<?php
session_start ();
?>
<?php
include ('./config.php');
?>
<ul>
<li><a href="./login.html">login</a></li>
<li><a href="./register.php">register</a></li>
<li><a href="./thread.php">thread</a></li>
<li><a href="./search.php">list users</a></li>
<li>
<?php
$handle = mysql_connect ($server, $MYSQL_NAME, $MYSQL_PASSWORD);
mysql_query ("use " . $databasename, $handle);
$sessionname = $_SESSION ["name"];
$sessionname = htmlentities(mysql_real_escape_string ($sessionname, $handle));
echo "<FORM METHOD=\"GET\">\n";
echo " <SELECT MULTIPLE name=\"friendname[]\" MULTIPLE>\n";
$result5 = mysql_query ("SELECT * FROM freunde WHERE freund1=\"" . $sessionname . "\" OR freund2=\"" .$sessioname. "\"", $handle);
while ($row5 = mysql_fetch_assoc ($result5)) {
if (strcmp ($row5 ["freund1"], $sessionname) == 0)
echo "<OPTION>" . $row5 ["freund2"] . "</OPTION>";
else
echo "<OPTION>" . $row5 ["freund1"] . "</OPTION>";
}
echo "</SELECT> ";
echo "<button style=\"width:64px;height:32px\" formaction=\"./threadfriends.php\"></button>Freunde unterhalten<br>\n";
echo "<FORM><br>\n";
mysql_close ($handle);
?>
</li>
<li>
<?php
$handle2 = mysql_connect ($server, $MYSQL_NAME, $MYSQL_PASSWORD);
mysql_query ("use " . $databasename, $handle2);
echo "<FORM METHOD=\"GET\">\n";
echo " <SELECT MULTIPLE name=\"searchname[]\" MULTIPLE>\n";
$result6 = mysql_query ("SELECT * FROM freunde", $handle2);
while ($row6 = mysql_fetch_assoc ($result6)) {
echo "<OPTION>" . $row6 ["freund1"] . "." . $row6 ["freund2"] . "</OPTION>";
}
echo "</SELECT> ";
echo "<button style=\"width:65px;height:32px\" formaction=\"./threadexternfriends.php\"></button>Freunde Unterhaltung extern<br>\n";
echo "<FORM><br>\n";
mysql_close ($handle2);
?>
</li>
</ul>
