Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource

scriptkiddie

Hi all! I've got a problem conserning the mysql function mysql_num_rows(). This is the error message I get without having OR die(mysql_error()); in my code:

Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /home/user/brukersys/member.php on line 16

Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /home/user/brukersys/member.php on line 16

This is my code:

function auth($_username, $_password)
	{

	$get_users = mysql_query("SELECT * FROM $db[users] WHERE username='$_username' and password='$_password'" ) OR die(mysql_error());

if(mysql_num_rows($get_users) == 0) 		{ return FALSE; }
elseif(mysql_result($get_users,0,"app") == 1) 	{ return "APP"; }
	else 						{ return TRUE; 	}
}

Error message with OR die(mysql_error()); :

You have an error in your SQL syntax near 'WHERE username=test and password=xxxxxx' at line 1

What's wrong?

laserlight

Well, for one thing, $db is undefined within the function.

You should also check that in your test there is an active DB connection, and that the query is correctly formed.

A possible version of code:

function auth($_username, $_password)
{
	global $db;
	$get_users = mysql_query("SELECT * FROM " . $db['users'] . " WHERE username='$_username' AND password='$_password'")
		OR die(mysql_error());

if (mysql_num_rows($get_users) == 0)
	return FALSE;
elseif (mysql_result($get_users, 0, "app") == 1)
	return "APP";
else
	return TRUE;
}

incidentally, one should avoid variable names that begin with an underscore, though it doesnt really matter.

scriptkiddie

Thanks a lot! It worked.

But now I've got another problem. I know it is a bit off-topic in the database forum, but this problem relates to the previous one, I believe..

Now I can't get it to include the "member-area" files, only for those who are logged in.

The code looks like this:

if($login=="1"){

if(auth($username, $password)){

    $_SESSION['loggetinn'] = 1;
    $_SESSION['username'] = $username;
    $_SESSION['password'] = $password;

        include "./header.php";
        include "./menu.php";
        include "./footer.php";
}

kevinsequeira

if the code execution enters the if condition then try to give the full path to the header files.
if you dont get an error or warning like path not found then most likely the if condition does not return true

reg
kevin