problem with code somewhere

beckjo1

I'm trying to implement the "Creating a Membership System" program and I've run into a problem I believe it is in the activate.php script. The DB.php is fine because the information is actually being put into the database.
When I fill out and send the register form I do receive an email with a link to click to activate the registration. When I click the link I get the error message:
"Your account could not be activated!"

Can someone please help me sort this out?

Here is the register.php script:

include 'db.php';

// Define post fields into simple variables
$first_name = $POST['first_name'];
$last_name = $POST['last_name'];
$email_address = $POST['email_address'];
$username = $POST['username'];
$info = $_POST['info'];

/ Let's strip some slashes in case the user entered
any escaped characters. /

$first_name = stripslashes($first_name);
$last_name = stripslashes($last_name);
$email_address = stripslashes($email_address);
$username = stripslashes($username);
$info = stripslashes($info);

/ Do some error checking on the form posted fields /

if((!$first_name) || (!$last_name) || (!$email_address) || (!$username)){
echo 'You did not submit the following required information! ';
if(!$first_name){
echo "First Name is a required field. Please enter it below. ";
}
if(!$last_name){
echo "Last Name is a required field. Please enter it below. ";
}
if(!$email_address){
echo "Email Address is a required field. Please enter it below. ";
}
if(!$username){
echo "Desired Username is a required field. Please enter it below. ";
}
include 'join_form.html'; // Show the form again!
/ End the error checking and if everything is ok, we'll move on to
creating the user account /
exit(); // if the error checking has failed, we'll exit the script!
}

/ Let's do some checking and ensure that the user's email address or username
does not exist in the database /

$sql_email_check = mysql_query("SELECT email_address FROM users
WHERE email_address='$email_address'");
$sql_username_check = mysql_query("SELECT username FROM users
WHERE username='$username'");

$email_check = mysql_num_rows($sql_email_check);
$username_check = mysql_num_rows($sql_username_check);

if(($email_check > 0) || ($username_check > 0)){
echo "Please fix the following errors: ";
if($email_check > 0){
echo "Your email address has already been used by another member in our database. Please submit a different Email address! ";
unset($email_address);
}
if($username_check > 0){
echo "The username you have selected has already been used by another Client in our database. Please choose a different Username! ";
unset($username);
}
include 'join_form.html'; // Show the form again!
exit(); // exit the script so that we do not create this account!
}

/ Everything has passed both error checks that we have done.
It's time to create the account! /

/* Random Password generator.
http://www.phpfreaks.com/quickcode/Random_...enerator/56.php

We'll generate a random password for the
user and encrypt it, email it and then enter it into the db.
*/

function makeRandomPassword() {
$salt = "abchefghjkmnpqrstuvwxyz0123456789";
srand((double)microtime()*1000000);
$i = 0;
while ($i <= 7) {
$num = rand() % 33;
$tmp = substr($salt, $num, 1);
$pass = $pass . $tmp;
$i++;
}
return $pass;
}

$random_password = makeRandomPassword();

$db_password = md5($random_password);

// Enter info into the Database.
$info2 = htmlspecialchars($info);
$sql = mysql_query("INSERT INTO users (first_name, last_name, email_address, username, password, info, signup_date)
VALUES('$first_name', '$last_name', '$email_address',
'$username', '$db_password', '$info2', now())")
or die (mysql_error());

if(!$sql){
echo 'There has been an error creating your account. Please contact CADENCE Customer Care.';
} else {
$userid = mysql_insert_id();
// Let's mail the user!
$subject = "Your Cadence Registration Activation!";
$message = "Dear $first_name $last_name,
Thank you for registering at our website, http://www.cadencebackgrounds.com!

You are two steps away from logging in and accessing our exclusive members area.

To activate your account,
please click here: http://www.cadencebackgrounds.com/user/act...036;db_password

Once you activate your memebership, you will be able to login
with the following information:
Username: $username
Password: $random_password

Thanks!
The CADENCE Customer Care Team

This is an automated response, please do not reply!";

mail($email_address, $subject, $message,
"From: CADENCE Customer Care <protect@cadencebackgrounds.com>\n
X-Mailer: PHP/" . phpversion());
echo 'Your Registration information has been mailed to your email address! Please check it and follow the directions!';
}

Here is the activate.php script:

<?
/ Account activation script /

// Get database connection
include 'db.php';

// Create variables from URL.

$userid = $REQUEST['id'];
$code = $REQUEST['code'];

$sql = mysql_query("UPDATE users SET activated='1' WHERE userid='$userid' AND password='$code'");

$sql_doublecheck = mysql_query("SELECT * FROM users WHERE userid='$userid' AND password='$code' AND activated='1'");

$doublecheck = mysql_num_rows($sql_doublecheck);

if($doublecheck == 0){
echo "Your account could not be activated!";
} elseif ($doublecheck > 0) {
echo "Your account has been activated! You may login below! ";
include 'login_form.html';
}

sid

the first problem is, that you didnt use [ PHP] and [ /PHP]

beckjo1

thanks. that much I got and corrected. The I kept gettting a parse error on line 19 of the activate.php script.

I reuploaded activate.php, added the php tags and POOF , it's working.

Sooo, I got it fixed on a accident 🙂