getting notice and warning
Notice: Undefined variable: name in /opt/lampp/htdocs/staff.php on line 8
Notice: Undefined variable: admin_array in /opt/lampp/htdocs/staff.php on line 8
Warning: in_array() expects parameter 2 to be array, null given in /opt/lampp/htdocs/staff.php on line 8
lalallaa
Notice: Undefined variable: name in /opt/lampp/htdocs/staff.php on line 13
Notice: Undefined variable: admin_array in /opt/lampp/htdocs/staff.php on line 13
Warning: in_array() expects parameter 2 to be array, null given in /opt/lampp/htdocs/staff.php on line 13
so i need to fix this
staff.php file code is
<?php require("safe.php"); ?>
<html>
<head>
<title></title>
</head>
<body>
<?php if (in_array ($name, $admin_array)){ ?>
Some html admins only.
<? } ?>
lalallaa
<?php if (in_array($name, $admin_array)){
echo "Something for admin only";
} ?>
<?php if(isset($_POST['Add_admin'])){
if(empty($_POST['admin'])){
echo "You didn't enter a name.";
}else{
if (in_array($_POST['admin'], $admin_array)) {
echo "This person is already a admin.";
}else{
$sql = "SELECT name FROM users WHERE name='".mysql_real_escape_string($_POST['admin'])."'";
$query = mysql_query($sql) or die(mysql_error());
$row = mysql_fetch_object($query);
$admin_name = htmlspecialchars($row->name);
if(empty($admin_name)){
echo "This users doesn't exist";
}else{
if(empty($admins)){
$result = mysql_query("UPDATE sitestats SET admins='".mysql_real_escape_string($admin_name)."' ,admins_ip='".mysql_real_escape_string($_SERVER['REMOTE_ADDR'])."' WHERE id='1'")
or die(mysql_error());
$admins = $admin_name;
}else{
$new_admin = $admins."-".$admin_name;
$new_ip = $admins_ip."-".$_SERVER['REMOTE_ADDR'];
$result = mysql_query("UPDATE sitestats SET admins='".mysql_real_escape_string($new_admin)."' ,admins_ip='".mysql_real_escape_string($new_ip)."' WHERE id='1'")
or die(mysql_error());
$admins = $new_admin;
}
echo "You added ".$admin_name." as new admin.";
}// if empty field.
}// if exist check.
}// if already in check.
}// if isset.
if(isset($_POST['Remove_admin'])){
if(empty($_POST['admin_name'])){
echo "You didn't select a person to demote from admin.";
}else{
if (!in_array($_POST['admin_name'], $admin_array)) {
echo "This person isn't a admin.";
}else{
$new_admin = "";
foreach( $admin_array as $key => $value){
if($value != $_POST['admin_name']){
if(empty($new_admin)){
$new_admin = $value;
}else{
$new_admin = $new_admin."-".$value;
}
}
}
$new_ip = "";
foreach( $admin_ip_array as $key => $value){
if($value != $_POST['admin_name']){
if(empty($new_ip)){
$new_ip = $value;
}else{
$new_ip = $new_ip."-".$value;
}
}
}
$result = mysql_query("UPDATE sitestats SET admins='".mysql_real_escape_string($new_admin)."' ,admins_ip='".mysql_real_escape_string($new_ip)."' WHERE id='1'")
or die(mysql_error());
$result = mysql_query("UPDATE users SET state='0' WHERE id='".mysql_real_escape_string($new_admin)."'")
or die(mysql_error());
$admins = $new_admin;
echo "You removed ".$_POST['admin_name']." from his admin position.";
}// if no friend selected.
}// if not in friendslist.
}// if isset.
?>
<form name="form1" method="post" action="">
<table width="90%" border="1" >
<tr>
<td colspan="4" align="left" >Admins</td>
</tr>
<tr>
<td colspan="4" align="center" <?php
if(empty($admins)){
echo "There are no admins.";
}else{
$admins_list = explode("-", $admins);
foreach( $admins_list as $key => $value){
echo "<input name=\"admin_name\" type=\"radio\" value=\"".$value."\" onfocus=\"if(this.blur)this.blur()\">".$value."";
}
}// if no friends.
?></td>
</tr>
<tr>
<td width="50" align="left" ><b>Name:</b></td>
<td align="center" ><input name="admin" type="text" id="admin" style='width: 95%; ' maxlength="20" /></td>
<td width="100" align="right" ><input name="Add_admin" type="submit" id="Add_admin" value="Add." onfocus="if(this.blur)this.blur()" /></td>
<td width="100" align="right" ><input name="Remove_admin" type="submit" id="Remove_admin" value="Remove." onfocus="if(this.blur)this.blur()"/></td>
</tr>
</table>
<br>
<table width="90%" border="1" >
<tr>
<td colspan="4" align="left" >MOD List: </td>
</tr>
<tr>
<td height="20" colspan="4" align="center" >Names of Mods will appear here</td>
</tr>
<tr>
<td width="50" align="left" ><b>Name:</b></td>
<td align="center" ><input name="Mod" type="text" id="Mod" style='width: 95%; ' maxlength="20" /></td>
<td width="100" align="right" ><input name="Add_mod" type="submit" id="Add_mod" value="Add." onfocus="if(this.blur)this.blur()" /></td>
<td width="100" align="right" ><input name="Remove_Mod" type="submit" id="Remove_Mod" value="Remove." onfocus="if(this.blur)this.blur()"/></td>
</tr>
</table>
<br>
<table width="90%" border="1" >
<tr>
<td colspan="4" align="left" >Hdo List: </td>
</tr>
<tr>
<td colspan="4" align="center" >Names of HDOs will appear here</td>
</tr>
<tr>
<td width="50" align="left" ><b>Name:</b></td>
<td align="center" ><input name="hdo" type="text" id="hdo" style='width: 95%; ' maxlength="20" /></td>
<td width="100" align="right" ><input name="Add_hdo" type="submit" id="Add_hdo" onfocus="if(this.blur)this.blur()" value="Add." /></td>
<td width="100" align="right" ><input name="Remove_hdo" type="submit" id="Remove_hdo" value="Remove." onfocus="if(this.blur)this.blur()"/></td>
</tr>
</table>
</form>
?>
</body>
</html>
and require file safe.php is here
so where is the mistake
<?php include_once("connect.php");
if(isset($_SESSION['user_id'])) { // checks for id in session
$sql = "UPDATE users SET lastactive = NOW() WHERE id='".mysql_real_escape_string($_SESSION['user_id'])."'";
mysql_query($sql); // updates the last activity of user
if ($_SESSION['login_time'] < strtotime('-1 minutes')) {
// logs user out after 15 minutes and redirects to login and ends session
header("Location: index.php");
exit();
session_destroy();
$sql = "SELECT * FROM users WHERE id='".mysql_real_escape_string($_SESSION['user_id'])."'";
$query = mysql_query($sql) or die(mysql_error());
$row = mysql_fetch_object($query);
$id = htmlspecialchars($row->id);
$userip = htmlspecialchars($row->userip);
$name = htmlspecialchars($row->name);
$sitestate = htmlspecialchars($row->sitestate);
$password = htmlspecialchars($row->password);
$mail = htmlspecialchars($row->mail);
$money = htmlspecialchars($row->money);
$exp = htmlspecialchars($row->exp);
$rank = htmlspecialchars($row->rank);
$health = htmlspecialchars($row->health);
$points = htmlspecialchars($row->points);
// This select the information from sitestats so that it is easy access in the game. It select it from id one because that's the only id that should be there.
$sql = "SELECT * FROM sitestats WHERE id='1'";
$query = mysql_query($sql) or die(mysql_error());
$row = mysql_fetch_object($query);
$admins = htmlspecialchars($row->admins);
$mods = htmlspecialchars($row->mods);
$hdo = htmlspecialchars($row->hdo);
$admins_ip = htmlspecialchars($row->admins_ip);
$mods_ip = htmlspecialchars($row->mods_ip);
$admin_array = explode("-", $admins);
$mods_array = explode("-", $mods);
$hdo_array = explode("-", $hdo);
$admin_ip_array = explode("-", $admins_ip);
$mods_ip_array = explode("-", $mods_ip);
}
}
?>
any help is a pleasure 🙂
