PHP fórum

chci si udelat zaheslovane stranky, takze jsem si vytvoril nekolik souboru: index.php, autorizace.php, registrace.php. To mi běhá normálně, ale kdyz chci vytvorit novou stranku tak hodim 2.php a at.php a hodi mi to error. Jak mam kod upravit aby to behalo?

registrace.php:

<?
Header("Pragma: No-cache");
Header("Cache-Control: No-cache, Must-revalidate");
Header("Expires: ".GMDate("D, d M Y H:i:s")." GMT");

$MC = MySQL_Connect("mysql.webovka.eu", "we_blood_knight", "******");
$MS = MySQL_Select_DB("we_blood_knight");

If (($email != "") AND ($password != "") AND ($login != "") AND ($name != "")):
$MSQ = MySQL_Query("SELECT * FROM users WHERE login LIKE '$login'");
If (MySQL_Num_Rows($MSQ) > 0):
$login = "";
$password = "";
$error = "<h4>Login již existuje!!!</h4>";
$f = "true";
Else:
$p = MD5($password);
$MSQ = MySQL_Query("INSERT INTO users VALUES (NULL, '$login', '$p', '$name', '$email')");
$m = "true";
$x = StrLen($password);
Endif;

Elseif (IsSet($send)):
$error = "<h4>Chybí povinné údaje!!!</h4>";
Endif;
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<html>
<head>
<title>Registrace nového uživatele</title>
</head>

<body>
<h3 align="center">Registrace nového uživatele</h3>
<?
If ((IsSet($error)) OR (!IsSet($send))):
echo $error;
?>
<form method="post" action="registrace.php">
<input type="Hidden" name="send" value="true">
<table>
<tr>
<td>Login:</td>
<td><input type="Text" name="login" size="40" maxlength="20" value="<?echo $login;?>"></td>
</tr>
<tr>
<td>Heslo:</td>
<td><input type="Password" name="password" size="40" maxlength="20" value=""></td>
</tr>
<tr>
<td>Emailová adresa:</td>
<td><input type="Text" name="email" size="40" maxlength="80" value="<?echo $email;?>"></td>
</tr>
<tr>
<td>Jméno:</td>
<td><input type="Text" name="name" size="40" maxlength="80" value="<?echo $name;?>"></td>
</tr>
<tr>
<td colspan="2" align="center">
<input type="Submit" value="Zaregistrovat">
</td>
</tr>
</table>
</form>
<?Elseif (IsSet($m)):?>
Byl(a) jste úspěšně zaregistrován(a) s těmito údaji:<br><br>
<b>Přihlašovací jméno</b>: <?echo $login;?><br>
<b>Heslo</b>: <?For ($i = 1; $i <= $x; $i++): echo "*"; Endfor;?><br>
<b>Jméno</b>: <?echo $name;?><br>
<b>Emailová adresa</b>: <?echo $email;?>
<?mail("$email", "Blood Knight", "děkujeme za registraci na Blood Knight, vase údaje jsou:
login: $login
heslo: $password
S pozdravem Blood Knight", "From: krejzdenek93@seznam.cz\nReply-To: krejzdenek93@seznam.cz\nX-Mailer: Thunderbird");?>
<p></p>
<a href="index.php"> Úvodní stránka </a>
<?Endif;?>
</body>
</html>
<?MySQL_Close($MC);?>

index.php:

<? include "autorizace.php"; ?>
<a href="registrace.php"> registrace </a>

autorizace.php:

<?
Header("Pragma: No-cache");
Header("Cache-Control: No-cache, Must-revalidate");
Header("Expires: ".GMDate("D, d M Y H:i:s")." GMT");

$MC = MySQL_Connect("mysql.webovka.eu", "we_blood_knight", "******");
$MS = MySQL_Select_DB("we_blood_knight");

If ((IsSet($login)) AND (IsSet($password))):
$p = MD5($password);
$MSQ = MySQL_Query("SELECT * FROM users WHERE (login LIKE '$login') AND (password LIKE '$p')");

If (MySQL_Num_Rows($MSQ) <> 1):
echo "Neautorizovaný přístup";
Exit;

Else:
$SN = "autorizace";
Session_name("$SN");
Session_start();
$sid = Session_id();
$time = Date("U");
$at = Date("U") - 1800;


$MSQ = MySQL_Query("INSERT INTO autorizace VALUES ('$sid', $time)");
$MSQ = MySQL_Query("DELETE FROM autorizace WHERE time < $at");
Endif;
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<html>
<head>
<title>Autorizace</title>
</head>

<body>
A hele: vůdce <? echo $login ?><p>
Vítej ve světě Blood Knighta
<p><a href="2.php"> 2. stranka </a>
<?
Elseif (IsSet($lo)):

$SN = "autorizace";
Session_name("$SN");
Session_start();
$sid = Session_id();

$MSQ = MySQL_Query("DELETE FROM autorizace WHERE id = '$sid'");
echo "Byl(a) jste odhlášen(a)!";
Else:
?>
<form action="autorizace.php" method="post">
<input type="Text" name="login">
<br>
<input type="Password" name="password">
<br>
<input type="Submit" value="Vstup">
</form>
<?Endif;?>
</body>
</html>
<?MySQL_Close($MC);?>

at.php

<?
$MC = MySQL_Connect("mysql.webovka.eu", "we_blood_knight", "******");
$MS = MySQL_Select_DB("we_blood_knight");\

$SN = "autorizace";
Session_name("$SN");
Session_start();
$sid = Session_id();
$date = Date("U");
$ad = Date("U") - 300;

$MSQ = MySQL_Query("SELECT * FROM autorizace WHERE (id = '$sid') AND (date >= $ad)");

If (MySQL_Num_Rows($MSQ) <> 1):
echo "Neautorizovaný přístup";
Exit;
Else:
$MSQ = MySQL_Query("UPDATE autorizace SET date = $date WHERE id = '$sid'");
Endif;
MySQL_Close($MC);
?>

2.php:

<? include "at.php"; ?>
2. stranka