Problems with sessions & login with admin/normal user functions..

sambo80

Hi,

I'm getting a headache, with the following code....Just to explain, the basics....I have a MySQL table called users:

{username, passwd, email, admin} - They are all chars,

except the admin which is a tinyint. I'm using this as a flag. 1 for an admin user, and 0 for normal.

From my 'login.php' screen, Once the user enters his username and password, he goes to the member.php screen. But its in this script that I'm having the problem. My member.php script is where I check the sessions, It uses a login function from my 'user_auth_functions.php' script. But its not working...

Where do I do the checks for the user/admin session variables that I have declared in one of my functions. I've attached the scripts, cos otherwise its too much on this screen. I know its a lot, But would really appreciate if someone could check to see where I'm going wrong.

I've included just some of the functions.....

I feel that its not that hard for someone experienced...unlike a newbie such as myself......Thanks.. Any probs with what I'm doing, please ask....thanks again.

rachel2004

What verison of PHP are you running? And when you say it's not working, what's not working exactly? What have you tried so far?

sambo80

Hi thanks for replying

I'm using php version 4.3.7....

I don't really know where the problem is within my member.php script.

I dont know the best way to write a function, that checks from the database, for whether the user is a normal user or an admin user.

I know, once it does check, it should assign that result into a session variable. But it think my code in member.php, is confusingly messed up.

The outcome that I would like, is for a script to check if a user has logged in as normal or admin, and then send that user to either a normal page, or the admin page.

rachel2004

In your scripts, everywhere you have:

$HTTP_POST_VARS

change it to:

$_POST

and everywhere you have:

$HTTP_SESSION_VARS

change it to:

$_SESSION

Since you are running v4.3.7, your PHP will support the latest and greatest superglobals. See the manual for better details on this:

www.php.net/variables.predefined

Also, modify the following in your code. Change from:

function check_normal_user()
{
	global $HTTP_SESSION_VARS;

if (isset($HTTP_SESSION_VARS['normal_user']))
	return true;
else
	return false;
}

to this:

function check_normal_user()
{
	if (isset($_SESSION['normal_user']))
		return true;
	else
		return false;
}

Let me know if this doesn't work and I'll investigate it a little more thoroughly.