Help with Sessions

txrandom

I've been trying to make a simple little site for people to be able to upload records and then edit them as needed. I'm trying to make a simple login script or find one that is suitable.

I used the login script from this site. http://www.evolt.org/article/Creating_a_Login_Script_with_PHP_4/17/19661/
and it worked nicely. I got it working, but it was showing some error. I tried to get the error message to disappear and in the process the sessions stopped working. Now whenever I use any login script that uses sessions, it just "refreshes". In this, I mean whenever I press submit it just "refreshes" the input isn't processed. It doesn't appear that it's even checking the username and password with what's in my database.

I've looked all over the internet to find out what session variables to change in my httpd.conf and php.ini file, but nothing has helped the problem so far. Can anyone help me with this problem? Thanks in advance.

txrandom

I also used the session test on this page. http://phpbuilder.com/board/showthread.php?t=10305875&highlight=session+variables
The numbers increment by 2. Perhaps maybe the sessions is working fine, but I'm not putting the code in the right order or something?

txrandom

Update- I tried logging in with the username/password I set up and it didn't work. I even tried using the wrong password and it just "refreshes". I'm still not sure what is wrong with this.

Roger_Ramjet

Dump that script. It uses session_register which is deprecated, and relies on other outdated php features like register globals being on. Basically this script is 2 or 3 years out of date.

It does not query the db because, I'm sure, your server has globals OFF and so the post vars are not instantly available and must be accessed through $_POST['username'] etc. , so your query has empty parameters and returns nothing.

To set the session vars you should use $SESSION['username'] = $POST['username'] or similar construction.

I suggest that you have a look at Kevin Yanks solution on Sitepoint . The access control script works very well - I use a modified version myself as I wanted account lockout etc. so I extended it; but the core code is still his and it works wonderfully.

txrandom

Thank you, I'm gonna check that script out later today and see if I can get it working.