Litte bit of trouble in my script.

NoEffinWay

Ok, I am making a page to transfer a character from a gome to a diff account.

Here is the previous page:

<form name="user" action="xferb.php" method="post">
<table width="50%">
<tr>
<td>Username:</td>
<td><input type="text" name="acct"></td>
</tr>
<tr>
<td>Password:</td>
<td><input type="password" name="pass"></td>
</tr>
<tr>
<td>Character Name:</td>
<td><input type="text" name="char"></td>
</tr>
<tr>
<td>Destination Account:</td>
<td><input type="text" name="dest">
<tr>
<td><input type="submit" value="Verify Account"></td>
</tr>
</table>
</form>

And the page with the script:

<?php

$con = mysql_connect("HOST", "USERNAME", "PASSWORD");

if (!$con)
  {
  die('Could not connect: ' . mysql_error());
  }

$acct = $POST["acct"];
$pass = $POST["pass"];
$xfer = $POST["char"];
$acctb = $POST["dest"];

$find = mysql_query("SELECT FROM logon.accounts WHERE login = '$acct' AND password = '$pass'");
$findc = mysql_query("SELECT FROM instant80_character.characters WHERE name = '$xfer'");
$guid = mysql_query("SELECT acct FROM accounts WHERE login = '$acctb'");
$checkownera = mysql_query("SELECT acct FROM instant80_character.characters WHERE name = '$char'");
$checkownerb = mysql_query("SELECT acct FROM logon.accounts WHERE login = '$acct'");

if (mysql_num_rows($find) < 1)
{
echo "<center>Incorrect <font color=ff0000>Username</font> or <font color=ff0000>Password</font>, please try again.</center>";
}
else
{
if (mysql_num_rows($findc) < 1)
{
echo "<center>Non existant <font color=ff0000>Character</font>, please try again.</center>";
}
else
{
if (($checkownera) != ($checkownerb))
{
echo "<center>You do not own " . $xfer . " please try a different chracter.</center>";
}
else
{

mysql_query("UPDATE instant80_character.characters SET acct = (SELECT acct FROM logon.accounts WHERE login = '$acctb') WHERE name = '$xfer'"); //UPDATE character SET acct = '$guid' WHERE name = '$xfer'
echo "<center>Character " . $xfer . " successfully transfered to account " . $acctb . "!</center>";

}
}
}
mysql_close($con);

Thanks in advance.

NoEffinWay

Haha, I realize now I didn't say what the problem is. Sorry. Anyway, the above script takes the Account info and password and makes sure it is valid. If it is a valid account, it then checks to make sure the character is valid. If both the account and character are valid, it is SUPPOSED to check and see if the character belongs to the account via comparing the 'acct' number in both tables. Unfortunately, it doesn't do the last part. I changed the code, so it would echo the acct number one time and it said "resource id#7" or something similar. Any help would rock.

Weedpacket

You might want to have a look at some of the FAQs in these forums about posting so that your posts are readable.

NoEffinWay wrote:
echo the acct number one time and it said "resource id#7"

What this means is that you're running the query and getting the result set back. But you're forgetting that you have to actually get the results out of the result set.