RE: [PHP-DB] session confusion| can anyone help?
try defining the values as empty strings first... ?php // accesscontrol.php include_once 'common.php'; include_once 'db.php'; session_start(); $suid = ''; $spwd = ''; $suid = isset($_POST['suid']) ? $_POST['suid'] : $_SESSION['suid']; //line 7 $spwd = isset($_POST['spwd']) ? $_POST['spwd'] : $_SESSION['spwd']; //line 8 if(!isset($suid)) { ? bastien From: bo [EMAIL PROTECTED] Reply-To: bo [EMAIL PROTECTED] To: php-db@lists.php.net Subject: [PHP-DB] session confusion| can anyone help? Date: Fri, 26 Aug 2005 11:42:18 +0800 here is the code for accesscontrol.php which control the access to protected page, the server gives an error as of Notice: Undefined index: uid in E:\www\signup\accesscontrol.php on line 7 Notice: Undefined index: pwd in E:\www\signup\accesscontrol.php on line 8 I tried input username and password and it will give the error as: Access Denied Your user ID or password is incorrect, or you are not a registered user on this site. To try logging in again, click here. To register for instant access, click here. code // ?php // accesscontrol.php include_once 'common.php'; include_once 'db.php'; session_start(); $suid = isset($_POST['suid']) ? $_POST['suid'] : $_SESSION['suid']; //line 7 $spwd = isset($_POST['spwd']) ? $_POST['spwd'] : $_SESSION['spwd']; //line 8 if(!isset($suid)) { ? !DOCTYPE html PUBLIC -//W3C/DTD XHTML 1.0 Transitional//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd; html xmlns=http://www.w3.org/1999/xhtml; head title Please Log In for Access /title meta http-equiv=Content-Type content=text/html; charset=iso-8859-1 / /head body h1 Login Required /h1 pYou must log in to access this area of the site. If you are not a registered user, a href=signup.phpclick here/a to sign up for instant access!/p pform method=post action=?=$_SERVER['PHP_SELF']? User ID: input type=text name=suid size=8 /br / Password: input type=password name=spwd SIZE=8 /br / input type=submit value=Log in / /form/p /body /html ?php exit; } $_SESSION['suid'] = $suid; $_SESSION['spwd'] = $spwd; dbConnect(cartoon); $sql = SELECT * FROM userinfo WHERE uid = '$suid' AND pwd = PASSWORD('$spwd'); $result = mysql_query($sql); if (!$result) { error('A database error occurred while checking your '. 'login details.\\nIf this error persists, please '. 'contact [EMAIL PROTECTED]'); } if (mysql_num_rows($result) == 0) { unset($_SESSION['suid']); unset($_SESSION['spwd']); ? !DOCTYPE html PUBLIC -//W3C/DTD XHTML 1.0 Transitional//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd; html xmlns=http://www.w3.org/1999/xhtml; head title Access Denied /title meta http-equiv=Content-Type content=text/html; charset=iso-8859-1 / /head body h1 Access Denied /h1 pYour user ID or password is incorrect, or you are not a registered user on this site. To try logging in again, click a href=?=$_SERVER['PHP_SELF']?here/a. To register for instant access, click a href=signup.phphere/a./p /body /html ?php exit; } $username = mysql_result($result,0,'unick'); echo $username; ? // Thanks. -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP-DB] session confusion| can anyone help?
here is the code for accesscontrol.php which control the access to protected page, the server gives an error as of Notice: Undefined index: uid in E:\www\signup\accesscontrol.php on line 7 Notice: Undefined index: pwd in E:\www\signup\accesscontrol.php on line 8 I tried input username and password and it will give the error as: Access Denied Your user ID or password is incorrect, or you are not a registered user on this site. To try logging in again, click here. To register for instant access, click here. code // ?php // accesscontrol.php include_once 'common.php'; include_once 'db.php'; session_start(); $suid = isset($_POST['suid']) ? $_POST['suid'] : $_SESSION['suid']; //line 7 $spwd = isset($_POST['spwd']) ? $_POST['spwd'] : $_SESSION['spwd']; //line 8 if(!isset($suid)) { ? !DOCTYPE html PUBLIC -//W3C/DTD XHTML 1.0 Transitional//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd; html xmlns=http://www.w3.org/1999/xhtml; head title Please Log In for Access /title meta http-equiv=Content-Type content=text/html; charset=iso-8859-1 / /head body h1 Login Required /h1 pYou must log in to access this area of the site. If you are not a registered user, a href=signup.phpclick here/a to sign up for instant access!/p pform method=post action=?=$_SERVER['PHP_SELF']? User ID: input type=text name=suid size=8 /br / Password: input type=password name=spwd SIZE=8 /br / input type=submit value=Log in / /form/p /body /html ?php exit; } $_SESSION['suid'] = $suid; $_SESSION['spwd'] = $spwd; dbConnect(cartoon); $sql = SELECT * FROM userinfo WHERE uid = '$suid' AND pwd = PASSWORD('$spwd'); $result = mysql_query($sql); if (!$result) { error('A database error occurred while checking your '. 'login details.\\nIf this error persists, please '. 'contact [EMAIL PROTECTED]'); } if (mysql_num_rows($result) == 0) { unset($_SESSION['suid']); unset($_SESSION['spwd']); ? !DOCTYPE html PUBLIC -//W3C/DTD XHTML 1.0 Transitional//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd; html xmlns=http://www.w3.org/1999/xhtml; head title Access Denied /title meta http-equiv=Content-Type content=text/html; charset=iso-8859-1 / /head body h1 Access Denied /h1 pYour user ID or password is incorrect, or you are not a registered user on this site. To try logging in again, click a href=?=$_SERVER['PHP_SELF']?here/a. To register for instant access, click a href=signup.phphere/a./p /body /html ?php exit; } $username = mysql_result($result,0,'unick'); echo $username; ? // Thanks. -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP-DB] session confusion| can anyone help?
session_start() should be given at the starting of the file before others u can include anthing after the session_satrt() functon only On Fri, 26 Aug 2005, bo wrote: here is the code for accesscontrol.php which control the access to protected page, the server gives an error as of Notice: Undefined index: uid in E:\www\signup\accesscontrol.php on line 7 Notice: Undefined index: pwd in E:\www\signup\accesscontrol.php on line 8 I tried input username and password and it will give the error as: Access Denied Your user ID or password is incorrect, or you are not a registered user on this site. To try logging in again, click here. To register for instant access, click here. code // ?php // accesscontrol.php include_once 'common.php'; include_once 'db.php'; session_start(); $suid = isset($_POST['suid']) ? $_POST['suid'] : $_SESSION['suid']; //line 7 $spwd = isset($_POST['spwd']) ? $_POST['spwd'] : $_SESSION['spwd']; //line 8 if(!isset($suid)) { ? !DOCTYPE html PUBLIC -//W3C/DTD XHTML 1.0 Transitional//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd; html xmlns=http://www.w3.org/1999/xhtml; head title Please Log In for Access /title meta http-equiv=Content-Type content=text/html; charset=iso-8859-1 / /head body h1 Login Required /h1 pYou must log in to access this area of the site. If you are not a registered user, a href=signup.phpclick here/a to sign up for instant access!/p pform method=post action=?=$_SERVER['PHP_SELF']? User ID: input type=text name=suid size=8 /br / Password: input type=password name=spwd SIZE=8 /br / input type=submit value=Log in / /form/p /body /html ?php exit; } $_SESSION['suid'] = $suid; $_SESSION['spwd'] = $spwd; dbConnect(cartoon); $sql = SELECT * FROM userinfo WHERE uid = '$suid' AND pwd = PASSWORD('$spwd'); $result = mysql_query($sql); if (!$result) { error('A database error occurred while checking your '. 'login details.\\nIf this error persists, please '. 'contact [EMAIL PROTECTED]'); } if (mysql_num_rows($result) == 0) { unset($_SESSION['suid']); unset($_SESSION['spwd']); ? !DOCTYPE html PUBLIC -//W3C/DTD XHTML 1.0 Transitional//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd; html xmlns=http://www.w3.org/1999/xhtml; head title Access Denied /title meta http-equiv=Content-Type content=text/html; charset=iso-8859-1 / /head body h1 Access Denied /h1 pYour user ID or password is incorrect, or you are not a registered user on this site. To try logging in again, click a href=?=$_SERVER['PHP_SELF']?here/a. To register for instant access, click a href=signup.phphere/a./p /body /html ?php exit; } $username = mysql_result($result,0,'unick'); echo $username; ? // Thanks. -- * You wouldn't know an OS if it hit you in the face ... Linux Baby ! * -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php