpose. A "family" table for the parents, a "student" table for the kids, a "class" table for the each class and then a user type" table to determine the level of access that each user will have.

Each family has a unique family_id and each student has a unique student_id. Each student_id record has a family_id collumn as a foreign key, since each family can have one or more kids.

How do I create a system where parents can log in and ONLY see whether their own kids are signed up or not for a particular class and add them to it if they are not?

I would appreciate any help.

Report · Sep 27, 2006

Once the parent is logged in, you should have a value for their family_id.

Search the student tables for the corresponding family_id an list the
members of that family currently enrolled in classes.

"Elfkonig" <webforumsuser@macromedia.com> wrote in message
news:efei4e$ofn$1@forums.macromedia.com...
> Hi,
>
> I am a newbie to PHP/MySQL. However, I have successfully created several
> databases and connected to them. I've been able to create users and
> sign-in
> pages (admin sections) to add, edit and delete items to the database.
>
> However, I've hit a wall with a project I'm working on.
>
> The goal is to create a system where people can sign their kids up for a
> class. So, I have created several tables for that purpose. A "family"
> table for
> the parents, a "student" table for the kids, a "class" table for the each
> class
> and then a user type" table to determine the level of access that each
> user
> will have.
>
> Each family has a unique family_id and each student has a unique
> student_id.
> Each student_id record has a family_id collumn as a foreign key, since
> each
> family can have one or more kids.
>
> How do I create a system where parents can log in and ONLY see whether
> their
> own kids are signed up or not for a particular class and add them to it if
> they
> are not?
>
> I would appreciate any help.
>

Report · Sep 27, 2006

Thanks Crash.

However, therein lies my problem. I don't know how to get the value of the logged-in family.

quote:

Originally posted by: Newsgroup User
Once the parent is logged in, you should have a value for their family_id.

Search the student tables for the corresponding family_id an list the
members of that family currently enrolled in classes.

Report · Sep 27, 2006

OK. do you currently have your members/user signing up an logging in?

If you do, then you're creating a session variable for them. This can
either be used to identify them, or be used to look up info to identify
them.

You should be able to find out who's logged in with this code:

<?php
session_start();
echo $_SESSION['MM_Username'];
?>

You should be able to put that code on any page (in any part) and see the
username being printed. You can then do a recordset filtered by the
MM_Username to obtain the family ID, or you can lookup the family ID on the
login page and set that as a session variable:

Does you family table contain within it the username and password to login
with? If so:

Filter family recordset by Session variable for MM_Username
Get Family and set it as $_SESSION['FamilyID'] (or whatever)
Filter all other recordsets by FamilyID to get the records for that family.

Does that make a bit more sense?
"Elfkonig" <webforumsuser@macromedia.com> wrote in message
news:efeo9r$2sj$1@forums.macromedia.com...
> Thanks Crash.
>
> However, therein lies my problem. I don't know how to get the value of the
> logged-in family.
>
>

quote:

Originally posted by: Newsgroup User
> Once the parent is logged in, you should have a value for their family_id.
>
> Search the student tables for the corresponding family_id an list the
> members of that family currently enrolled in classes.
>
>

>
>
>

Report · Sep 28, 2006

I am trying to implement your suggestion, which makes total sense. I'll let you know the results.

Report · Sep 29, 2006

I am afraid I have a long way to go still to get a handle on code.

I inserted the echo $_SESSION['MM_Username'] code that you suggested and indeed, my record listing page shows the name of the username that logged in.

After that, I simply don't know how to filter recordsets. I've been looking around but have found no clear instructions. I've used a number of self-teaching guides, such as PHP for DW 8 and others, but there's no mention of filtering.

Any hints?

Report · Sep 29, 2006

I have figured out how to filter, but where do I set the $_SESSION['FamilyID']? In the login page, or in the listing (results by Family) page)?

Let me know if seeing the code would help. Thanks.

Report · Oct 02, 2006

You can set the Session ID in your login page, as you know they will be
hitting that (whereas if you set it on another page you really might not
know which page they will be accessing).

You should then be able to filter all recordsets by the
$_SEssion['FamilyID'] var.

I saw you posted above, assumign same problem will reply there as well.

jon

"Elfkonig" <webforumsuser@macromedia.com> wrote in message
news:efkgva$caf$1@forums.macromedia.com...
>I have figured out how to filter, but where do I set the
>$_SESSION['FamilyID']? In the login page, or in the listing (results by
>Family) page)?
>
> Let me know if seeing the code would help. Thanks.

Report · Oct 02, 2006

It would make sense to use it there, but how do I turn the $_SESSION['variable'] from 'MM_Username' to 'Family_ID' when the form asks for the Username and the Password to let people log-in? It's that part that I don't know how to implement.

quote:

Originally posted by: Newsgroup User
You can set the Session ID in your login page, as you know they will be
hitting that (whereas if you set it on another page you really might not
know which page they will be accessing).

You should then be able to filter all recordsets by the
$_SEssion['FamilyID'] var.

I saw you posted above, assumign same problem will reply there as well.

jon

"Elfkonig" <webforumsuser@macromedia.com> wrote in message
news:efkgva$caf$1@forums.macromedia.com...
>I have figured out how to filter, but where do I set the
>$_SESSION['FamilyID']? In the login page, or in the listing (results by
>Family) page)?
>
> Let me know if seeing the code would help. Thanks.

Report · Oct 02, 2006

On your login page, setup a recordset. Filter it by the variables from your
form (POST, I think).

Then just search your user/family records for the Username (assuming there's
only one Family ID per username).

So:

1. Enter in username/password
2. Go to login page to verify that
3. Before (or after) verification, filter a recordset by username
3. $SESSION['FamilyID'] = FamilyRecordsetFiltered['FamilyID'];

Then you should be set. Make sense? (you should also probably put in some
If(Recordset!=""){Set Session}

Jon

"Elfkonig" <webforumsuser@macromedia.com> wrote in message
news:efrloo$i56$1@forums.macromedia.com...
> It would make sense to use it there, but how do I turn the
> $_SESSION['variable'] from 'MM_Username' to 'Family_ID' when the form asks
> for
> the Username and the Password to let people log-in? It's that part that I
> don't
> know how to implement.
>
>
>
>

quote:

Originally posted by: Newsgroup User
> You can set the Session ID in your login page, as you know they will be
> hitting that (whereas if you set it on another page you really might not
> know which page they will be accessing).
>
> You should then be able to filter all recordsets by the
> $_SEssion['FamilyID'] var.
>
> I saw you posted above, assumign same problem will reply there as well.
>
> jon
>
> "Elfkonig" <webforumsuser@macromedia.com> wrote in message
> news:efkgva$caf$1@forums.macromedia.com...
> >I have figured out how to filter, but where do I set the
> >$_SESSION['FamilyID']? In the login page, or in the listing (results by
> >Family) page)?
> >
> > Let me know if seeing the code would help. Thanks.
>
>
>

>
>
>

Report · Oct 02, 2006

I have attached the code of my login page. How do I filter it by Username and then how do I create the relationship between Username and the FamilyID so that in the pages that follow, the only content that shows is that which matches the FamilyID.

In other words, at which point do I switch the session variable from being "MM_Username" to it being "MM_id_Family_fam"? (I don't know by the way where the "MM_" comes from. I assume it is a PHP default, but I don't yet understand the mechanics of it.)

Please forgive my very rudimentary understanding of the code.

CODE:

Report · Oct 03, 2006

It looks like your user table will contain a family ID. It also looks like
you're already creating a family table recordset, filtered by username - is
this correct? In this section:

$query_rsFamily, we can see that you are filtering your rsFamily recordset
by your username - does this work? I'm guessing no as it looks like you're
tryign to filter it via the SERVER variable, which hasn't been created yet.
Instead, look for this variable: ($_POST['username'])), or filter by form
results with the name 'username'.

If changing that works for you, then below that, (next to this code:)

//declare two session variables and assign them
> $_SESSION['MM_Username'] = $loginUsername;
> $_SESSION['MM_UserGroup'] = $loginStrGroup;

Modify it to look like this:

//declar session variables
$_SESSION['MM_Username']=$loginUsername;
$_SESSION['MM_UserGroup']=$loginStrGroup;
$_SESSION['MM_Family']=$row_rsFamily['FamilyID'];

And you should then have your session variable set for your family, where
$row_rsFamily is the call to your family ID. You will then be able to sort
queries according to your FamilyID by sorting for the session variable
MM_Family.

You mentioned wondering why MM was in the front - that's for Macromedia.
You can replace it for whatever, but I suggest just using it (and the naming
convention if you wish, as I did for MM_Family).

Let me know where that puts you,

Jon

"Elfkonig" <webforumsuser@macromedia.com> wrote in message
news:efrq9s$ngj$1@forums.macromedia.com...
>I have attached the code of my login page. How do I filter it by Username
>and
> then how do I create the relationship between Username and the FamilyID so
> that
> in the pages that follow, the only content that shows is that which
> matches the
> FamilyID.
>
> In other words, at which point do I switch the session variable from being
> "MM_Username" to it being "MM_id_Family_fam"? (I don't know by the way
> where
> the "MM_" comes from. I assume it is a PHP default, but I don't yet
> understand
> the mechanics of it.)
>
> Please forgive my very rudimentary understanding of the code.
>
> CODE:
>
> <?php require_once('../../Connections/connCasyDB.php'); ?>
> <?php
> if (!function_exists("GetSQLValueString")) {
> function GetSQLValueString($theValue, $theType, $theDefinedValue = "",
> $theNotDefinedValue = "")
> {
> $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) :
> $theValue;
>
> $theValue = function_exists("mysql_real_escape_string") ?
> mysql_real_escape_string($theValue) : mysql_escape_string($theValue);
>
> switch ($theType) {
> case "text":
> $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
> break;
> case "long":
> case "int":
> $theValue = ($theValue != "") ? intval($theValue) : "NULL";
> break;
> case "double":
> $theValue = ($theValue != "") ? "'" . doubleval($theValue) . "'" :
> "NULL";
> break;
> case "date":
> $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
> break;
> case "defined":
> $theValue = ($theValue != "") ? $theDefinedValue :
> $theNotDefinedValue;
> break;
> }
> return $theValue;
> }
> }
>
> $colname_rsFamily = "-1";
> if (isset($_SESSION[''MM_Username''])) {
> $colname_rsFamily = (get_magic_quotes_gpc()) ?
> $_SESSION[''MM_Username''] :
> addslashes($_SESSION[''MM_Username'']);
> }
> mysql_select_db($database_connCasyDB, $connCasyDB);
> $query_rsFamily = sprintf("SELECT * FROM es_family WHERE Username = %s",
> GetSQLValueString($colname_rsFamily, "text"));
> $rsFamily = mysql_query($query_rsFamily, $connCasyDB) or
> die(mysql_error());
> $row_rsFamily = mysql_fetch_assoc($rsFamily);
> $totalRows_rsFamily = mysql_num_rows($rsFamily);
> ?>
> <?php
> // *** Validate request to login to this site.
> if (!isset($_SESSION)) {
> session_start();
> }
>
> $loginFormAction = $_SERVER['PHP_SELF'];
> if (isset($_GET['accesscheck'])) {
> $_SESSION['PrevUrl'] = $_GET['accesscheck'];
> }
>
> if (isset($_POST['username'])) {
> $loginUsername=$_POST['username'];
> $password=$_POST['password'];
> $MM_fldUserAuthorization = "id_usertype";
> $MM_redirectLoginSuccess = "listing.php";
> $MM_redirectLoginFailed = "loginFailed.php";
> $MM_redirecttoReferrer = true;
> mysql_select_db($database_connCasyDB, $connCasyDB);
>
> $LoginRS__query=sprintf("SELECT Username, Password, id_usertype FROM
> es_family WHERE Username=%s AND Password=%s",
> GetSQLValueString($loginUsername, "text"), GetSQLValueString($password,
> "text"));
>
> $LoginRS = mysql_query($LoginRS__query, $connCasyDB) or
> die(mysql_error());
> $loginFoundUser = mysql_num_rows($LoginRS);
> if ($loginFoundUser) {
>
> $loginStrGroup = mysql_result($LoginRS,0,'id_usertype');
>
> //declare two session variables and assign them
> $_SESSION['MM_Username'] = $loginUsername;
> $_SESSION['MM_UserGroup'] = $loginStrGroup;
>
> if (isset($_SESSION['PrevUrl']) && true) {
> $MM_redirectLoginSuccess = $_SESSION['PrevUrl'];
> }
> header("Location: " . $MM_redirectLoginSuccess );
> }
> else {
> header("Location: ". $MM_redirectLoginFailed );
> }
> }
> ?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
> " http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
> <html xmlns=" http://www.w3.org/1999/xhtml">
> <head>
> <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1" />
> <title>Sign Up Form</title>
> </head>
>
> <body>
> <form id="signup" name="signup" method="POST" action="<?php echo
> $loginFormAction; ?>">
> <label for="username">Username:</label>
> <p>
> <input type="text" name="username" id="username" />
> </p>
> <p>
> <label for="password">Password:</label>
> <input type="password" name="password" id="password" />
> </p>
> <p>
> <input type="submit" name="Submit" value="Sign In" />
> </p>
> </form>
> </body>
> </html>
> <?php
> mysql_free_result($rsFamily);
> ?>
>

Report · Oct 03, 2006

Thank you very much for your input, Crash.

I got rid of the filtering by Username in the SQL statement since it didn't seem to do anything. I am still able to log in successfully after deleting that line.

However, I did not understand what you meant when you wrote:
"Instead, look for this variable: ($_POST['username'])), or filter by form results with the name 'username'."

Also, I get an error message when I add the third variable:

$_SESSION['MM_Family']=$row_rsFamily['id_Family_fam'];

The error message is:
"The Server Behavior panel cannot determine whether "Log In User" or "Log In User " is applied to your page. Please select Edit SErver Behaviors and change one of the two behaviors to ensure that each is uniquely identifiable."

After I add the third variable, a second Log In Server Behavior indeed appears in the panel.

Report · Oct 04, 2006

"Elfkonig" <webforumsuser@macromedia.com> wrote in message
news:efubbl$ok0$1@forums.macromedia.com...
> Thank you very much for your input, Crash.
>
> I got rid of the filtering by Username in the SQL statement since it
> didn't
> seem to do anything. I am still able to log in successfully after deleting
> that
> line.

Are you filtering the recordset by $_POST['username'] now?

>
> However, I did not understand what you meant when you wrote:
> "Instead, look for this variable: ($_POST['username'])), or filter by form
> results with the name 'username'."

You were tryign to filter by a session variable that had not yet been set -
that's why it wasn't "doing anything" - it was an empty value. You need
instead to sort your recordset via the $_POST variable, which is how you
capture your form data. $_POST['username'] is what your code said your
username was specified as. Therefore, to get the fmaily ID of the member
logging in, you will need to lookup the memeber name from the form
submitted, or $_POST['username'].

>
> Also, I get an error message when I add the third variable:

> $_SESSION['MM_Family']=$row_rsFamily['id_Family_fam'];
>
> The error message is:
> "The Server Behavior panel cannot determine whether "Log In User" or "Log
> In
> User " is applied to your page. Please select Edit SErver Behaviors and
> change
> one of the two behaviors to ensure that each is uniquely identifiable."
>
> After I add the third variable, a second Log In Server Behavior indeed
> appears
> in the panel.

Remove the variable until we get the other stuff set, then we'll add the
variable.

Report · Oct 04, 2006

I changed the filterin to use POST and it's working fine. I tested it and I am able to get into the restricted pages.

However, when I add the third variable:

$_SESSION['MM_Family']=$row_rsFamily['id_Family_fam'];

the error message still pops up that says:
"The Server Behavior panel cannot determine whether "Log In User" or "Log In User " is applied to your page. Please select Edit SErver Behaviors and change one of the two behaviors to ensure that each is uniquely identifiable."

... and, the second Log In Server Behavior again appears in the panel.

What am I doing wrong?

Report · Oct 04, 2006

Try setting that variable in it's own PHP tags instead of placing it within
the tags of your login behavior. You *should* be able to place it in it's
own tags right under your recordset call to determine what the family ID is.

Jon

"Elfkonig" <webforumsuser@macromedia.com> wrote in message
news:eg0o9c$mgs$1@forums.macromedia.com...
>I changed the filterin to use POST and it's working fine. I tested it and I
>am
> able to get into the restricted pages.
>
> However, when I add the third variable:
>
> $_SESSION['MM_Family']=$row_rsFamily['id_Family_fam'];
>
> the error message still pops up that says:
> "The Server Behavior panel cannot determine whether "Log In User" or "Log
> In
> User " is applied to your page. Please select Edit SErver Behaviors and
> change
> one of the two behaviors to ensure that each is uniquely identifiable."
>
> ... and, the second Log In Server Behavior again appears in the panel.
>
> What am I doing wrong?
>

Report · Oct 08, 2006

I did what you suggested, placing the third variable within its own tags. The good news is that by doing that the error message and the additional login disappeared. The bad news is that it didn't do anything beyond that.

In the listing page (I only have the login page and the listing page so far), the Username comes up by inserting:

<?php
session_start();
echo $_SESSION['MM_Username'];
?>

so I know that the right user is logged in. However, when I also add

<?php
session_start();
echo $_SESSION['MM_Family'];
?>

the family ID doesn't show up.

Besides, assuming I am managed to put the Family ID in the SESSION, how do I retrieve it?

Also, Crash, do you know of any way that one could chat with an expert in real time? I feel like I'm inches away from solving this problem, and if I could run a couple of trial-and-error approaches with someone guiding me, it'd be taken care of in a matter of minutes no doubt.

Please let me know your thoughts.

Thanks.

Report · Oct 08, 2006

Ok. Below is the code for the recordset from which I am building the listing for the students.

What do I need to add to that recordset to filter it against the MM_Family session variable that represents the Family_ID? I have successfully added a {Session.MM_Family} dynamic text which proves that the session is using the correct Family ID. I entered

session_start();
$_SESSION['MM_Family'] = $row_rsFamily['id_Family_fam'];

before the recordset code. Now, however, I don't know how to add that variable to the recordset that use to create the listing.

Any ideas?

Report · Oct 09, 2006

what chat program do you use?

you can chat with me on MSN at paladin @ stormwraith dotcom.

if you use icq, aim or yahoo let me know and i'll get you the appropriate
address.

To filter your recordset via a session variable, just open your dialog box
to edit yoru recordset, then filter it by session variable and put in
MM_Family where it asks for the name.

Your sql will look (kinda) like this:

Above your recordset call, it will look for the variable (*I filtered mine
by newsID field and that's what I had it named)

$colname_Recordset1 = "1";
if (isset($_SESSION['newsID'])) {
$colname_Recordset1 = (get_magic_quotes_gpc()) ? $_SESSION['newsID'] :
addslashes($_SESSION['newsID']);
}

and then, in the SQL:

WHERE newsID = %s", $colname_Recordset1);

Send me an IM or email at crash blat cdcdigital dotcom.

jon
'

"Elfkonig" <webforumsuser@macromedia.com> wrote in message
news:egc2kf$d0$1@forums.macromedia.com...
> Ok. Below is the code for the recordset from which I am building the
> listing
> for the students.
>
> What do I need to add to that recordset to filter it against the MM_Family
> session variable that represents the Family_ID? I have successfully added
> a
> {Session.MM_Family} dynamic text which proves that the session is using
> the
> correct Family ID. I entered
>
> session_start();
> $_SESSION['MM_Family'] = $row_rsFamily['id_Family_fam'];
>
> before the recordset code. Now, however, I don't know how to add that
> variable
> to the recordset that use to create the listing.
>
> Any ideas?
>
> <?php
> mysql_select_db($database_connCasyDB, $connCasyDB);
> $query_rsExtDay = "SELECT DATE_FORMAT(es_extendedDay.date_ed, '%a,
> %c/%d/%y')
> AS date_ed, es_students.id_student, CONCAT(es_students.FirstName_stu, '
> ',es_students.LastName_stu) AS student FROM es_extendedDay, es_students
> WHERE
> es_students.id_student = es_extendedDay.idstu_ed ORDER BY
> es_extendedDay.date_ed";
> $rsExtDay = mysql_query($query_rsExtDay, $connCasyDB) or
> die(mysql_error());
> $row_rsExtDay = mysql_fetch_assoc($rsExtDay);
> $totalRows_rsExtDay = mysql_num_rows($rsExtDay);
> ?>
>