RE: [PHP] Sessions and login
-Original Message-
From: Angelo Zanetti [mailto:[EMAIL PROTECTED]
Sent: 11 June 2003 14:09
session_register('user');
$_SESSION['user'] = ebusUser;
Just one other quick point here: if you use the $_SESSION array, you don't
need to -- and, in fact, should not -- use session_register() and friends.
Cheers!
Mike
-
Mike Ford, Electronic Information Services Adviser,
Learning Support Services, Learning Information Services,
JG125, James Graham Building, Leeds Metropolitan University,
Beckett Park, LEEDS, LS6 3QS, United Kingdom
Email: [EMAIL PROTECTED]
Tel: +44 113 283 2600 extn 4730 Fax: +44 113 283 3211
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] Sessions and login
page 1 : login.php
input user name - Post veriable
input password- post variable
page 2 : verify.php
session_start()
// supposing name is entered
if (!$_POST['password'] == )
{
// verification against database
if (successfully authenticated)
{
$_SESSION['user'] = $_POST['user'];
header(location: authPage.php);
}
}
header(location: login.php); // returns back to login page
-Oorspronkelijk bericht-
Van: Angelo Zanetti [mailto:[EMAIL PROTECTED]
Verzonden: Wednesday, June 11, 2003 3:09 PM
Aan: [EMAIL PROTECTED]
Onderwerp: [PHP] Sessions and login
Hi guys kinda new to php.
Ok I have a php page that a user has to enter a pw to gain access to another
page (lets call it authPage).However before I i can grant access to authPage
I want to verify 1. that a pw was entered and 2. that it is correct. So I
thought it would be better NOT to do the auth in authPage but rather have
another page that does the authorization. Lets call that page verifyPage. On
here if the password is entered and is correct according to the DB then I
want to create and register a session. This is how ive done the session
section:
session_register('user');
$_SESSION['user'] = ebusUser;
Then I want the session to call authPage (because the pw is correct)
together with the session variable. The way I am doing this (doesnt seem to
be working) is to call authPage with as a header call eg:
header(Location: authPage.php);
The problem I think I am having is that the session variable isnt being
passed to the authPAge. How else can I call the authPage from verifyPage so
that the session variable gets passed. BTW I have register_globals = on;
Any help would be greatly appreciated.
Angelo
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Sessions and login
... [shortened] Then I want the session to call authPage (because the pw is correct) together with the session variable. The way I am doing this (doesnt seem to be working) is to call authPage with as a header call eg: header(Location: authPage.php); The problem I think I am having is that the session variable isnt being passed to the authPAge. How else can I call the authPage from verifyPage so that the session variable gets passed. BTW I have register_globals = on; ... Hi try one of the following: - header(Location: authPage.php?. session_name() .=. session_id()); - enabling session.use_trans_sid in php.ini IMO latter is unpreferable. , mario -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] Sessions and login
-Original Message-
From: Wim Paulussen [mailto:[EMAIL PROTECTED]
Sent: 11 June 2003 14:28
page 1 : login.php
input user name - Post veriable
input password- post variable
page 2 : verify.php
session_start()
// supposing name is entered
if (!$_POST['password'] == )
Strange syntax -- I'd prefer:
if ($_POST['password'] != )
{
// verification against database
if (successfully authenticated)
{
$_SESSION['user'] = $_POST['user'];
header(location: authPage.php);
To cover all bases, you need to include the SID constant here, so it still
works for people who don't accept cookies. Oh, and the header name must be
Location (note capital L) to conform with the standard, and the URL should
be an absolute one -- some fussy browsers won't do the redirection properly
if this isn't 100% correct:
header(Location: http://your.site.name/path/to/authPage.php?.SID);
Cheers!
Mike
-
Mike Ford, Electronic Information Services Adviser,
Learning Support Services, Learning Information Services,
JG125, James Graham Building, Leeds Metropolitan University,
Beckett Park, LEEDS, LS6 3QS, United Kingdom
Email: [EMAIL PROTECTED]
Tel: +44 113 283 2600 extn 4730 Fax: +44 113 283 3211
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
