Session problems

adiwood

What is wrong with the below??
Could not access Customer table ,1065 error Query was empty

<?php

session_start();

?>

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<HTML>
<HEAD>
	<Title>User Summary</TITLE>

<LINK REL= stylesheet TYPE="text/css" HREF = "styles.css">

</HEAD>

<BODY>

<TABLE WIDTH = 100%>

<TR>
	<TD WIDTH = 20% BGCOLOR="#94D6E7"><IMG SRC = "logo.jpg"size = 50% </TD>
	<TD WIDTH = 60% BGCOLOR="#94D6E7"><H1>Fern Barrow Acoustics Ltd</H1></TD>

	<TD BGCOLOR="#94D6E7"></TD>

</TR>

<TR VALIGN=TOP>
	<TD BGCOLOR="#94D6E7">

		<?php
			include("menu.php");
		?>
	</td>

<TD>
<?php

$Login = false;

if (empty($_GET['strUserName']))
{
	echo '<DIV class= "Error">Error - You have not entered a user name.<BR></DIV> \n';
	$Login = true;
}

if (empty($_GET['strPassword']))
{
	echo '<DIV class="ERROR">Error - You have not entered a password.<BR></DIV> \n';
	$blnHitError = true;
}

if ($blnHitError == false)
{

echo "<TABLE align=\"center\" border=\"1\" width=\"80%\"> \n";

echo "\t \t \t <TR> \n";
echo "\t \t \t \t<TH align=\"center\" colspan=\"4\">Login Details</TH> \n";
echo "\t \t \t <TR> \n";
echo "\t \t \t \t <TH>User</TH> \n";
echo "\t \t \t \t <TD>".$_GET['strUserName']."</TD> \n";
echo "\t \t \t \t <TH>Password</TH> \n";
echo "\t \t \t \t <TD>".$_GET['strPassword']."</TD> \n";
echo "\t \t \t </TR> \n";
echo "\t \t \t <TR> \n";

echo "\t \t </TABLE> \n";

$domain = "***";
$username = "***";
$password = "***";
$database = "***";
$connection = mysql_connect($domain, $username, $password);
$database = mysql_select_db($database, $connection);

$Customer = mysql_query("SELECT `Customerid` ".
		                "FROM `Customer` ".
	 	                "WHERE `UserName` = '".$_GET['strUserName']."' ".
	  	                "AND `Password` = '".$_GET['strPassword']."' ".
	  	                ";", $connection);

$CustomerRecord = mysql_fetch_array($Customer);

echo $customerRecord["Customerid"];

$UserRecord = mysql_query($CustomerRecord, $connection);

if ($UserRecord === false)

{
	echo "<DIV class=\"ERROR\">Could not access Customer table ,".mysql_errno()." error ".mysql_error()." \n";
	$blnHitError = true;
}
else if (mysql_num_rows($UserRecord) > 0)
{
	$CurrentUser = @mysql_fetch_array($UserRecord);

	if (strcmp($_GET['strPassword'], $CurrentUser["strPassword"]) == 0)
	{
		$_SESSION["strValidUser"] = $_GET['strUserName'];
		echo "<H2 align=\"center\">Welcome, ". $_SESSION["strValidUser"] . " you are now logged in</H2>";
	}
	else
	{
		echo "<DIV class=\"ERROR\">Sorry, unable to login. Please check your user name and password.<BR></DIV> \n";
		$blnHitError = true;
	}
}
else
{
	echo "<DIV class=\"ERROR\">Sorry, unable to login. Please check your user name and password.<BR></DIV> \n";
	$blnHitError = true;
}
mysql_close($connection);


}


if ($blnHitError === true)
	{
		echo "<FORM name=\"GotoLogin\" id=\"GotoLogin\" action=\"index.php\" method=\"GET\">";
		echo "<P ALIGN=\"center\">";
		echo "<BUTTON name=\"cmdSubmit\" id=\"cmdSubmit\" type=\"submit\" value=\"Submit\"> Login </BUTTON>";
	}
	else
	{
		echo "<FORM name=\"MainMenu\" id=\"MainMenu\" action=\"main.php\" method=\"GET\">";
		echo "<P ALIGN=\"center\">";
		echo "<BUTTON name=\"cmdSubmit\" id=\"cmdSubmit\" type=\"submit\" value=\"Submit\"> Main Menu </BUTTON>";

}
echo "</P>";
echo "</FORM>";
?>

</TD>
</TR>
</TABLE>

</BODY>

</HTML>
olaf

Tell the server that the sql is only excuted if the form is submitted...