why wont this work? please help

fleshbox

Ok, I am setting up a client database and I am using sessions for login support...

After successful login I am doing the following:

$_SESSION["valid_id"] = $obj["user_id"];
$_SESSION["valid_user"] = $_POST["username"];
$_SESSION["valid_time"] = time();

$obj is an array from a my_sql_fetch_row() statement. When executing the sql query in php My Admin it returns user_id correctly...

In another script I am calling these session variables:

echo "ID " . $_SESSION["valid_id"];
echo "<p><b>Username:</b> " . $_SESSION["valid_user"];
echo " <b>Logged in:</b> " . date("m/d/Y", $_SESSION["valid_time"]);

$SESSION["valid_user"] and $SESSION["valid_time"] are both showing correctly, however $_SESSION["valid_id"] is blank. I need this so that I can limit the clients returned to those who belong to the logged in user.

much TIA

tude-marie

You need to post you SQL query.

fleshbox

Here is the code straight from my script... I changed the variable $obj to $row since I posted origionally.

$sql = "
			SELECT
			*
			FROM
			users
			WHERE
			user_name = '$_POST[username]'
			AND
			user_pass = '$_POST[password]'
			LIMIT 1
		";
		$result = mysql_query($sql);

	if ( $row = mysql_fetch_row($result) )
		{
		$valid_id = $row[user_id];
		// Login O.K., create session variables
		$_SESSION[valid_id] = $valid_id;
		$_SESSION[valid_user] = $_POST[username];
		$_SESSION[valid_time] = time();

		// Redirect to member page
		Header("Location: members.php");
		}
	else
		{
		die("Sorry, could not log you in. Wrong login information.");
		}

I have tried using
$SESSION[valid_id] = $valid_id;
and
$SESSION[valid_id] = $row[user_id];

neither works.

And again, later in members.php :

echo "ID " . $_SESSION["valid_id"]; 
echo "<p><b>Username:</b> " . $_SESSION["valid_user"]; 
echo " <b>Logged in:</b> " . date("m/d/Y", $_SESSION["valid_time"]);

When I run the sql alone it returns correctly. But for some reason in this script it won't assign to $row[user_id]

The users table contains 4 columns; user_id, user_name, user_pass and user_mail.