user login

gabemcmillan

On my page I am using a standard php login. It logs in fine on my localhost, but for some reason when I upload it to my host server, it makes me log in twice. The first time I try to log in, it takes me back to the login page, the second time I try, it logs me it. Any ideas why this would happen?

w_geoghegan

Could you post the script code for us to look at. Or attach it as a zip file if it's too big.

Cheers.

William Geoghegan
GEOTEK Computer Services
- www.geotekcs.co.uk -

gabemcmillan

<?php
session_start();
include "conn.inc.php";
if (isset($POST['submit']))
{
$query = "SELECT id, username, password FROM user_info WHERE username = '" .
$POST['username'] . "' AND password = (password('" . $_POST['password']
. "'));";
$result = mysql_query($query) or die(mysql_error());

 if ($row = mysql_fetch_array($result) )
 {
 			session_start();
 			$_SESSION['user_id'] = $row['id'];
      $_SESSION['user_logged'] = $_POST['username'];
      $_SESSION['user_password'] = $_POST['password'];
      header ("Refresh: 5; URL=" . $_POST['redirect'] . "");
      echo "(You are being redirected, if your browser doesn't support this, <a href=\"" .
           $_POST['redirect']. "\">click here</a>)";
 }
 else
 {

?>
<html>
<head>
<LINK REL=stylesheet HREF="mystyles.css" TYPE="text/css">
<title></title>
</head>
<body>
Invalid Username and/or Password<br>
Not registered? <a href="register.php">Click here</a> to register.<br>
<form action="user_login.php" method="post">
<input type="hidden" name="redirect" value="<?php echo $POST['redirect'];
?>">
Username: <input type="text" name="username"><br>
Password: <input type="password" name="password"><br><br>
<input type="submit" name="submit" value="Login">
</form>
<?
}
}
else
{
if ($SERVER['HTTP_REFERER'] == "" || $SERVER['HTTP_REFERER'] ==
"http://www.affinityspot.com/index.php")
{
$redirect = "/index.php";
}
else
{
$redirect = $GET['redirect'];
}
?>
<html>
<head>
<LINK REL=stylesheet HREF="mystyles.css" TYPE="text/css">
<title></title>
</head>
<body>
Login below by supplying your username/password...<br>
Or <a href="register.php">click here</a> to register.<br><br>
<form action="user_login.php" method="post">
<input type="hidden" name="redirect" value="<? echo $redirect; ?>">
Username: <input type="text" name="username"><br>
Password: <input type="password" name="password"><br><br>
<input type="submit" name="submit" value="Login">
</form>
</body>
</html>
<?php
}
?>