The first crucial IF statement checks the session containing data to ensure that the user is allowed to view the page. If the user is properly authenticated, the page will be shown. Otherwise, the page will re-refer to the login.

The rest of the main page is pretty simple and you can structure it how you like - providing, of course, that you include the appropriate links mentioned above. Adding extra options is as easy as adding a few lines of code to the switch. The switch statement chooses what to do depending on the header variable “change”. It has 3 inbuilt forms and a default clause which initiates when $_GET[‘change’] is empty.

Resending Validation E-Mails (resend.php)
When running a script system that features user authentication, one essential feature is a script that resends the validation e-mail, ensuring that if the e-mail doesn't reach the recipient (due to network connectivity problems, over-eager anti-spam systems, etc) then it can be re-sent with ease by simply filling out a form.

<?php include 'config.php'; if(isset($_POST['resend'])) { $email = trim($_POST['email']); $query = mysql_query("SELECT Actkey FROM Users WHERE Email = '$email' LIMIT 1") or die(mysql_error()); while($row = mysql_fetch_array($query)){ $act = $row['Actkey']; if(mysql_num_rows($query) > 0) { $send = mail($email , "Activate your account" , "Thank you for registering with YourWebsite.\n\nClick the link below to activate your account:\nhttp://CHANGETHISURL.COM/activate.php?id=".$act."\n\nPlease do not reply, this is an automated mailer.\n\nThanks", "FROM: auto@mailer.com"); if($send){ echo ' <html> <head> <title>Success</title> <link href="style.css" rel="stylesheet" type="text/css"> </head> <body> <div id="wrapper"> <div id="head">the resend activation email page</div> <br> <div id="success"> <p>The validation email was successfully sent. <a href="login.php">Click here</a> to login once you have activated.</p> </div> </div> </body> </html> '; } else { echo ' <html> <head> <title>Error</title> <link href="style.css" rel="stylesheet" type="text/css"> </head> <body> <div id="wrapper"> <div id="head">the resend activation email page</div> <br> <div id="error"> <p>Ha, what an act. There has been an error processing your activation email. Please contact the administrator.</p> </div> </div> </body> </html> '; } } else { echo ' <html> <head> <title>Error</title> <link href="style.css" rel="stylesheet" type="text/css"> </head> <body> <div id="wrapper"> <div id="head">the resend activation email page</div> <br> <div id="error"> <p>Sorry, your email was not found in the database, please enter an email address that you have registered with and not recieved and email with.</p> </div> </div> </body> </html> '; } } } else { ?> <html> <head> <title>Resend validation email</title> <link href="style.css" rel="stylesheet" type="text/css"> </head> <body> <div id="wrapper"> <div id="head">the resend activation email page</div> <br> <div id="main"> <p>Ok, so your activation email didn't get sent? DAMN S**T C*H(#@ ((@J no, stop swearing, put that bottle down. You don't need it. We need each other. I'm here to resend your email, so enter your email address, and I will send the validation link to that email, provided you have registered ofcourse, if you are trying to hack me, what a sad guy, taking advantage of my emotions like that... jeez.</p> <form method="post" action="<?= $_SERVER['PHP_SELF'] ?>"> <p>Email:<br> <input name="email" type="text"> <p> <input name="resend" type="submit" id="resend" value="Resend"> </form> </p> Once you enter your email and hit resend, I will make sure your email is valid, then send you out your validation link. If it doesn't come, try me again! I'm not a one night stand you know... <p>By the way, I am very (case) sensitive so enter the email exactly as you registered with it. </p> </div> </div> </body> </html> <? } mysql_close($l); ?>

As you can probably deduce, this script features a logic switch, meaning that when the user first loads the page they will be shown a form, and when they submit the data, the page will process that data instead. This involves searching the database for the user account with the email address provided. If it is found, an e-mail is sent to the appropriate e-mail address with the user’s activation key in a URL that they can activate. As before, though, you must change that URL in the mail() function to reflect your server's settings!

If the email address isn’t found the user gets an error message.  You may have noticed I use PHP_SELF as the form method in all the forms so far - That is basically just telling the form to process onto itself.  Its a convenient method that reduces the overall number of scripts needed for the whole membership system.

- Tutorial written by Scrowler

Pages (4): <Prev 1 2 [3] 4 Next>

Automatic Translations: