[Resolved] cookie issues :(

helz

they just dont taste right.
anyone know a good recipe?

basically the login script i have is that it logs on, creates the cookie i think and then completes the login process, ive tested it by having a profile.php file where the user edits their own information that is grabbed from the sql by their username that is stored in the cookie. all this works perfectly except at the end of the login procedure i put a simple link that goes back to the index page except when the index page loads up the login thing is not remembered.

heres the code for the memberbar.php which is included in the index.php

require ("".$DOCUMENT_ROOT."/cgi-bin/connect.php");
$username = $HTTP_COOKIE_VARS['adminname'];
global $username;
$counter = 0;
$flag=0;
$result = @mysql_query("SELECT password FROM ".$membertable."");
    if (!$result) {
    echo("<p>Error performing query: " . mysql_error() . "</p>");
    exit();
    }

while ( $row = mysql_fetch_array($result) ) {
	$dpass = $row["password"];
    $duser = md5($HTTP_COOKIE_VARS['adminname']);
    $dtotal = "$dpass$duser";

$dcookie = $HTTP_COOKIE_VARS['memberlogon'];
if ($dtotal==$dcookie) {$flag=1; $temp = "$dpass";}
}
if ($flag != 1) {
	echo("<font color='#FFFFFF'><div align='center'>Welcome Guest: <a href='/login/register.php'>Register</a> or <a href='/login/login.php'>Login</a></div></font>");
    }
else if ($flag == 1) {
echo("Welcome ".$username."! ( <a href='/login/profile.php' target='_blank'>Edit Your Profile</a> / <a href='".$url."index.php?login=logout'></a><s>Logout</s> )");
}

i used some of the coding to double check whether it remembered it or not but it doesn't.
before it was just:

$username = $HTTP_COOKIE_VARS['adminname'];
if ($username!==""){
// user logged in information
} else {
// guest is present
}

here is the cookie.php

$cookname = setcookie('adminname', $username, time()+315360000);
$cookpass = setcookie('adminpass', md5($password), time()+315360000);
$username=md5($username);
$cookieval = "$password$username";
$cooklogin = setcookie('memberlogon', $cookieval);

require ("".$DOCUMENT_ROOT."/cgi-bin/connect.php");

echo "Enabling cookies...<br>";
if ($cookiename == "false") {$ans = "failed";}
else {$ans = "complete";}
echo ("adminname cookie..." . $ans);
if ($cookiepass == "false") {$ans = "failed";}
else {$ans = "complete";}
echo ("<br>adminpass cookie..." . $ans);
if ($cookielogin == "false") {$ans = "failed";}
else {$ans = "complete";}
echo ("<br>adminlogin cookie..." . $ans);

echo "<META HTTP-EQUIV=\"refresh\" CONTENT=\"0; URL=monkey.php\">";

mysql_close($cid);

Thanks in advance!!

tekky

where do you ever set $cookiename and $cookiepass to check them? I see $cookpass and $cookname.....

😉

helz

hmm your right. if statements are always false in their current stature...

so change it to:

// cookname becomes cookiename
$cookiename = setcookie('adminname', $username, time()+315360000); 
// cookpass becomes cookiepass
$cookiepass = setcookie('adminpass', md5($password), time()+315360000); 
$username=md5($username); 
$cookieval = "$password$username"; 
// cooklogin becomes cookielogin
$cookielogin = setcookie('memberlogon', $cookieval); 

require ("".$DOCUMENT_ROOT."/cgi-bin/connect.php"); 

echo "Enabling cookies...<br>"; 
if ($cookiename == "false") {$ans = "failed";} 
else {$ans = "complete";} 
echo ("adminname cookie..." . $ans); 
if ($cookiepass == "false") {$ans = "failed";} 
else {$ans = "complete";} 
echo ("<br>adminpass cookie..." . $ans); 
if ($cookielogin == "false") {$ans = "failed";} 
else {$ans = "complete";} 
echo ("<br>adminlogin cookie..." . $ans); 

echo "<META HTTP-EQUIV=\"refresh\" CONTENT=\"0; URL=monkey.php\">"; 

mysql_close($cid);

i got the login script from a friend who said i could use it after i asked, managed to make it all work.

do you know why it works as it did before with the profile.php? but did not for the memberbar.php?

is this because they are in different folders?

tekky

no idea... could try setting the cookie path to "/" maybe its some weird path issue with them... but Idoubt that...

helz

hmm, because its on auto-refresh, i didnt notice that the on the cookie set file it actually comes up as failed.

so the test operates by checking to see if the cookie has been written, any info on why it says error on all cookies, even though the profile still logs on by using the username in the cookie ???
-- edit --
i also found this post, so i was wondering how to implement it into my code 🙂

Hi all,
I'm having a bit of trouble setting a session cookie with setcookie(). I'm
finding (I think) that I can't set the path component of the cookie to
anything like "/" -- in other words, to the html root for the domain -- if
the script is located in a subdirectory.
Specifically, what I attempted to do was to set a cookie using a script in
a directory called "store"; that directory is at
http://www.somedomain.com/store/, which corresponds to
/web/domains/somedomain/htdocs/ in the local filesystem. However, when I
redirect the user to another subdirectory -- say,
http://www.somedomain.com/other_dir/ -- the browser stops sending the
cookie back.
The command I used to set the cookie was:

setcookie("somecookie","somevalue",0,"/");

I'd expect this to set the cookie's path to the root for the domain, but
that's not what's happening.
Incidentally, the directory I want to send the user to is my SSL
directory, which is located at /web/domains/somedomain/htdocs/ssl/ and
corresponds to https://www.somedomain.com/.
Also, the cookie works just fine in all subdirectories if I set it using a
script in the html root dir, and then redirect the user to SSL pages.
Any help would be dearly appreciated.
Charlie

helz

well fixed it,
like in the last post, also checking out php.net/setcookie kinda did it lol!

just added , '/' after the time in setcookie lines