Problem with Less Than a Value

Question

Octet 45 Newbie Poster

12 Years Ago

I am attempting to create a script which checks to see if the user has a warning level of less than 3.

Basicaly, I want to automatically deny any account which has a Warning Level (stored in the Database) of 3 or more from logging in but whenever I attempt to run it I always get denyed regardless of what level I set myself to.

This is what I have so far:

<?php
    session_start();

    $Connection = mysql_connect("localhost","root","password") or die ("Login Fail");
    mysql_select_db("database") or die ("Cannot Find DB");

    if(isset($_SESSION['Logged']))
    {
        die(header ('Location: ../Pages/Members.php'));
    }

        $Username   = strip_tags(strtolower($_POST['Username']));
        $Password   = strip_tags(md5($_POST['Password']));

       $mysql = mysql_query("SELECT * FROM Member_Data WHERE Username = '$Username' AND Password = '$Password'");
       if(mysql_num_rows($mysql) < 1)
       {
         die(header('Location: Errors/Password.php'));
       }

        $Ban_Check = mysql_query("SELECT Warning_Level FROM Member_Data WHERE Username = '$Username'");
        if($Warning_Level > 3)
        {

           $_SESSION['Logged'] = "YES";
           $_SESSION['Username'] = $Username;

           die(header('Location: ../Pages/Members.php'));

        }

        die("BAN LEVEL");

?>

I am sure this is something that's very simple but I just cannot get it to work... as I say, I always get the 'BAN LEVEL' message at the end.

php

Edited 12 Years Ago by Octet

1 Contributor
1 Reply
164 Views
19 Minutes Discussion Span
Latest Post 12 Years Ago Latest Post by Octet

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

Octet 45 Newbie Poster Featured Poster · Answer 1 · 2012-05-18T13:37:41+00:00

Never mind, made a stupid mistake:

<?php
    session_start();

    $Connection = mysql_connect("localhost","root","password") or die ("Login Fail");
    mysql_select_db("database") or die ("Cannot Find DB");

    if(isset($_SESSION['Logged']))
    {
        die(header ('Location: ../Pages/Members.php'));
    }

        $Username   = strip_tags(strtolower($_POST['Username']));
        $Password   = strip_tags(md5($_POST['Password']));

       $mysql = mysql_query("SELECT * FROM Member_Data WHERE Username = '$Username' AND Password = '$Password'");
       if(mysql_num_rows($mysql) < 1)
       {
         die(header('Location: Errors/Password.php'));
       }

        $Ban_Check = mysql_query("SELECT Warning_Level FROM Member_Data WHERE Username = '$Username'");
        while($Warning_Level = mysql_fetch_array($Ban_Check)){
        if($Warning_Level['Warning_Level'] < 3)
        {

           $_SESSION['Logged'] = "YES";
           $_SESSION['Username'] = $Username;

           die(header('Location: ../Pages/Members.php'));

        }

        die("BAN LEVEL");

        }

?>