SESSION question

Mofix

Hi,

I am new at php and i have this question. Do I have to first declare my $SESSIONS, first I have to write $SESSION['login'] = 'user'; and then I can write IF ( $SESSION ) or I can just write if ( $SESSION ....... ) . Because you can't write IF ( ) if something doesn't exists I mean ...

<?php
session_start();

if( $_SESSION['login'] == 'admin' )
{
require_once 'dodaj.php';
}
?>

notaloser

well, you start off every page with session_start(); regardless of whether or not the user has logged in or you have actually created the 'user' or 'admin' session.

once the session has been created on one page (in my example, page1), it will carry over to your other pages.. which is how sessions work..

page1

session_start();
// the user has logged in or whatever (the session is created)
$_SESSION['login'] = 'user';
// then the user clicks to page2

page2

session_start();
//session has already been created, go ahead and check to see if the user is an admin or just a user
if (($_SESSION['login']) == 'admin') {
echo "you are an admin";
}else{
echo "you are not an admin!";
}

Mofix

Yes I know that they carry over but I just want to make sure that the session 'login'='admin' doesnt exist.
So I can use if( $_SESSION['login'] == 'admin'.

Do you know any other solution to this. This code is on index.php. I have an issue with this because for me first it has to be declared and then checking. I dont like this code but it works.

<?php
if( $SESSION['login'] == 'admin' )
{
require_once 'add_news.php';
}
?>
<?php
if( $SESSION['login'] != 'admin' )
{
login();
}
?>

notaloser

your trying to check to make sure that $_SESSION['login'] = 'admin' does NOT exist?

thats what your if statement checks.. whether or not the session exists with the value 'admin'

if(($_SESSION['login']) == 'admin') {
// the session with the value admin does exist here..
}else{
// the session does not exist with the value admin, or does not exist at all
}

i dont think i quite understand your problem

NogDog

Not sure if this is what you're looking for: isset().

bongbong

$SESSION['login'] must have a value first before you can check if(($SESSION['login']) == 'admin')

it could be set up something like $SESSION['login'] = $POST['login']; somewhere...

Mofix

bongbong this is answer I am looking for yes. I am just confused because in C if you write

int main()
{
if( i = 1 )
printf("works");
return (0);
}
it would say that i doesn't exists, PHP is a scripting language and there you can write variables where you want I think so.
So I think it's ok if I write if (($_SESSION['login']) == 'admin').

tsinka

Hi,

you should also use isset to avoid PHP warning messages (depending on the error_reporting level). Something like:

if (isset($_SESSION['login']) && $_SESSION['login'] == 'admin')

Thomas