将信息从表显示到已注册的用户标识或用户名MYSQL PHP

I have 2 tables in my mysql database, UserReg and usernotes. Im trying to display the information from table usernotes for a particular username and userid. I was able to display the information from database, but it was showing up for every single user in the system instead of for the one who's information is that. I am working with dreamweaver server behaviors and I am not sure how to display information for just one user that the information belongs too. Both tables have UserName and UserID. Is it possible to just make user_id 7 to see information added for user_id 7? Please help!

<?php require_once('Connections/dbconnection.php'); ?>
<?php
//initialize the session
if (!isset($_SESSION)) {
  session_start();
}

// ** Logout the current user. **
$logoutAction = $_SERVER['PHP_SELF']."?doLogout=true";
if ((isset($_SERVER['QUERY_STRING'])) && ($_SERVER['QUERY_STRING'] != "")){
  $logoutAction .="&". htmlentities($_SERVER['QUERY_STRING']);
}

if ((isset($_GET['doLogout'])) &&($_GET['doLogout']=="true")){
  //to fully log out a visitor we need to clear the session varialbles
  $_SESSION['MM_Username'] = NULL;
  $_SESSION['MM_UserGroup'] = NULL;
  $_SESSION['PrevUrl'] = NULL;
  unset($_SESSION['MM_Username']);
  unset($_SESSION['MM_UserGroup']);
  unset($_SESSION['PrevUrl']);

  $logoutGoTo = "index.php";
  if ($logoutGoTo) {
    header("Location: $logoutGoTo");
    exit;
  }
}
?>
<?php
if (!isset($_SESSION)) {
  session_start();
}
$MM_authorizedUsers = "0,1";
$MM_donotCheckaccess = "false";

// *** Restrict Access To Page: Grant or deny access to this page
function isAuthorized($strUsers, $strGroups, $UserName, $UserGroup) { 
  // For security, start by assuming the visitor is NOT authorized. 
  $isValid = False; 

  // When a visitor has logged into this site, the Session variable MM_Username set equal to their username. 
  // Therefore, we know that a user is NOT logged in if that Session variable is blank. 
  if (!empty($UserName)) { 
    // Besides being logged in, you may restrict access to only certain users based on an ID established when they login. 
    // Parse the strings into arrays. 
    $arrUsers = Explode(",", $strUsers); 
    $arrGroups = Explode(",", $strGroups); 
    if (in_array($UserName, $arrUsers)) { 
      $isValid = true; 
    } 
    // Or, you may restrict access to only certain users based on their username. 
    if (in_array($UserGroup, $arrGroups)) { 
      $isValid = true; 
    } 
    if (($strUsers == "") && false) { 
      $isValid = true; 
    } 
  } 
  return $isValid; 
}

$MM_restrictGoTo = "login.php";
if (!((isset($_SESSION['MM_Username'])) && (isAuthorized("",$MM_authorizedUsers, $_SESSION['MM_Username'], $_SESSION['MM_UserGroup'])))) {   
  $MM_qsChar = "?";
  $MM_referrer = $_SERVER['PHP_SELF'];
  if (strpos($MM_restrictGoTo, "?")) $MM_qsChar = "&";
  if (isset($_SERVER['QUERY_STRING']) && strlen($_SERVER['QUERY_STRING']) > 0) 
  $MM_referrer .= "?" . $_SERVER['QUERY_STRING'];
  $MM_restrictGoTo = $MM_restrictGoTo. $MM_qsChar . "accesscheck=" . urlencode($MM_referrer);
  header("Location: ". $MM_restrictGoTo); 
  exit;
}
?>
<?php
if (!function_exists("GetSQLValueString")) {
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "") 
{
  if (PHP_VERSION < 6) {
    $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
  }

  $theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);

  switch ($theType) {
    case "text":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;    
    case "long":
    case "int":
      $theValue = ($theValue != "") ? intval($theValue) : "NULL";
      break;
    case "double":
      $theValue = ($theValue != "") ? doubleval($theValue) : "NULL";
      break;
    case "date":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "defined":
      $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
      break;
  }
  return $theValue;
}
}

mysql_select_db($database_dbconnection, $dbconnection);
$query_Recordset1 = "SELECT UserReg.UserID,UserReg.UserName,usernotes.UserID,usernotes.UserName,usernotes.Homework,usernotes.Notes,usernotes.Grades,usernotes.classphotos FROM UserReg,usernotes WHERE UserReg.UserID = usernotes.UserID AND UserReg.UserName = usernotes.UserName ORDER BY UserReg.UserName = usernotes.UserName";
$Recordset1 = mysql_query($query_Recordset1, $dbconnection) or die(mysql_error());
$row_Recordset1 = mysql_fetch_assoc($Recordset1);
$totalRows_Recordset1 = mysql_num_rows($Recordset1);
?>

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
duanchi1230 2015-03-29 06:47
关注
Your code is a little unreadable for me, so I explain only the logic to you ;)

Once a user has logged in, you (your php script) has (must have) user's id (saved to user's session when he did authorized). Now, if user is trying access, for example

page.php?item_id=7

In your script you must do:

Load data from the database

Check if user_id of the loaded data equals to user_id of logged in use

If they equals, show data to him. If not - show "access denied" message to him
解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

在桌面内的一个字段中列出的MySQL用户名查询另一个表并返回用户结果 mysql php
2018-06-11 08:55

回答 2 已采纳 You can use a subquery and the keyword IN for this: SELECT * FROM meta_table WHERE userID IN (SEL
MYSQL检查数据库中是否已存在用户名[重复] database mysql php
2019-05-13 10:38

回答 1 已采纳 You are trying to use mysql_query when you have (based on the rest of your code that is working) a
使用相同的用户名/密码将所有用户插入到mysql数据库中是不安全的吗？ mysql php
2018-06-16 22:14

回答 2 已采纳 Yes, this is common. Most web apps and web sites do something like this. WordPress, for example, u
mysql 大数据字段类型_MySQL所支持的数据类型与表字段约束类型的学习教程
2021-03-14 15:15

Malong Wu的博客摘要：这篇MySQL栏目下的“MySQL所支持的数据类型与表字段约束类型的学习教程”，介绍的技术点是“MySQL、字段约束、数据类型、表字段、数据、支持”，希望对大家开发技术学习和问题解决有帮助。MySQL 数据(字段)...
MySQL——根据用户名查询用户的排名情况 mysql sql 排序算法有问必答
2022-03-11 16:36

回答 3 已采纳改为使用：ROW_NUMBER() 试试SELECT b.* FROM( SELECT *,ROW_NUMBER() OVER (ORDER BY score DESC) AS r_number
php+mysql登录注册验证 mysql php
2022-09-24 13:27

回答 4 已采纳我将你得代码测试了，运行没有问题，应该是你配置得有问题环境
急求！请问一下php的知识：为什么注册页面提交的信息显示成功了却没录入数据表中导致查无此用户无法登录？ mysql php sql
2019-02-26 22:00

回答 4 已采纳你那个显示注册成功只能说明点注册的时候传值成功，没有入库的可能是因为你的id没有设置自增长，因为你没传id 所以没录进去，建议你可以写个死id放进去，或者把数据库的id设置成自增长再试试
PHP之mysql面试题大全(58持续更新中)
2023-09-26 15:20

PHP隔壁老王邻居的博客排好序的快速查找的数据结构死锁（Deadlock）是指两个或多个事务相互等待对方所持有的资源，导致所有事务都无法继续执行的情况。简单来说，就是两个或多个事务在彼此等待对方释放资源，从而陷入了无法继续的僵持状态...
mysql数据同步到大数据后通过查询大数据实现报表的实时展示 big data java mysql 有问必答
2021-09-18 10:38

回答 4 已采纳你好像描述的有些问题吧？为什么查询大数据展示？你口中的大数据指定到底是什么？如果你是学习大数据（hadoop相关），使用java语言在做数仓项目，那么你可以参考一下这张图查询数据一般从数据库里面查
使用PHP检查MySQL表中是否存在用户名？ [重复] mysql php sql
2015-09-13 08:09

回答 4 已采纳 Use this- $sql = "SELECT username FROM Servers where email='".$user_info['email']."'";
如何把MySQL表的列名输出到PHP页面显示？ mysql php
2015-08-18 06:56

回答 1 已采纳 ``` SHOW COLUMNS FROM TableName ```
PHP+mysql+php在线电子小说网站的设计与实现毕业设计-附源码260907
2023-03-05 09:00

weixin_BYSJ1987的博客这让交流的过程更快捷、准确、便利，同时完成在线电子小说网站的基本功能：首页、站点管理（轮播图、公告栏）用户管理（管理员）内容管理（论坛、论坛类型、文章、文章类型）更多管理（注册用户、小说分类、电子小说...
mysql 2个表如何用A表来控制B表字段的查询显示 java mysql spring
2020-12-09 12:55

回答 2 已采纳首先应该对用户进行角色划分分组，比如有10个用户，划分为2种角色，角色A、角色B，另外业务数据表table1中有10个字段，角色A能查询5个字段，角色B能查询另外5个字段，就可以写两个sql语句，在执
PHP+MySQL的大学宿舍管理系统【附源码】
2023-10-26 22:13

广西千灵通网络科技有限公司的博客 PHP+MySQL宿舍管理系统，包含学生、宿管、管理员三个端
基于PHP MYSQL的化妆品店会员管理网站的设计与实现毕业设计源码131102
2022-09-12 11:57

高级程序源的博客本文主要通过对化妆品店会员管理系统的...本文展示了首页页面的实现效果图，并通过代码和页面介绍了用户注册功能、销售管理功能、会员管理、充值记录管理功能的实现过程。关键词：会员管理；Thinkphp框架；化妆品店
没有解决我的问题, 去提问

悬赏问题

¥15 python的qt5界面
¥15 无线电能传输系统MATLAB仿真问题
¥50 如何用脚本实现输入法的热键设置
¥20 我想使用一些网络协议或者部分协议也行，主要想实现类似于traceroute的一定步长内的路由拓扑功能
¥30 深度学习，前后端连接
¥15 孟德尔随机化结果不一致
¥15 apm2.8飞控罗盘bad health，加速度计校准失败
¥15 求解O-S方程的特征值问题给出边界层布拉休斯平行流的中性曲线
¥15 谁有desed数据集呀
¥20 手写数字识别运行c仿真时，程序报错错误代码sim211-100

将信息从表显示到已注册的用户标识或用户名MYSQL PHP

1条回答 默认 最新

悬赏问题

1条回答默认最新