profile.php issue

ianhaney

I just came across one little issue, hopefully is the last one as all the rest is perfect, on my profile.php it seems to be displaying everyones data and not just the data of the user I am logged in as, the coding is below from the profile.php file

<?php
ini_set('display_startup_errors',1);
ini_set('display_errors',1);
error_reporting(-1);
?>

<?php 
require_once("functions.php");
require_once("db-const.php");
?>

<?php 
$title = "My Account Profile - The Tax Elephants";

$pgDesc="";

$pgKeywords="";

include ( 'includes/header.php' );
?>
<!--CONTENT-->

<div id="column-whole">
<div class="features">
<?php

if (logged_in() == false) {
redirect_to("login.php");
} else {
if (isset($_GET['id']) && $_GET['id'] != "") {
$id = $_GET['id'];
} else {
$id = $_SESSION['user_id'];
}

$db = mysqli_connect("" , "", "") or die("Check connection parameters!"); 
// Optionally skip select_db and use: mysqli_connect(host,user,pass,dbname)  

mysqli_select_db($db,"") or die(mysqli_error($db));

if (mysqli_connect_error()) {
    die ('Failed to connect to MySQL');
} else {
echo '';
}

## query database
# fetch data from mysql database

$sql = "SELECT
        u.id
        , name
        , email
, address1
, address2
, town
, county
, postcode
, telnumber
, mobnumber
        , model
        , numplate
        , item.description
        , DATE_FORMAT(renewal_date, '%e %M %Y') as datedue
        FROM users u
            INNER JOIN renewal USING (id)
            INNER JOIN item USING (item_id)
ORDER BY u.id, renewal_date;";

$query = mysqli_query($db, $sql) or die (mysqli_error($db));

$prev_id = 0;

//fetch the data from the database 
while ($row = mysqli_fetch_array($query)) { 

// if the vistor id does not equal the vistor id from previous row, 
    // output vistor id, name and email only once
    if($row['id'] != $prev_id)
    {

echo "Name:&nbsp;" . $row ['name'];
echo "<br>";
echo "Email:&nbsp;" . $row ['email'];
echo "<br>";
echo "First line of address:&nbsp;" . $row ['address1'];
echo "<br>";
echo "Second line of address:&nbsp;" . $row ['address2'];
echo "<br>";
echo "Town:&nbsp;" . $row ['town'];
echo "<br>";
echo "County:&nbsp;" . $row ['county'];
echo "<br>";
echo "Postcode:&nbsp;" . $row ['postcode'];
echo "<br>";
echo "Telephone Number:&nbsp;" . $row ['telnumber'];
echo "<br>";
echo "Mobile Number:&nbsp;" . $row ['mobnumber'];
echo "<br>";
echo "Model of car:&nbsp;" . $row ['model'];
echo "<br>";
echo "Car Number Plate:&nbsp;" . $row ['numplate'];
}

// output the reneweal dates
    echo "<br>";
    echo $row ['description'] . "&nbsp;expiry date:&nbsp;" . $row['datedue'] . "\n";

// set current rows vistor id to previous id
$prev_id = $row['id'];
}

echo "<br><br>";

echo "<a href='edit-profile.php?id={$_SESSION['user_id']}'>Edit Information</a>";

}

// Free the results  

mysqli_free_result($query);

//close the connection
mysqli_close($db);
?>
</div>
</div>

<!--CONTENT-->

<?php include( 'includes/footer.php' ); ?>

ianhaney

Sorry sorted this issue

I forgot to have WHERE clause in on the SELECT

dalecosp

Thanks --- please use the "Thread Tools" dropdown to mark this one resolved. 🙂

lilysmith22

ianhaney;11048779 wrote:
Sorry sorted this issue

I forgot to have WHERE clause in on the SELECT

Thanks for listing the sorted issue.