Destroyed session will be the death of me

Tezread

I have been stuck on this problem for 2 days now and still no joy.

I cannot see how the session var $username is being destroyed (if it is)- when i click submit the results of the query do not show nor can they be recovered in latter sessions.

here is the form:

<?php
include("include/session.php");
$username = $_SESSION['username'];
include("connect.php");
// query 
$sql = "SELECT * FROM qualityuser WHERE username = '".$username."'"; 
$result = mysql_query($sql); 
// if we have from rows then prepopulate the form
if(mysql_num_rows($result) > 0) { 
   $row = mysql_fetch_array($result); 
} else { 
   $row = array('time'=>'','demand'=>'','external_support'=>'','training'=>'','complexity'=>'','depth'=>'','partuse'=>''
   ,'cost'=>'' ,'orgwhole'=>'','external_validated'=>'');
} 
?>

///else display the form in HTML format

now the formhandler which also calculates scores like a Decision Support System- cannot show you all this as the code is over 500 lines but it isn;t relevant to the problem)

<?php 
include("include/session.php");
include("connect.php"); 
//array to hold form errors       

$form_error = array(); 
//validate your form data 
if(!isset($_POST['time'])){ 
$form_error[] = "time not selected"; 
} 
if(!isset($_POST['demand'])){ 
$form_error[] = "demand not selected";       

}       

if(count($form_error) > 0){ 
//hold the error in session so you can display the error in your form page. 
$_SESSION['form_error'] = $form_error; 
//redirect to the form 
header("Location: http://www.mindseyemidlands.co.uk/notts_quality/info_resource/selfassess_part2a_v1.php");       

}  else { 
$username = $_SESSION['username'];

//remove the form_error session 
unset($_SESSION['form_error']); 

$answer = array(); 

$answer[1] = $_POST['time']; 
$answer[2] = $_POST['demand']; 
$answer[3] = $_POST['external_support']; 
$answer[4] = $_POST['training']; 
$answer[5] = $_POST['depth']; 
$answer[6] = $_POST['partuse']; 
$answer[7] = $_POST['cost']; 
$answer[8] = $_POST['orgwhole']; 
$answer[9] = $_POST['external_validated']; 

$sql = "UPDATE qualityuser SET time = '$answer[1]',
demand = '$answer[2]',
external_support = '$answer[3]',
training = '$answer[4]',
depth = '$answer[5]',
partuse = '$answer[6]',
cost = '$answer[7]',
orgwhole = '$answer[8]',
external_validated = '$answer[9]'

WHERE username = '$username'";

$result = mysql_query($sql) or exit(mysql_error()); 

function pqasso($answer) 
{ 
$pqasso_score = 0;
//time needed
    if ($answer[1] == "Flexible") {$pqasso_score = $pqasso_score + 1000;}
	if ($answer[1] == "0-12 months") {$pqasso_score = $pqasso_score - 0;} 
	if ($answer[1] == "12 + months") {$pqasso_score = $pqasso_score - 0;}

//////////////////////// and so on

/ Store the result of the function in a variable 
$pqasso_result = pqasso($answer);  

$iip_result = iip($answer); 
$iso_result = iso($answer);
$excel_result = excel($answer);
$social_result = social($answer);
$qmark_result = qmark($answer);
$chmark_result = chmark($answer);
$qfirst_result = qfirst($answer);
$balanced_result = balanced($answer);
$bigpic_result = bigpic($answer);

//get last insert id so we can update qualityuser based on the last inserted id
if (isset($_POST['submit'])) { 
include "connect.php";

$scorearray[1] = $pqasso_result;
$scorearray[2] = $iip_result;
$scorearray[3] = $iso_result;
$scorearray[4] = $excel_result;
$scorearray[5] = $social_result;
$scorearray[6] = $qmark_result;
$scorearray[7] = $chmark_result;
$scorearray[8] = $qfirst_result;
$scorearray[9] = $balanced_result;
$scorearray[10] = $bigpic_result;
$qualitysystem[1] = "PQASSO";
$qualitysystem[2] = "Investors in People";
$qualitysystem[3] = "ISO Standards";
$qualitysystem[4] = "Excel";
$qualitysystem[5] = "Social Audit";
$qualitysystem[6] = "Quality Mark";
$qualitysystem[7] = "Charter Mark";
$qualitysystem[8] = "Quality First";
$qualitysystem[9] = "Balanced Scorecard";
$qualitysystem[10] = "Big Picture";
$searchurl[1] = "http://www.mindseyemidlands.co.uk/notts_quality/info_resource/qualitysystem_complete_details.php?quality_name=PQASSO";
$searchurl[2] = "http://www.mindseyemidlands.co.uk/notts_quality/info_resource/qualitysystem_complete_details.php?quality_name=IIP+(Investors+in+People)";
$searchurl[3] = "http://www.mindseyemidlands.co.uk/notts_quality/info_resource/qualitysystem_complete_details.php?quality_name=ISO+Standards";
$searchurl[4] = "http://www.mindseyemidlands.co.uk/notts_quality/info_resource/qualitysystem_complete_details.php?quality_name=EFQM+Excellence+Model+(European+Foundation+for+Quality+Management)";
$searchurl[5] = "http://www.mindseyemidlands.co.uk/notts_quality/info_resource/qualitysystem_complete_details.php?quality_name=Social+Accounting+and+Audit";
$searchurl[6] = "http://www.mindseyemidlands.co.uk/notts_quality/info_resource/qualitysystem_complete_details.php?quality_name=CLS+Quality+Mark+(Community+Legal+Services)";
$searchurl[7] = "http://www.mindseyemidlands.co.uk/notts_quality/info_resource/qualitysystem_complete_details.php?quality_name=Charter+Mark";
$searchurl[8] = "http://www.mindseyemidlands.co.uk/notts_quality/info_resource/qualitysystem_complete_details.php?quality_name=Quality+First";
$searchurl[9] = "http://www.mindseyemidlands.co.uk/notts_quality/info_resource/qualitysystem_complete_details.php?quality_name=Balanced+Scorecard";
$searchurl[10] = "Big Picture";

$values = array(); 
foreach($scorearray as $key => $score) 
{ 
   // each element will be a parenthesized list of values: 
   $values[] = sprintf("('%s','%s',%d,'%s')", $username, $qualitysystem[$key], $score, $searchurl[$key]); 
} 
// merge values into sequence of comma-separated value lists: 
$valueList = implode(',', $values); 
// create the SQL: 
$sql = "INSERT INTO `qualityuserscores` (`username`, `qualitysystem`, `score`, `search_url`) VALUES $valueList"; 

$result = mysql_query($sql) or exit(mysql_error()); 

}
} 
header("Location: http://www.mindseyemidlands.co.uk/notts_quality/info_resource/selfassess_part2b_v1.php?username=$username");         

?>

and finally the query display page

include "include/session.php";
$username = $_SESSION['username']; 
<?php 
if (isset($_GET['username'])) { 
include ("connect.php");

$course = mysql_real_escape_string($_GET['username']); 
$sql = "SELECT * FROM qualityuserscores WHERE username = '$username' AND timeentered = NOW() ORDER BY score DESC"; 
$result = mysql_query($sql) or die(mysql_error()); 
if (mysql_num_rows($result) > 0) { 
while ($row = mysql_fetch_assoc($result)) { 

  echo '
<TABLE BORDER=1 CELLPADDING=2>
<TR> <TH COLSPAN=2 BGCOLOR="#99CCFF"></TH> </TR>

<TR> <TD WIDTH=400><a href="' . $row['search_url'] . '">' . $row['qualitysystem'] . '</a></TD> <TD WIDTH=250>' . $row['score'] . '</TD> </TR>

</TR>
</TABLE>';
}  

}
}
?>

i get no results when there is supposed to be a list of scores that can be recovered in another session. can anyone see what on earth im doing worn. Ive tried debugging but cannot see where my session is falling down

see for yourself

http://www.mindseyemidlands.co.uk/notts_quality/info_resource/selfassess_part2a_v1.php

Roger_Ramjet

NOW() give the time to the second and I doubt that this all happens in less than a second so your query returns nothing because the timeentered is not NOW but some time before that. Change your query and you will get some results to display.

(I take it that inclde/session.php has session_start() etc in it. If you need to debug a session then use print_r($_SESSION) to see what has been set)

Tezread

I have tried:

echo "<pre>";
print_r($_SESSION);
echo "</pre>";

on the resulting query display page but it outputs a details im noty sure hot to respond to

http://www.mindseyemidlands.co.uk/notts_quality/info_resource/selfassess_part2a_v1.php

[/code]

Roger_Ramjet

So put it into session.php right after session_start() so that you get the session array on every page then you can track the contents from page to page.

Have you changed that query? If you don't then it will not matter what is in the session array it still will never output anything.

Tezread

I have another obstacle come up when i try that:

Warning: Cannot modify header information - headers already sent by (output started at /disk1/home3/mindseye/public_html/notts_quality/info_resource/include/session.php:48)

here is session.php

note debugginh highlighted : ////debugging effort 160107////////

<?
/**
 * Session.php
 * 
 * The Session class is meant to simplify the task of keeping
 * track of logged in users and also guests.
 *
 * Written by: Jpmaster77 a.k.a. The Grandmaster of C++ (GMC)
 * Last Updated: August 19, 2004
 */
include("database.php");
include("mailer.php");
include("form.php");

class Session
{
   var $username;     //Username given on sign-up
   var $userid;       //Random value generated on current login
   var $userlevel;    //The level to which the user pertains
   var $time;         //Time user was last active (page loaded)
   var $logged_in;    //True if user is logged in, false otherwise
   var $userinfo = array();  //The array holding all user info
   var $url;          //The page url current being viewed
   var $referrer;     //Last recorded site page viewed
   /**
    * Note: referrer should really only be considered the actual
    * page referrer in process.php, any other time it may be
    * inaccurate.
    */

   /* Class constructor */
   function Session(){
      $this->time = time();
      $this->startSession();
   }

   /**
    * startSession - Performs all the actions necessary to 
    * initialize this session object. Tries to determine if the
    * the user has logged in already, and sets the variables 
    * accordingly. Also takes advantage of this page load to
    * update the active visitors tables.
    */
   function startSession(){
      global $database;  //The database connection
      session_start();   //Tell PHP to start the session
/////////////////debugging effort 160107//////////////////////////////////////////
print_r($_SESSION);
/////////////////////////////////////////////////////////////////////////////////////////

  /* Determine if user is logged in */
  $this->logged_in = $this->checkLogin();

  /**
   * Set guest value to users not logged in, and update
   * active guests table accordingly.
   */
  if(!$this->logged_in){
     $this->username = $_SESSION['username'] = GUEST_NAME;
     $this->userlevel = GUEST_LEVEL;
     $database->addActiveGuest($_SERVER['REMOTE_ADDR'], $this->time);
  }
  /* Update users last active timestamp */
  else{
     $database->addActiveUser($this->username, $this->time);
  }

  /* Remove inactive visitors from database */
  $database->removeInactiveUsers();
  $database->removeInactiveGuests();

  /* Set referrer page */
  if(isset($_SESSION['url'])){
     $this->referrer = $_SESSION['url'];
  }else{
     $this->referrer = "/";
  }

  /* Set current url */
  $this->url = $_SESSION['url'] = $_SERVER['PHP_SELF'];
   }

   /**
    * checkLogin - Checks if the user has already previously
    * logged in, and a session with the user has already been
    * established. Also checks to see if user has been remembered.
    * If so, the database is queried to make sure of the user's 
    * authenticity. Returns true if the user has logged in.
    */
   function checkLogin(){
      global $database;  //The database connection
      /* Check if user has been remembered */
      if(isset($_COOKIE['cookname']) && isset($_COOKIE['cookid'])){
         $this->username = $_SESSION['username'] = $_COOKIE['cookname'];
         $this->userid   = $_SESSION['userid']   = $_COOKIE['cookid'];
      }
///and so on

process.php

[code=php]
<?

include("include/session.php");

class Process
{
   /* Class constructor */
   function Process(){
      global $session;
      /* User submitted login form */
      if(isset($_POST['sublogin'])){
         $this->procLogin();
      }
      /* User submitted registration form */
      else if(isset($_POST['subjoin'])){
         $this->procRegister();
      }
      /* User submitted forgot password form */
      else if(isset($_POST['subforgot'])){
         $this->procForgotPass();
      }
      /* User submitted edit account form */
      else if(isset($_POST['subedit'])){
         $this->procEditAccount();
      }
      /**
       * The only other reason user should be directed here
       * is if he wants to logout, which means user is
       * logged in currently.
       */
      else if($session->logged_in){
         $this->procLogout();
      }
      /**
       * Should not get here, which means user is viewing this page
       * by mistake and therefore is redirected.
       */
       else{
          header("Location: main.php");
       }
   }

   /**
    * procLogin - Processes the user submitted login form, if errors
    * are found, the user is redirected to correct the information,
    * if not, the user is effectively logged in to the system.
    */
   function procLogin(){
      global $session, $form;
      /* Login attempt */
      $retval = $session->login($_POST['user'], $_POST['pass'], isset($_POST['remember']));

  /* Login successful */
  if($retval){
     header("Location: ".$session->referrer);
  }
  /* Login failed */
  else{
     $_SESSION['value_array'] = $_POST;
     $_SESSION['error_array'] = $form->getErrorArray();
     header("Location: ".$session->referrer);
  }
   }

   /**
    * procLogout - Simply attempts to log the user out of the system
    * given that there is no logout form to process.
    */
   function procLogout(){
      global $session;
      $retval = $session->logout();
      header("Location: main.php");
   }

   /**
    * procRegister - Processes the user submitted registration form,
    * if errors are found, the user is redirected to correct the
    * information, if not, the user is effectively registered with
    * the system and an email is (optionally) sent to the newly
    * created user.
    */
   function procRegister(){
      global $session, $form;
      /* Convert username to all lowercase (by option) */
      if(ALL_LOWERCASE){
         $_POST['user'] = strtolower($_POST['user']);
      }
      /* Registration attempt */
      $retval = $session->register($_POST['user'], $_POST['pass'], $_POST['email']);

  /* Registration Successful */
  if($retval == 0){
     $_SESSION['reguname'] = $_POST['user'];
     $_SESSION['regsuccess'] = true;
     header("Location: ".$session->referrer);
  }
  /* Error found with form */
  else if($retval == 1){
     $_SESSION['value_array'] = $_POST;
     $_SESSION['error_array'] = $form->getErrorArray();
     header("Location: ".$session->referrer);
  }
  /* Registration attempt failed */
  else if($retval == 2){
     $_SESSION['reguname'] = $_POST['user'];
     $_SESSION['regsuccess'] = false;
     header("Location: ".$session->referrer);
  }
   }

   /**
    * procForgotPass - Validates the given username then if
    * everything is fine, a new password is generated and
    * emailed to the address the user gave on sign up.
    */
   function procForgotPass(){
      global $database, $session, $mailer, $form;
      /* Username error checking */
      $subuser = $_POST['user'];
      $field = "user";  //Use field name for username
      if(!$subuser || strlen($subuser = trim($subuser)) == 0){
         $form->setError($field, "* Username not entered<br>");
      }
      else{
         /* Make sure username is in database */
         $subuser = stripslashes($subuser);
         if(strlen($subuser) < 5 || strlen($subuser) > 30 ||
            !eregi("^([0-9a-z])+$", $subuser) ||
            (!$database->usernameTaken($subuser))){
            $form->setError($field, "* Username does not exist<br>");
         }
      }

  /* Errors exist, have user correct them */
  if($form->num_errors > 0){
     $_SESSION['value_array'] = $_POST;
     $_SESSION['error_array'] = $form->getErrorArray();
  }
  /* Generate new password and email it to user */
  else{
     /* Generate new password */
     $newpass = $session->generateRandStr(8);

     /* Get email of user */
     $usrinf = $database->getUserInfo($subuser);
     $email  = $usrinf['email'];

     /* Attempt to send the email with new password */
     if($mailer->sendNewPass($subuser,$email,$newpass)){
        /* Email sent, update database */
        $database->updateUserField($subuser, "password", md5($newpass));
        $_SESSION['forgotpass'] = true;
     }
     /* Email failure, do not change password */
     else{
        $_SESSION['forgotpass'] = false;
     }
  }

  header("Location: ".$session->referrer);
   }

   /**
    * procEditAccount - Attempts to edit the user's account
    * information, including the password, which must be verified
    * before a change is made.
    */
   function procEditAccount(){
      global $session, $form;
      /* Account edit attempt */
      $retval = $session->editAccount($_POST['curpass'], $_POST['newpass'], $_POST['email']);

  /* Account edit successful */
  if($retval){
     $_SESSION['useredit'] = true;
     header("Location: ".$session->referrer);
  }
  /* Error found with form */
  else{
     $_SESSION['value_array'] = $_POST;
     $_SESSION['error_array'] = $form->getErrorArray();
     header("Location: ".$session->referrer);
  }
   }
};

/* Initialize process */
$process = new Process;

?>

MarkR

You MUST not output anything before calling session_start. Or header(). Or setcookie.

This includes whitespace that you might not have noticed. And byte order marks which your utf8 editor may have unwittingly added.

Mark

Tezread

I know this as it has happened to me before. Problem is I cannot see where there is a conflcit when calling header(). If it helps- I am using a Dreamweaver template to build my pages. Check out the top of all my pages:

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html><!-- InstanceBegin template="/Templates/qualityquest_template3.dwt" codeOutsideHTMLIsLocked="false" -->
<head>
<link rel="stylesheet" href="qqscreen.css" type="text/css" media="screen" />
<link rel="stylesheet" href="qqprint.css" type="text/css" media="print" />

<!-- InstanceBeginEditable name="doctitle" -->
<title>Quality Quest</title>
<!-- InstanceEndEditable -->
<script type="text/javascript" src="js/bsn.Ajax.js"></script>
<script type="text/javascript" src="js/bsn.DOM.js"></script>
<script type="text/javascript" src="js/bsn.AutoSuggest.js"></script>
<script src="js/dw_cookies.js" type="text/javascript"></script>
<script src="js/dw_sizerdx.js" type="text/javascript"></script>
<!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable -->
<script language="JavaScript" type="text/JavaScript">
<!--
function MM_reloadPage(init) {  //reloads the window if Nav4 resized
  if (init==true) with (navigator) {if ((appName=="Netscape")&&(parseInt(appVersion)==4)) {
    document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}
  else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();
}
MM_reloadPage(true);
//-->
</script>
</head>
<body>

<table width="935" border="0" cellpadding="0" cellspacing="0">
  <!--DWLayoutTable-->
  <tr>
    <td height="188" colspan="4" valign="top"><div id = "logo"><img src="logo_v2.gif" width="935" height="165" border="0" usemap="#Map">
      <div id="sizer" style="position:absolute; width:164; height:29px; z-index:4; left: 278px; top: 141px;"><a href="" onclick="dw_fontSizerDX.adjust(2); return false" title="Increase font-size"
    ><img src="images/plus.gif" width="20" height="20" alt="" border="0"></a>
        <a href="" onclick="dw_fontSizerDX.adjust(-2); return false" title="Decrease font-size"
    ><img src="images/minus.gif" width="20" height="20" alt="" border="0"></a>
  <a href="" onclick="dw_fontSizerDX.reset(); return false" title="Restore default font-sizes"
    ><img src="images/reset.gif" width="20" height="20" alt="" border="0"></a></div></div></td>
  </tr>


  <tr>
    <td width="219" rowspan="3" valign="top"><div id="navigation">
      <p><img src="buttonsall.gif" width="216" height="526" border="0" usemap="#MapMap">
        <map name="MapMap">
          <area shape="rect" coords="28,25,190,54" href="why_look.php" alt="Why look at quality?">
          <area shape="rect" coords="29,58,190,90" href="what_cover.php" alt="Why does quality cover?">
          <area shape="rect" coords="30,92,191,124" href="where_at.php" alt="Where are you now?">
          <area shape="rect" coords="31,128,189,158" href="what_you_want.php">
          <area shape="rect" coords="31,162,189,192" href="what_they_want.php" alt="Stakeholder needs">
          <area shape="rect" coords="29,196,191,227" href="whats_best.php">
          <area shape="rect" coords="32,230,189,258" href="what_approaches.php" alt="Choice of systems">
          <area shape="rect" coords="30,260,191,293" href="sources_of_help.php" alt="Sources of help">
          <area shape="rect" coords="30,296,190,327" href="faq_categories.php" alt="FAQ's">
          <area shape="rect" coords="29,332,190,363" href="jargon_choose_letter.php" alt="Jargon buster">
          <area shape="rect" coords="31,366,189,395" href="contact_us.php" alt="Contact us">
          <area shape="rect" coords="29,398,190,428" href="feedback.php" alt="Feedback">
          <area shape="rect" coords="28,432,187,459" href="download_categories.php" alt="Downloads">
          <area shape="rect" coords="30,467,191,496" href="http://qualityquest.blogspot.com" alt="News &amp; chat">
        </map> 
        <br>     

            <span class="style1"><a id="dw_link" href="h

etc

BUT I do call session.php before any output

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html><!-- InstanceBegin template="/Templates/qualityquest_template3.dwt" codeOutsideHTMLIsLocked="false" -->
<head>
<?php
include("include/session.php");
$username = $_SESSION['username'];
include("connect.php");
// query

MarkR

Output includes ANYTHING sent to the browser, including your doctype definition and html / head elements.

Mark

Tezread

i think the best way to debug in this case it just to have a blank HTML page with just PHP output as oppose to my template page that start off with tonnes of HTML output- during debugging anyway- once I isolate the problem I can revert back to my template page. Will get back to you in terms of feedback.

Tezread

Im in total understanding that I cannot output 'ANYTHING' to the browser - not even whitespace before I session_start() so with that in mind I removed every piece of HTML that was outputted and here are the results:

http://www.mindseyemidlands.co.uk/notts_quality/info_resource/selfassess_part2a_v2.php

You will notice that I still get a cannot modify headers error message in spite of:

form part 1

<?php
include("include/session.php");
$username = $_SESSION['username'];
include("connect.php");
$sql = "SELECT * FROM qualityuser WHERE username = '".$username."'"; 
$result = mysql_query($sql); 
// if we have rows, fetch them 
if(mysql_num_rows($result) > 0) { 
   $row = mysql_fetch_array($result); 
} else { 
   ?>
///form display etc

form processor

<?php 
include("include/session.php");
include("connect.php"); 
//array to hold form errors       

$form_error = array(); 
//validate your form data 
if(!isset($_POST['time'])){ 
$form_error[] = "No first name entered"; 
} 
if(!isset($_POST['demand'])){ 
$form_error[] = "No second name entered";       

}       

if(count($form_error) > 0){ 
//hold the error in session so you can display the error in your form page. 
$_SESSION['form_error'] = $form_error; 
//redirect to the form 
header("Location: http://www.mindseyemidlands.co.uk/notts_quality/info_resource/selfassess_part2a_v2.php");       

}  else { 
$username = $_SESSION['username'];

//remove the form_error session 
unset($_SESSION['form_error']); 

$answer = array(); 

////etc

and the form part 2 display

<?php
include "include/session.php";
$username = $_SESSION['username']; 
if (isset($_GET['username'])) { 
include ("connect.php"); 
$course = mysql_real_escape_string($_GET['username']); 
$sql = "SELECT * FROM qualityuserscores WHERE username = '$username'"; 
$result = mysql_query($sql) or die(mysql_error()); 
if (mysql_num_rows($result) > 0) { 
while ($row = mysql_fetch_assoc($result)) { 
echo ' 
<TABLE BORDER=1 CELLPADDING=2> 
<TR> <TH COLSPAN=2 BGCOLOR="#99CCFF"></TH> </TR> 
<TR> <TD WIDTH=400><a href="' . $row['search_url'] . '">' . $row['qualitysystem'] . '</a></TD> <TD WIDTH=250>' . $row['score'] . '</TD> </TR> 
</TR> 
</TABLE>'; 
}   

} 
} 
?>

this is what is in each page- - I have trimmed the session.php page too to remove white space instances and as it stands:


<?
include("database.php");
include("mailer.php");
include("form.php");
class Session
{
var $username;     

var $userid;       

var $userlevel;    

var $time;        

var $logged_in;   

var $userinfo = array(); 
var $url;         

var $referrer;   

function Session(){
$this->time = time();
$this->startSession();
}
function startSession(){
global $database;  //The database connection
session_start();   //Tell PHP to start the session
echo "<pre>";
print_r($_SESSION);
echo "</pre>";
$this->logged_in = $this->checkLogin();
if(!$this->logged_in){
$this->username = $_SESSION['username'] = GUEST_NAME;
$this->userlevel = GUEST_LEVEL;
$database->addActiveGuest($_SERVER['REMOTE_ADDR'], $this->time);
}
else  {
$database->addActiveUser($this->username, $this->time);
}

  /* Remove inactive visitors from database */
  $database->removeInactiveUsers();
  $database->removeInactiveGuests();

/////etc

what gives?