session for login

bigray

if i make a login and i add all the users to the database how would i make a session for it to remember the user when they login and when they close their browser n come back they have to relogin
something like this can anyonehelp

session_start();
if ($name) (echo "That user name is invalid"); } else {
if ($password) (echo "That password is invalid"); } else {

Ham

This is what I am using on the site I am developing. I got it from a great online tutorial for creating a secure php login.

<?php

/* check login script, included in db_connect.php. */

session_start();

if(!isset($_SESSION['username']) | !isset($_SESSION['password'])) {
	$logged_in = 0;
	return;
}
else {
// remember, $_SESSION['password'] will be encrypted.

if(!get_magic_quotes_gpc()) {
	$_SESSION['username'] = addslashes($_SESSION['username']);
}

// addslashes to session username before using in a query.

$pass = $db_object->query("SELECT password FROM 
users WHERE username = '".$_SESSION['username']."'");

if(DB::isError($pass)) {
	$logged_in = 0;
	unset($_SESSION['username']);
	unset($_SESSION['password']);
// kill incorrect session variables.
}

$db_pass = $pass->fetchRow();

// now we have encrypted pass from DB in 
//$db_pass['password'], stripslashes() just incase:

$db_pass['password'] = stripslashes($db_pass['password']);

$_SESSION['password'] = stripslashes($_SESSION['password']);

//compare:

if($_SESSION['password'] == $db_pass['password']) { 
	// valid password for username
	$logged_in = 1; // they have correct info
					// in session variables.
}

else {
	$logged_in = 0;
	unset($_SESSION['username']);
	unset($_SESSION['password']);
	// kill incorrect session variables.
}
}
// clean up

unset($db_pass['password']);
$_SESSION['username'] = stripslashes($_SESSION['username']);

?>

bigray

ok and if i make the user name and passwords in the phpmyadmin would i redirect that script to login.php?
and do u have aim or icq so we can talk thanks

Ham

Follow this tutorial and you will be good to go!

http://www.free2code.net/tutorials/php/phplogin

bigray

ok look go to www.orbit64.com and check out the partner login iam working on that all i need to do is the session parts so i can add the users in phpmyadmin so it will work so should i just use the script u sent me and redirec the login form to like clients.php and how would i add username and password for each user in phpmyadmin>?