new to sessions

artic

<?php

$user = "...";
$pass = "...";

$username = $HTTP_GET_VARS['name'];
$password = $HTTP_GET_VARS['password'];

if($username == $user){
}else{
	echo("wrong user");
	}

if($password == $pass){
}else{
	echo("wrong pw");
}

$admin = "yes";
$login = "yes";

session_start();
//starts session

session_id($username);
//sets id

session_register($admin, $login);
//tells if there admin or not

exit;

header( "Location: ".$HTTP_SERVER_VARS['HTTP_REFERER'] );
//sends them back to where they came from
?>

i know the exit is there i was usin it for debuggin. iget this error

wrong userwrong pw
Warning: Cannot send session cache limiter - headers already sent (output started at c:\program files\easyphp\www\dna\login.php:11) in c:\program files\easyphp\www\dna\login.php on line 22

Warning: Failed to write session data (files). Please verify that the current setting of session.save_path is correct (C:\Program Files\EasyPHP\tmp) in Unknown on line 0

the pw is right and so is the user. the path is set right cuz its creatin the session filein my dir.

nnichols

You need to move session_start() to the top of your script - before any output.

artic

ok not gettin line 22 error but is my veriable pullin from last page right. the HTTP_GET_Vars

nnichols

Sorry. Don't understand your question.

BTW you need to move session_id() to before session_start().

It is not a good idea to use usernames for session_ids as they are far too easy to hijack. You should use the default session_id assigned by PHP and get rid of your call to "session_id()"