how to see ...

goc

... who is online ?

i cant figure it out and i want to see if any of registered members is surfing the site or if that doesnt work just to see which user has session registered and be able to show it on the page

in authuser.php i have :

$cookie_name="auth";
$cookie_value="ok";
$cookie_expire=time()+2419200;
//$cookie_expire="";
$cookie_domain="";
setcookie($cookie_name, $cookie_value, $cookie_expire, "/", $cookie_domain,0);
session_register("username");
setcookie("username",$username,time()+2419200,"/","",0);

i think i cant use any data from cookies coz cookie lasts for 1 month (i think) so it seems that i have to use session_register ...

please help and thanks in advance !

the_Igel

every time somebody requests a page you have to store his name somewhere, e.g. in a database, and the time of request too. then to print out the list of users currently online, you just select those who requested page in last five minutes or so. Of course, out-of-date records should be deleted for table not to grow infinitely.

And BTW setting cookie $auth = 'ok' isn't the top secure way to check whether user has logged in 🙂

goc

yes, thats cool way (but what if the user has logged out) and i will do it if somebody tells me how to recognize if somebody requests some page 😕

And BTW setting cookie $auth = 'ok' isn't the top secure way to check whether user has logged in

... i know that but is there a better way ? i mean i'm sure there is but i would be happy if somebody explains it to me

boy ! i think i'll have another 11567 questions 😃

the_Igel

OK, a little more detailed.

In the beginning of every script, where you check if user is logged (you have to do it anyway, don't you?) you insert a line in a table smth like
('jonnie', '2002-08-23 13:47:00')

(better if you have single record for each logged user with time he got a page last time)

If Jonnie logs off, you delete his record from table.

About auth: for example, at the moment Jonnie logs in, you generate unique random session id and store it in his cookies. And on the server you keep track which user got which session id.

you can generate such a random id combining rand, microtime & md5, for example, or some other way.