[Resolved] Session problems

loureiro

this is the first time i have used session so i was wondering if you guys could help me out for a second.

im trying to pass the session id through to the next page by sending it as a get but when i do that it doesnt appear the first time. like i have to go back to the last page and then go forward again cause the information isnt working! and not only that! it puts the damn session id on there twice when it shouldnt!

any help would be appreciated!

LordShryku

Lets see some code...

Grisu

Why do you want to use the session-ID? PHP handles this automatically. If you put session_start() in the beginning of your script, you can read and set any variable with the $_SESSION-array.

Try this two files:

<?php

let's call this first.php

session_start();
$_SESSION["anything"] = "Hello";
echo "<a href='second.php'>Next</a>";
?>

<?php

let's call this second.php

session_start();
echo $_SESSION["anything"];
?>

HTH
Grisu

loureiro

so i do not have to pass the session id through? its passed automatically? how does session end work? do i just do it once or do i have to do it every single time i move on to another page?

Grisu

you do not have to stop the session unless you want to destroy it (session_destroy()). have a look into the PHP-manual available at php.net. The session-management is explained quite well there as well as how it works internally.

Grisu

loureiro

thats where i went to take a look at it...its a little confusing. just one more question...the page right after the one where i set all the information doesnt get the info...only the one after that gets it! so what i was thinking of doing was running a grabber file before sending it to the default page. is there a way to send it through? like can i set all the values and then pass it along without having the user click a button?

Grisu

this behaviour is unusual. Now I have to follow LordShryku: Lets see some code...

Grisu

loureiro

  //create session
  session_start();

  //extract $_POST
  extract ($_POST);

  //connect to database______________________________________________________________________
  require ("*****");
  $dbh = mysql_connect (*****) or die ('I cannot connect to the database because: ' . mysql_error());
  mysql_select_db (*****);

  //check if user exists and grab all info for customer
  $exist = "true";

  $sqlCustomer = "SELECT * FROM Customer WHERE username=\"$username\" AND password=\"$password\"";
  if($temp1 = mysql_query($sqlCustomer, $dbh))
  {
    //user exists--
    list($_SESSION['clientID'],$_SESSION['companyID'],$_SESSION['first'],$_SESSION['middle'],$_SESSION['last'],$_SESSION['title'],$_SESSION['mobile'],$_SESSION['email'],$_SESSION['photo'],$_SESSION['personal'],$_SESSION['program'],$_SESSION['username'],$_SESSION['password'],$_SESSION['product'],$_SESSION['version'],$_SESSION['trialLength'],$_SESSION['expiryDate'],$_SESSION['subDirectory'],$_SESSION['primary']) = mysql_fetch_row($temp1);
	if($primary==1)
	{
	  //grab all info for company
      $sqlCompany = "SELECT * FROM Company WHERE companyID=\"$companyID\"";
      if($temp = mysql_query($sqlCompany, $dbh))
      {
        list($_SESSION['companyID'],$_SESSION['companyName'],$_SESSION['address1'],$_SESSION['address2'],$_SESSION['city'],$_SESSION['province'],$_SESSION['country'],$_SESSION['postalCode'],$_SESSION['telephone'],$_SESSION['tollFree'],$_SESSION['fax'],$_SESSION['website1'],$_SESSION['website2'],$_SESSION['link1'],$_SESSION['link2'],$_SESSION['users'],$_SESSION['logo1'],$_SESSION['logo2'],$_SESSION['image1'],$_SESSION['image2'],$_SESSION['details'],$_SESSION['enabledFields'],$_SESSION['payment']) = mysql_fetch_row($temp);
      }
	}
  }
  else
  {
    //user does not exist--
    $exist = "false";
  }

loureiro

oh and the links are just regular links!

loureiro

also i was wondering if anyone knew how i could get it to automatically move on to the next page yet still pass the values or should it do that automatically?

its coming from an index page where there is a login

Grisu

1) The first thing I recommend is that you check the if mysql_fetch_row returns something. When you check if mysql_query() is something you only know, that there is no mistake in your SQL-query. To know if there really is a result you have to check mysql_fetch_row(). You usually do that with

if ($tmp = mysql_fetch_row(...)) {
// store the $tmp-array somewhere
}

2) The second thing that is dangerous is to make a "SELECT * FROM" query, get the result with fetch_row and then store the values in a variable. If you add a col in between or remove one field to the database one day, the complete code does not work. You better list the fields in SELECT or best use fetch_array() which does not need more time to execute and supplies the field-name in the array.

3) Concerning your session I still think everything should work. But I do not completely get your problem. I guess, there is an index.html-form which asks for username and password. This is posted to your lets say "session.php"-file that you have listed. Then if you make the above mentioned (3) and the user is valid, you should have stored the user- and company information in your session-vars.

What happens, if yow echo $_SESSION["CompanyID"] for example?

And then what is the next step? Where do you go now where you do not have the Session-vars? Did you session_start() in that script as well?

Grisu

loureiro

I actually figured it out! i used that manner of getting my data because i want to check for the username password on every single page. i also wanted to check my query at the same time to make sure it was alright. i dont really need to change it so i wont.

thanks for your help though!