[Resolved] variable not getting set

crawfd

In my check login script I want to register a $state variable (below in script) depending on their status field per user row.

$logged_in is registering fine ....

when I echo the results of $state it's always 0, ..but it should show as 1.


<?php
/* check login script*/

session_start();

if(!isset($_SESSION['username']) | !isset($_SESSION['password'])) {
	$logged_in = 0;
	return;
}
else {
// remember, $_SESSION['password'] will be encrypted.

if(!get_magic_quotes_gpc()) {
	$_SESSION['username'] = addslashes($_SESSION['username']);
}
// addslashes to session username before using in a query.

$pass = $db_object->query("SELECT status, password FROM users WHERE username = '".$_SESSION['username']."'");
if(DB::isError($pass)) {
	$logged_in = 0;
	unset($_SESSION['username']);
	unset($_SESSION['password']); // kill incorrect session variables.
}
$db_pass = $pass->fetchRow();
// now we have encrypted pass from DB in $db_pass['password'], stripslashes() just incase:

$db_pass['password'] = stripslashes($db_pass['password']);
$_SESSION['password'] = stripslashes($_SESSION['password']);
//compare:

if($_SESSION['password'] == $db_pass['password']) { // valid password for username
	$logged_in = 1; // they have correct info in session variables.
}
else {
	$logged_in = 0;
	unset($_SESSION['username']);
	unset($_SESSION['password']); // kill incorrect session variables.
}

if('status' == expired) {
	$state = 1;
} else {
	$state = 0;
}


}
// clean up
unset($db_pass['password']);
$_SESSION['username'] = stripslashes($_SESSION['username']);

$var = $_SESSION['username']; // where var is your variable
global $var; 
?>

drew010

i think part of the problem is with
if('status' == expired) {

unless expired is a defined constant, it needs to be in quotes like "expired" and im not sure about how that class works, but i think 'status' needs to be a variable or something fetched from the query.
maybe since you called $db_pass = $pass->fetchRow();
you need to do
if($db_pass['status'] == "expired")
but thats just a guess since i dont know how that class works and what all the variables are.

crawfd

Thanks, it worked.