[Resolved] Login script help......

Mark

can someone tell me what i'm doing wrong.... its like not sending the information to the next page or somethin, i dunno...

    $passwd = md5($_POST['passwd']);
    $dbuser = 'Blade';
    $dbpass = '****';
	//connect to the DB and select the database
    $connection = mysql_connect('localhost', $dbuser, $dbpass) 
	or die(mysql_error());

mysql_select_db('Hazardnet', $connection) or die(mysql_error());
//set up the query
$query = "SELECT * FROM HN_users
        WHERE username='$username' and passwd='$passwd'";

//run the query and get the number of affected rows
$result = mysql_query($query, $connection) or die("error making query");

$affected_rows = mysql_num_rows($result);
//if there's exactly one result, the user is validated. Otherwise, he's invalid
if($affected_rows == 1){
session_register("username");
session_start("username");


print "Thank your for logging in, <strong>$username</strong>, Please continue into the <a href=\"/members/members.php\">members area</a>";
}
else{
    print 'Sorry, you seem to have entered an incorrect Username/Password.';
    }

logincheck.php...:

<?
if(!isset($_SESSION['username']))
{
die('
An error has ocurred. It may be that you have not logged in, or that
your session has expired.  Please try <a href="/"><u>logging in</u></a> again or 
<a href="/?HNC=register"><u>Registering</u></a><br /><br />

For further questions email the <a href="mailto:Mark00018@hotmail.com"><u>Web Master</u></a>

');}
else{print "Welcome!";}
?>

then i have a member page that includes the logincheck.php

<?... include("http://www.hazardnet.net/login/logincheck.php"); ...?>

to try for yourself goto my site and try logging in with:
username: guest
password: guest

Mark

seriously? you tried logging in and it worked?

Mordecai

I'm confused.. login seems to work fine for me. I can't find a member's only page link on your site, either. Going to /logincheck.php gives the no-session error because you haven't called session_start() yet.

[Edit for clarity]I posted before, deleted, then reposted.. hence the odd order.[/edit]

Mark

the members only page, which doesnt have anything on it is here http://www.hazardnet.net/login/members.php , it just includes the logincheck.php

Mark

this thing is really makin me mad, and it really shouldnt be this difficult should it, i've been tryin to fix it for like a month, cause i'm dumb. but anyways, i'm really annoyed. if anyone could tell me how to fix it exactly that would be great. because i'm tired of trying, i cant fix it...

Mordecai

You don't have a session_start(), unless I somehow looked over it...

Anyways, always print_r($_SESSION)!

Mark

a session_start() in what? in the logincheck? if so i added it and it still doesnt work... 🙁

ScubaKing22

Well one major problem is that you need to start the session before you use any variables in it. Try placing

session_name("user");
session_start();

at the top of every page.

Mark

this is at the very top of the page....:

<?
    $username = $_POST['username'];
    $passwd = md5($_POST['passwd']);
    $dbuser = 'Blade';
    $dbpass = '****';
	//connect to the DB and select the database
    $connection = mysql_connect('localhost', $dbuser, $dbpass) 
	or die(mysql_error());

mysql_select_db('Hazardnet', $connection) or die(mysql_error());
//set up the query
$query = "SELECT * FROM HN_users
        WHERE username='$username' and passwd='$passwd'";

//run the query and get the number of affected rows
$result = mysql_query($query, $connection) or die("error making query");

$affected_rows = mysql_num_rows($result);
if($affected_rows == 1){ 
    session_register("username");
	session_start();}

?>

Mordecai

You can't register a session variable before a session is started.

Mark

i tried it the other way as well.. same problem..

Weedpacket

And you have a line

$username = $_POST['username'];

somewhere?

Mark

ok, i added that right before the $passwd =, but it didnt fix anything, so ya.. thanks anyways. anyone else? 🙁

Mark

for some reason, when i include("http://www.hazardnet.net/login/logincheck.php");

it dosnt want to work, but when i put the accual logincheck code on the members page, it works.... thanks anyways guys. i've been boggled over this for months, and i knew it was something so f-ing stupid like this...