Session variables

sgs-techie

I am trying to use sessions on my site. When a person logs in , I retrieve his userid from the Db and try to assign that value to the session variable. The code on the first file goes like this :

<?
session_start();
session_register('userid');
?>

------ check and retrieve the user id from db---------
$GLOBAL['userid'] = $entry["userid"];
// (also used $HTTP_SESSION_VARS['userid'] = $entry["userid"])
echo "<script>window.location=\"xyz.php4\"</script>";

In the file xyz.php4 the code goes like this :

<?
session_start();
if (isset($HTTP_SESSION_VARS['userid']))
// (also used isset($_SESSION['userid']))
{
?>
----------execute the page---------
<?
}
else echo "you are not authorized to view";
?>

On the xyz.php4 page it always enters else part displaying 'you are not authorised'.....

NOTE: The php version is 4.0.5
In the php.ini file
Session Support is 'enabled'
register_globals is 'On'

Any help ??? 🙁

Thanks !!!

Anon

what about just checking $userid ? Don't know wheater it works but give it a try ... should work.

ali

sgs-techie

Even isset($userid) is not working !!!

🙁

Any more help ???

Anon

Tell me, do you have cookies turned off on your browser? That would cause the symptoms you're describing, because there would then be no way for the session ID to make it to the next page.

If you do have cookies turned off, then methinks

echo "<script>window.location=\"xyz.php4".SID."\"</script>";

might result in a change of behaviour, by explicitly inserting the session ID.

PS. I recommend turning register_globals off (and dropping those session_register() calls), and sticking with the $HTTP*VARS[] arrays (your version of PHP is too old for $_SESSION[] and the like.)