<?php require '../core/functions.php'; require_once '../core/db.php'; $db = new dbConnect(); $connection = $db->connection(); $lname = mysqli_real_escape_string($connection, $_POST['lname']); $fname = mysqli_real_escape_string($connection, $_POST['fname']); $email = mysqli_real_escape_string($connection, $_POST['email']); checkEmail($email); if ($error === '') { session_start(); requestAccess($fname, $lname, $email); $_SESSION['success'] = $success; header('Location: ../request-access-success.php'); } else { session_start(); $_SESSION['error'] = $error; header('Location: ../request-access.php'); } $loggedIn = FALSE; if (@$_COOKIE['online'] !== null) { $loggedIn = TRUE; } if ($loggedIn === TRUE) { header('Location: forbidden.php'); }
function checkProfileOwner($id, $yourID) { global $owner, $ownerID; $db = new dbConnect(); $connection = $db->connection(); $sql = mysqli_query($connection, "SELECT member_id FROM users WHERE user_token = '{$yourID}'"); while ($owner = mysqli_fetch_array($sql)) { $ownerID = $owner['member_id']; } }