Assistance with setcookie()

wad

Hello everybody. I've been working on a problem for some time now. I have simple authentication through a MySQL database to access certain parts of my site. I'm currently testing a new database, but the login is not working.

I have the scripts under a sub-folder /tv-listing/. I'm using the same login script that can be found at /blog.php, change a few variable names. I login, and the script registers a successful login. It prints out the applicable message, and then should kick me into the User CP. However, it reloads and gives me the error message when a user hasn't authenticated.

I've checked my setcookie function, and even declared it should be active only under /tv-listing/, domain of .superwad.ca, and the values should check out.

In my main /blog.php script, I did print_r($_COOKIE['UserCookie']); (and a echo $HTTP_COOKIE_VARS["UserCookie"]; ), and it properly echoed my data. I did the same thing on this script, and combined with an error I put in, I get a blank message and "is not working", meaning my cookie isn't set. Also, my /tv-listing/ cookie name is "ListingCookie".

Could anybody please take a look at it and tell me what is going on? The applicable script files will be included in a zip, along with a link to the login page and valid credentials. If you require any further information/scripts from me, please ask.

Thank you.

http://www.superwad.ca/tv-listing-problem.zip
http://www.superwad.ca/tv-listing/admin.php?action=login

Username: user
Password: password

PS: Sorry if the code is hard to read (for tabbing). This is still a work in progress.

Frederick

have you tried to just not add the domain and sub?

setcookie ('ListingAdmin', '0', $loginlen1, '/', '', 0);

wad

I replaced my setcookie statements with that, and it still does the same thing.

Here is the updated actionenter.php file

<?php 

$password1 = md5 ($password1);  // MD5 the submitted password to reference from the MySQL table.
$loginquery = "SELECT * FROM user_db WHERE username='$username1' && password='$password1'";  // Select the appropriate user account
$loginresult = mysql_query($loginquery);

for ($l =0; $l <  mysql_num_rows($loginresult); $l++) 
{
	if (!mysql_data_seek ($loginresult, $l))
	{
		printf ("Cannot seek to row %d\n", $l);
		continue;
	}
		if(!($row = mysql_fetch_object ($loginresult)))
		{
			continue;
		}

		// Set the variables to be used later			

		$username = $row->username;  
		$name = $row->name;
		$isadmin = $row->isadmin;

		// Determine cookie length

		if ($alwayslogin1 == 'on') 
		{ 
			$loginlen1 = time()+101507200; 
		} 
		else 
		{ 
			$loginlen1 = $loginlen1*60;
	 		$loginlen1 = time()+$loginlen1; 
		}

		// Set appropriate cookies

		if($isadmin == '0')
		{
			setcookie ('ListingCookie', $username, $loginlen1, '/', '', 0);
			setcookie ('ListingName', $name, $loginlen1, '/', '', 0);
			setcookie ('ListingAdmin', '0', $loginlen1, '/', '', 0);
		}
		if($isadmin == '1')
		{
			setcookie ('ListingCookie', $username, $loginlen1, '/', '', 0);
			setcookie ('ListingName', $name, $loginlen1, '/', '', 0);
			setcookie ('ListingAdmin', '1', $loginlen1, '/', '', 0);
		}

		// Login was successful

		$loginsuccess = "true";
} 
?>

Frederick

Try the following code in a test page after login and see if it holds. If all is well, then it is just your coding.

<?php
if (isset($_COOKIE["cookiename"]) && $_COOKIE["cookiename"] == "value"){
	echo "Cookie Set OK<br>";
	echo "Value of cookie => ".$_COOKIE["cookiename"];
} else {
	echo "Failed to set cookie";
}
?>