Passing session to next page

Hitoshi

Ok, I have a working login script. Once the user logs in, it takes them to index.php, with their session, the addesss being : http://URL/index.php?user=USERNAME&pass=******
Can somebody please tell me how I make it keep the end of the address the same even when i go to another page? So basically, keep the session running? Also, how do I make user specific content, so if user Rob is signed in, it displays stuff out of my db from Rob user only, using the session?

I really need some help!! Once I have this sorted I can probably work out the rest of my site.

Thanks

Hitoshi.

planetsim

Lets get things straight.. what you are doing there is a Query String... Which is the url + ?blah=blah etc..

I dont recommend having a query string like that so you sessions

The way youd do it would be to start the session and create it on one page.. And every other page you do this

Assuming your 4.3 and or higher
session_start();

//get session variables

$user = $_SESSION['user'];

Hitoshi

I really dont understand :S
here is the login script :

<form method="$POST" name="login" action="index.php">
Username:
<input type=text name="user"><br>
Password:
<input type=password name="pass"><ce>
<input type=submit value="Log In">
</form>
<?php
session_start();
$error="";
if ($POST['submit']) {
$pass = $POST['pass'];
$user = $POST['user'];
$db = @mysql_connect("localhost","USERNAME FOR DB","*****") or header("Location: header.inc");
mysql_select_db("DATABASE",$db) or header("Location: login.php");
$result = mysql_query("SELECT FROM users WHERE username= \"$user\" AND password= \"$pass\"",$db);

$num = @mysql_num_rows($result);
if ($num != 0) { $_SESSION[login] = "1"; header("Location: redirect.php]");

}else{
$error="ERROR!";
}
}
?>

If I have a footer like this :
.:Your Stats:.<br>
Officer Name : <><Br>
HP : <><Br>
XP : <><Br>
LV : <><Br>
RK : <><Br>
DF : <><Br>
AT : <><Br>
LK : <><Br>
Gold : <><Br>
Inventory : <><Br>
I want to make each of the stats go to which ever user is signed in. how is this achieved? and how do I keep the signed in status even when I change the page (that still uses the same footer)

plz help, im lost lol.

Stoned_Gecko

Read up on sessions in PHP manual. They give you plenty of examples. Here's the short version:

The login form will get the data

The login script will start the session

<?php
//Start the session
session_start();

//Get the session ID
$sid = session_id();

/* The code verifies the username and password

I'm assuming that these lines exist:
$user = $_POST["user"];
$pass = $_POST["pass"];
 */

//If the login is successfull, register what you need with the session
$_SESSION["logged_in"] = true;
...
?>

Then decide how you want to pass the session ID. In the code above it is stored in the $sid variable. PHP has mechanism for doing it automatically. I prefer to do it manually. You can do it through the URL or via a cookie. It's up to you.
If you're using the PHP mechanism, then all you need to do is call session_start() at the top of the line. If you're passing the ID manually, then you can use the following code at the top of all your scripts:

<?php
/* code to extract your session ID goes here. I'm assuming it'll end up in $sid */

//Set the session ID
session_id($sid);

//And start the session
session_start();

/* Now you can use your stored $_SESSION vars */

...
?>

Hope this helps. If all else fails, RTFM some more 🙂

Hitoshi

How do u use the stored variable thingys??? (at the bottom of ur post)

EDIT : HOW CAN I USE THE INFOMATION FROM THE DB?

if i wanted to extract this :

Gold = ? (VIEW IT)
from user = "logged in"
in table = users

Stoned_Gecko

How you extract information from the DB is a different thread all together. All the registered session variables are stored in $_SESSION array, which you can use just like any other array. So you put in the values that you want to remember:

<?php
$_SESSION["username"] = "gecko";
$_SESSION["logged_in"] = true;
$_SESSION["userstats"]["number_of_visits"] = 0;
$_SESSION["userstats"]["last_visit"] = "3/1/1980";
?>

And then you can get them in another script that uses the same session:

<?php
$current_user = $_SESSION["username"]; //sets $current_user to "gecko"
$user_logged_in = $_SESSION["logged_in"; //sets $user_logged_in to true
$user_stat_array = $_SESSION["userstats"]; //sets $user_stat_array["last_visit"] and $user_stat_array["number_of_visits"]
?>

Hope this explains it better.

Hitoshi

ok... once logged in, the user is taken to the index page. (login was a different page) and there is a footer that displays the stats

<?php
$current_user = $SESSION["username"]';
$user_logged_in = $SESSION["logged_in"]';
$user_stat_array = $SESSION["userstats"]';
?>
.:Your Stats:.<br>
Officer Name : <?php
echo : $SESSION["username"];
?> <Br>

It keeps on saying there is a parse error...??

Also, I want to keep this footer "logged in" throughout the whole session, untill they either log out or re-load the site. how is this possible?

Stoned_Gecko

There are a few parse errors. There are single quotes in before the ; on almost all the lines and theres an : right after the last echo.

Keeping the footer is a matter of putting there through out your site, and that all depends on how your site is structured and is a totally different topic.