forwarding to page after login

squilbert

Hi
I'm having a bit of a problem with a login page that is supposed to take users to a different page after depending on info from a database. I am using the following code to do this:
foreach ($HTTP_POST_VARS as $key => $value)

$query = "SELECT UserName, Password FROM customer WHERE UserName = '$POST[UserName]' AND Password = '$POST[Password]'";
$result = mysql_query ($query)
or die ("Couldn't execute query.");

$username = $POST['UserName'];
$password = $POST['Password'];

$count = mysql_num_rows($result);

if ($count > 0)
{
echo "Welcome $username<br>";
update_login_table();
login_page();
$login = "yes";

}
else
{
echo "Your username or password is invalid. Please try again.";
}
function login_page()
{
$username = $_POST['UserName'];

$host="localhost";
$connect = mysql_connect($host,"","")
or die ("Couldn't connect to server.");

$db = mysql_select_db("liveweb", $connect)
or die ("Couldn't connect to database.");

$sql1 = "SELECT InterestsID FROM customer_interests WHERE UserName = '$username'";
$query1 = mysql_query ($sql1)
or die ("Couldn't execute query.".mysql_error());

$row = mysql_fetch_array($query1);
extract($row);

if ($InterestsID == 1)
{
header ("Location: mylivedrama.php");
}
else if ($InterestsID == 5)
{
header ("Location: mylivejhc.php");
}
else
{
header ("Location: whatson.php");
}
return;
}

Although this works in that it checks the login and lets people login if username and password are correct, it doesn't then redirect people to a page like it should. Instead it gives the following error:
Couldn't execute query.Duplicate entry '(username)' for key 1
I have no idea why its doing this as I have had it working before and can't remember changing anything. Any help would be greatly appreciated.

diego25

I'm guessing your error is coming from update_login_table(), since the code you posted doesn't have any INSERTs that could cause a duplicate primary key (i.e. your username probably).

Inside your update_login_table(), are you using SQL's INSERT or UPDATE? My guess is that you're using INSERT when you should have been using UPDATE...

Diego

squilbert

I was using INSERT in my update_login_page function. I've changed that to update now as shown below:

function update_login_table()
{
$username = $_POST['UserName'];
$host="localhost";
$connect = mysql_connect($host,"","")
or die ("Couldn't connect to server.");

$db = mysql_select_db("liveweb", $connect)
or die ("Couldn't connect to database.");

$sql = "UPDATE customer_login SET UserName='$username', LoginTime=now()";
$update = mysql_query ($sql)
or die ("Couldn't execute query.".mysql_error());
return $username;
}

However, I'm still getting my original error message about a duplicate key.

laserlight

Did you test with new data?
It looks like this time you forgot the where clause.

I would also suggest that you have an id field, an integer that is auto_increment

diego25

Try this:

$sql = "UPDATE customer_login SET LoginTime=now() WHERE UserName='$username'";

Diego

squilbert

I've made the changes as suggested by using the update instead and totally emptied the database so I started with completly new data. However, strangely now, when I try and login I it still doesn't forward to the correct page but it also doesn't give me any error messages at all. Instead it just stays at the login page but clears the username and password boxes I've just entered. I've checked the database after logging in and it does update the login time so it is doing something. I just don't understand why it ignores the function to redirect to a page.