I have been getting some errors in my chapter 13 site and I am not sure how I can fix them. I am able to login with the login.php page.
When I do I get this error.
?php // Script 13.4 - footer.html // Display general admin links... // - if the user is an administrator and it's not the logout.php page // - or if the $loggedin variable is true (i.e., the user just logged in) if ( (is_administrator() && (basename($_SERVER['PHP_SELF']) != 'logout.php')) OR (isset($loggedin) && $loggedin) ) { // Create the links: print '
When I go to the add_quotes.php page I get this error.
When I try and add a quote I get this list of errors.
Here is my add_quotes.php code
I am getting a red underline error on the ! is administrator line
I added LINE is # where each line error is for my error list above
<?php // Script 13.7 - add_quote.php
/* This script adds a quote. */
// Define a page title and include the header:
define('TITLE', 'Add a Quote');
include('templates/header.html');
print '<h2>Add a Quotation</h2>';
// Restrict access to administrators only:
if (!is_administrator()) { (THIS LINE IS GIVING ME AN ERROR)
print '<h2>Access Denied!</h2><p class="error">You do not have permission to access this page.</p>';
include('templates/footer.html');
exit();
}
// Check for a form submission:
if ($_SERVER['REQUEST_METHOD'] == 'POST') { // Handle the form.
if ( !empty($_POST['quote']) && !empty($_POST['source']) ) {
// Need the database connection:
LINE 23 include('C:/xampp/htdocs/PHP/Chapter13/mysqli_connect.php');
// Prepare the values for storing:
LINE 26 $quote = mysqli_real_escape_string($dbc, trim(strip_tags($_POST['quote'])));
LINE 27 $source = mysqli_real_escape_string($dbc, trim(strip_tags($_POST['source'])));
// Create the "favorite" value:
if (isset($_POST['favorite'])) {
$favorite = 1;
} else {
$favorite = 0;
}
$query = "INSERT INTO quotes (quote, source, favorite) VALUES ('$quote', '$source', $favorite)";
LINE 37 mysqli_query($dbc, $query);
LINE 39 if (mysqli_affected_rows($dbc) == 1){
// Print a message:
print '<p>Your quotation has been stored.</p>';
} else {
print '<p class="error">Could not store the quote because:<br>' . mysqli_error($dbc) . '.</p><p>The query being run was: ' . $query . '</p>';
}
// Close the connection:
LINE 47 mysqli_close($dbc);
} else { // Failed to enter a quotation.
LINE 43 print '<p class="error">Please enter a quotation and a source!</p>';
}
} // End of submitted IF.
// Leave PHP and display the form:
?>
<form action="add_quote.php" method="post">
<p><label>Quote <textarea name="quote" rows="5" cols="30"></textarea></label></p>
<p><label>Source <input type="text" name="source"></label></p>
<p><label>Is this a favorite? <input type="checkbox" name="favorite" value="yes"></label></p>
<p><input type="submit" name="submit" value="Add This Quote!"></p>
</form>
<?php include('templates/footer.html'); ?>