"Parse error: syntax error, unexpected T_INCLUDE"?

lollowinwin

Hallo!

I’m trying to set a script for to protect web pages, but run into problems:

I get

“Parse error: syntax error, unexpected T_INCLUDE in /home/levande/public_html/sidor/login/medlemssidor/index.php on line 25”

And this is the code on line 24-28:

“//this should the the absolute path to the no_access.html file - see above
include('/home/levande/public_html/sidor/login/no_access.html');
exit;
}
?>”

What is the problem? I know less than little about this.

Thanks,

Lollo Vestlund
Sweden

Installer

Post the last five or ten lines of code before that.

bpat1434

missing a semi-colon ending the quote prior to the include...... on line 24

Installer

I think that line's a comment--Lollo enquoted the code excerpt.

lollowinwin

<?php

//prevents caching
header("Expires: Sat, 01 Jan 2000 00:00:00 GMT");
header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
header("Cache-Control: post-check=0, pre-check=0",false);
session_cache_limiter();
session_start();

//this should the the absolute path to the config.php file
//(ie /home/levande/public_html/sidor/login/config.php or
//the location in relationship to the page being protected - ie ../login/config.php )
require('/home/levande/public_html/sidor/login/config.php');

//this should the the absolute path to the functions.php file - see the instrcutions for config.php above
require('/home/levande/public_html/sidor/login/functions.php');

//this is group name or username of the group or person that you wish to allow access to
// - please be advise that the Administrators Groups has access to all pages.
if (allow_access(Administrators) != "yes")
{

//this should the the absolute path to the no_access.html file - see above
include ('/home/levande/public_html/sidor/login/no_access.html');
exit;
}
?>

Weedpacket

There are no syntax errors in the posted code.

dewen

Do you have same error if you block "include" line?

lollowinwin

Yes I do

tsinka

Hi,

please post index.php and functions.php as attachment.
The problem might be caused by some error in one of the include files.

Thomas

lollowinwin

how attach?

index.php

<?php

//this should the the absolute path to the functions.php file - see the instrcutions for config.php above
require('/home/levande/public_html/sidor/login/functions.php');

//this should the the absolute path to the no_access.html file - see above
include ('/home/levande/public_html/sidor/login/no_access.html');
exit;
}
?>

functions.php

<?php

//function to get the date
function last_login()
{
$date = gmdate("Y-m-d");
return $date;
}

//function that sets the session variable
function sess_vars($base_dir, $server, $dbusername, $dbpassword, $db_name, $table_name, $user, $pass)
{

//make connection to dbase
$connection = @mysql_connect($server, $dbusername, $dbpassword)
			or die(mysql_error());

$db = @mysql_select_db($db_name,$connection)
			or die(mysql_error());

$sql = "SELECT * FROM $table_name WHERE username = '$user' and password = password('$pass')";

$result = @mysql_query($sql, $connection) or die(mysql_error());


//get the number of rows in the result set
$num = mysql_num_rows($result);

//set session variables if there is a match
if ($num != 0) 
{
	while ($sql = mysql_fetch_object($result)) 
	{
		$_SESSION[first_name] 	= $sql -> firstname;
		$_SESSION[last_name] 	= $sql -> lastname; 
		$_SESSION[user_name] 	= $sql -> username;       
		$_SESSION[password] 	= $sql -> password;
		$_SESSION[group1]	 	= $sql -> group1;
		$_SESSION[group2]	 	= $sql -> group2;
		$_SESSION[group3] 		= $sql -> group3;
		$_SESSION[pchange]		= $sql -> pchange;  
		$_SESSION[email] 		= $sql -> email;
		$_SESSION[redirect]		= $sql -> redirect;
		$_SESSION[verified]		= $sql -> verified;
		$_SESSION[last_login]	= $sql -> last_login;
	}
}else{
	$_SESSION[redirect] = "$base_dir/errorlogin.html";
}

}

//functions that will determine if access is allowed
function allow_access($group)
{
if ($SESSION[group1] == "$group" || $SESSION[group2] == "$group" || $SESSION[group3] == "$group" ||
$SESSION[group1] == "Administrators" || $SESSION[group2] == "Administrators" || $SESSION[group3] == "Administrators" ||
$_SESSION[user_name] == "$group")
{
$allowed = "yes";
}else{
$allowed = "no";
}
return $allowed;
}

//function to check the length of the requested password
function password_check($min_pass, $max_pass, $pass)
{

$valid = "yes";
if ($min_pass > strlen($pass) || $max_pass < strlen($pass))
{
	$valid = "no";
}

return $valid;

}

tsinka

There's a section named "Additional Options" if you reply to a post. Use the button "Manage Attachments" that allows you to attach files (you may need to rename the files to .txt before attaching them).

Thomas

lollowinwin

Attached files

tsinka

You wrote that you still get that error message if you block the include line. How did you "block" the include line ?

Besides that I see one problem in your code (that shouldn't have anything to do with the syntax error) that may lead to problems:

You dont use double quotes with array indexes

//use
iff (allow_access("Administrators") != "yes")
//instead of
f (allow_access(Administrators) != "yes")

// the same with e.g. $_SESSION variables

Thomas

Weedpacket

You've got a stray 0xa0 character after the brace: if(allow_access("Administrators")!="yes){ <-here

bpat1434

Since I can't stand not looking at pretty formatted code, I went through and formatted it. Perhaps now we can see this error. Cuz Weed... I dont' see that error....

##
### INDEX.PHP
##
<?php

//prevents caching
header("Expires: Sat, 01 Jan 2000 00:00:00 GMT");
header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
header("Cache-Control: post-check=0, pre-check=0",false);
session_cache_limiter();
session_start();

//this should the the absolute path to the config.php file
//(ie /home/levande/public_html/sidor/login/config.php or
//the location in relationship to the page being protected - ie ../login/config.php )
require('/home/levande/public_html/sidor/login/config.php');

//this should the the absolute path to the functions.php file - see the instrcutions for config.php above
require('/home/levande/public_html/sidor/login/functions.php');

//this is group name or username of the group or person that you wish to allow access to
// - please be advise that the Administrators Groups has access to all pages.
if (allow_access('Administrators') != 'yes')
{
	//this should the the absolute path to the no_access.html file - see above
	include('/home/levande/public_html/sidor/login/no_access.html');
	exit;
}
?>

##
### FUNCTIONS.PHP
##
<?php

//function to get the date
function last_login()
{
	$date = gmdate('Y-m-d');
	return $date;
}

//function that sets the session variable
function sess_vars($base_dir, $server, $dbusername, $dbpassword, $db_name, $table_name, $user, $pass)
{
	//make connection to dbase
	$connection = @mysql_connect($server, $dbusername, $dbpassword)
	or die(mysql_error());

$db = @mysql_select_db($db_name,$connection)
or die(mysql_error());

$sql = "SELECT * FROM $table_name WHERE username = '$user' and password = password('$pass')";

$result = @mysql_query($sql, $connection) or die(mysql_error());


//get the number of rows in the result set
$num = mysql_num_rows($result);

//set session variables if there is a match
if ($num != 0)
{
while ($sql = mysql_fetch_object($result))
{
    $_SESSION['first_name'] = $sql->firstname;
	$_SESSION['last_name']  = $sql->lastname;
	$_SESSION['user_name']  = $sql->username;
	$_SESSION['password']   = $sql->password;
	$_SESSION['group1']     = $sql->group1;
	$_SESSION['group2']     = $sql->group2;
	$_SESSION['group3']     = $sql->group3;
	$_SESSION['pchange']    = $sql->pchange;
	$_SESSION['email']      = $sql->email;
	$_SESSION['redirect']   = $sql->redirect;
	$_SESSION['verified']   = $sql->verified;
	$_SESSION['last_login'] = $sql->last_login;
}
}else{
	$_SESSION['redirect']	= $base_dir . '/errorlogin.html';
}

/**
 *	I added this since it wasn't there, and should be for clean and resource friendly code
 */
	mysql_free_result($result); // Free the result set
	mysql_close($connection); // Close the connection
}

//functions that will determine if access is allowed
function allow_access($group)
{
	if (
		$_SESSION['group1']		== $group || 
		$_SESSION['group2']		== $group || 
		$_SESSION['group3']		== $group || 
		$_SESSION['group1']		== 'Administrators' || 
		$_SESSION['group2']		== 'Administrators' || 
		$_SESSION['group3']		== 'Administrators' || 
		$_SESSION['user_name']	 == $group
		)
	{
		$allowed = "yes";
	}else{
		$allowed = "no";
	}
	return $allowed;
}

//function to check the length of the requested password
function password_check($min_pass, $max_pass, $pass)
{
	$valid = 'yes';
	if ($min_pass > strlen($pass) || $max_pass < strlen($pass))
	{
		$valid = 'no';
	}

return $valid;
}

?>

Errors anyone?

tsinka

I think, Weedpacket found the error. I had to switch to another editor in order to find that character. That's a really weird character since it looks like a whitespace.

Thomas

lollowinwin

Thanks for helping me out. Since I using a free script, and don't understand much about php, what is "a stray 0xa0 character" and how do I find it? I don't understand how to correct the error.
Thanks for all your help 🙂

Weedpacket

lollowinwin wrote:
Thanks for helping me out. Since I using a free script, and don't understand much about php, what is "a stray 0xa0 character" and how do I find it?

As noted earlier, you probably can't see it because it's usually rendered as a blank space.

As noted earlier, it is after the brace: if(allow_access("Administrators")!="yes){ <-here

I don't understand how to correct the error.

And as noted earlier still, "There are no syntax errors in the posted code." Which I determined by copying the posted code and passing it through PHP to check.