user authentification

Anon

Hi there.

I have a page where I need to use authentification. It is like so:

Page A contains a form which produces two variables, user and password, and they are passed on to a script, login.php where they
are tested aginst a mysql database.
If they are validated, the user are sent to page B, and if not back to page A.

On page B there are some links to other admin pages, and I would like to pass the user and password
variables, between the different admin pages, so they will reject the user, if user and password are incorrect or missing, and send him back to page A.

I know it should probably be done by sessions, but what code shall be put on top of these admin pages?
I have passed the variables on to page B but it seems that everything goes wrong after that. There is no problem in entering the other adminpages
without user and password! And there should be.

Do I have to check against the database on every adminpage, or can I do something with the session?

Pardon my english. I hope you understand my problem.

sincerely
Kurt

Anon

okie dokily...

the way I do it...

session_start();
session_register("MYSITE");

SELECT * FROM user WHERE n_name='$user' AND passwd=password('$passwd');

if the user & pass are correct... then I set

$MYSITE['let_in'] = "1";

otherwise

$MYSITE['let_in'] = "0";

then on the "protected page"
<PRE>

session_start();
if ($MYSITE[let_in] != "1")
{
Header("Location: noentryorrelogin.php");
exit;
}
</PRE>

that should ?!? make sense 🙂

Anon

whoa!!! indetation & spacing really screwed ip there!

Anon

Thank you!!!
It really worked:-)

blakey

does this work on Netscape 4.7 ?
My sessions do not work in that browser....

Anon

This is SERVER SIDE!!! It will work in ANY browser.. It even works in lynx && telnet...