User activation query with if

Question

Hi guys i have problem with my if conditional here is a query and script:

$sql_admin = "SELECT * 
                FROM users 
                WHERE username='$username' 
                AND hashed_password='$pass_admin' 
                AND lvl = 1 LIMIT 1";
$query_admin = mysqli_query($connection, $sql_admin);
$row_admin = mysqli_fetch_array($query_admin);
$id_admin           = $row_admin['id'];
$db_password_admin  = $row_admin['hashed_password'];
$lvl_admin          = $row_admin['lvl'];
$active_admin       = $row['active'];

if($pass_admin == $db_password_admin && $active_admin == 1) {
    $_SESSION['id'] = $id_admin;
    redirect_to("admin");
} elseif($pass_admin == $db_password_admin && $active_admin == 0) {
    echo '<script language="javascript">';
    echo 'alert("Your acc is not activated.");';
    echo 'window.location.href="index";';
    echo '</script>';
} else {
    // something other
}

When i try only $pass_admin == $db_password_admin that´s work, but when i add ( && $active_admin == 0/1 it´s not working.

Thank´s for answers.

Answer 1

The error happens because you are using $active_admin = $row['active']; when you should use $row_admin so change the line to

$active_admin = $row_admin['active'];

$row is never initiated but you used $row_admin to fetch data from your query