user login not working in my host server

channark

hello
i create a test project in my local host when i finish it i upload it to my host, but the user login and logout not work i use cookies for that, i even dellete all and try to test a simple code width header location to login.php if cookie 'user' & 'pass' doesn't exist but its not working

//verifi if cookie user is not isset go to login

if (!isset($_COOKIE['user']) && !isset($_COOKIE['pass']))
{
	header("location:/dns/com/olympe-network/webmastring/login.php");
}

bradgrafelman

Can you show us the code you use to set the cookie for a successful login?

channark

note: that this error made the user can access to all pages without login and the cookie doesn't exist even 'i try echo cookie user'

here is the code of login form

if (isset($_POST['submit']))
{
	require_once("/dns/com/olympe-network/webmastring/includes/connect.inc.php");
	mysql_select_db("84452_testweb");
	if (!empty($_POST['user']) || !empty($_POST['pass']))
	{
		$_POST['user'] = mysql_real_escape_string($_POST['user']);
		$_POST['pass'] = mysql_real_escape_string($_POST['pass']);

	$select = "SELECT * FROM user WHERE username = '".$_POST['user']."' ";
	$requet = mysql_query($select);
	$exist = mysql_num_rows($requet);
	$array = mysql_fetch_array($requet);

	if ($exist>0 && $_POST['pass']=$array['password'])
	{
		$hour = time()+(60*60);
		setcookie("user" , $array['username'] ,$hour);
		setcookie("pass" , $array['password'] , $hour);

		header("location:".$path."'admin.php");
	}
	else
	{
		$erreur="Les information entrer ne son pas valide ";
	}
}
else
{
	$erreur="Veuillez taper votre username et votre mot de pass";
}
}

bradgrafelman

For one, this:

if ($exist>0 && $_POST['pass']=$array['password'])

if() statement will always be true no matter what password you enter because you're assigning a value to $_POST['pass'] rather than comparing.

Second, if you don't specify the 'path' argument for [man]setcookie/man, then it's going to assume the path to be wherever the currrent file is located. So if you set a cookie at http://mysite.com/path/to/foo.php, that cookie will not be available to http://mysite.com/bar.php. If you want the cookie to be available no matter what the path is, you have to specify the path as '/' when you create the cookie.

channark

i fixed the problem of comparing pass, but still not working i think the problem is on the header func because its not working in other applications in my site

bradgrafelman

Show us what your code looks like now.