Php login help

[jazzmasterkc]

Ok, how is this not working?

check file (skipped over some variables:

$sql = "SELECT * FROM $tbl_name WHERE username='$username' AND password='$password' LIMIT 1";
$run = mysql_query($sql);
$count = mysql_num_rows($run);

if ($count > 0) {
session_start();
$_SESSION['user'] = $username;
header('Location: apage.php');
die();
}
else {
header('Location: home.php');
die();
}

//It doesn't work?!

[NogDog]

Sometimes (and I'm not really sure why), you need to do a session_write_close() before your call to your header() redirect (but after you're all done accessing $_SESSION). You might give that a try and see if it helps.

[jazzmasterkc]

Ok... still having the issue, but to make the situation more of a big deal, check this out:

my protected page if the check file worked:

<?php

require("check.php");

if(!isset($_SESSION['user']))
{
session_save_path('/apathiuse');
session_start();
session_write_close();
header('Location: home.php');
}

?>

And I get:
0
Internal Server Error.. blah blah blah

Im hosting with ipage.. I'm assuming now the problem resides outside of the code? Or am I blind?

[simplypixie]

session_start() always has to come at the very top of all other code (php or html) so move that out of your if statement to the top of your code and then try your original code again (I have also changed die() to exit()).

PHP Code:

<?php
session_start();
// Other code here that you have removed for your question
$sql = "SELECT * FROM $tbl_name WHERE username='$username' AND password='$password' LIMIT 1";
$run = mysql_query($sql);
$count = mysql_num_rows($run);

if ($count > 0) {
$_SESSION['user'] = $username;
header('Location: apage.php');
exit();
}
else {
header('Location: home.php');
exit();
}

[rizalsmarts]

session_start() always has to come at the very top of all other code (php or html) so move that out of your if statement to the top of your code and then try your original code again (I have also changed die() to exit()).

PHP Code:

<?php
session_start();
// Other code here that you have removed for your question
$sql = "SELECT * FROM $tbl_name WHERE username='$username' AND password='$password' LIMIT 1";
$run = mysql_query($sql);
$count = mysql_num_rows($run);

if ($count > 0) {
$_SESSION['user'] = $username;
header('Location: apage.php');
exit();
}
else {
header('Location: home.php');
exit();
}

im agree this. on php without framework, u need create session start always on top.

[jazzmasterkc]

Ok thanks,

now how exactly is session working? Do I need to call the page in which the check process happens on my protected page? I've been playing around with different ways and I seem to lack in luck. How does php handle this process is more so what I'm asking.

Edit: currently, on my protected page I just use require(checkpage).. and no error report.. however it's forgetting the user logged in I think because I get redirected to login page. Any tip?

[LearningCoder]

After setting a session, if you locate to another page using a header() call, you need to restart the session in the page which you go to.

Consider this code:

Code:

session_start();

$_SESSION['name'] = "LearningCoder";

header("Location: file.php");

and now this is the file which I locate to with a header() call:

Code:

session_start();
echo $_SESSION['name'];

OK. Load up code number one - call it whatever you like. Rename the second code as file.php

Notice, when you load up the first code, you locate to the file.php page and the session displays.......

Now take out the session_start() from the second code...

Notice you get the undefined error.

Just add session_start() into your second code.

Regards,

LC.

[jazzmasterkc]

Ah ha! got it, I figured out the session acts more so like a cookie and not required to require check page