[RESOLVED] [PHP] sesion help

brroot

Hello, I made a nice little php page for my friends but when they are not logged in they get this message at the top
Notice: Undefined index: username in C:\xampp\htdocs\beta\index.php on line 80
Log in | Register
but when they log-in it says Logged in as <There Name> | Logout
i just need help with the Notice: Undefined index: username in C:\xampp\htdocs\beta\index.php on line 80

this is the code that is on line 80 to 84

<?
if($SESSION['username'])
print "Logged in as ".$SESSION['username']." | <a href='index.php?p=logout' class='loginpanel'>Logout</a>";
else
print '<a href=index.php?p= class=loginpanel>Log in</a> | <a
href=index.php?p=register class=loginpanel>Register</a>';
?>

Can someone help me?😕

Joshua_F

Mind posting your login script?

brroot

Line 80 starts at the if($_SESSION['username']) not the <?

brroot

what exactly do you mean by posting my script

Joshua_F

First, I see you used <? and not <?php. The difference is the PHP compatibility, <?php has more features then <? does. That could be the problem.

brroot

nope that didn't fix the problem

Joshua_F

Okay, now. Post your full page Here, and let me check it out.

brroot

i modded the code a bit but click here just so u know now line 80 is line 55 for this edit

Joshua_F

<?php
ob_start();
session_start();
$action = $_GET['p'];
$actions_array = array('','game','register','error','logon','banned','logout');
?>

Use that as your top code, to make it correct.

Also, just remember Undefined index means that the variable isn't found. So when you're registering the session, you must not of typed it correctly.

brroot

sorry but your way didn't work but i got it to work by doing this,
change if($SESSION['username']) to if($SESSION) and now it works perfectly with no annoying notices

Joshua_F

Ahh, so does it print out whatever the username in the session is?

Also, I believe you should try this.

if(isset($_SESSION['username'])){

I also redid your code a little, and formatted it correctly.

<?php
ob_start();
session_start();
$action = $_GET['p'];
$actions_array = array('','game','register','error','logon','banned','logout');
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=us-ascii">
<link rel="stylesheet" type="text/css" href="files1/style2.css">
<link rel="shortcut icon" href="http://siteurl/favicon.png">
<title>Title</title>
</head>
<body>
	<div id="centerpage">
		<div id="toppanel" style="z-index: 3;">
			<div class="top_center" style="height: 48px; width: 100%;">
				<table style="height: 48px; width: 100%;">
					<tbody>
						<tr>
							<td style="width: 244px; height: 48px; padding: 0px; top: 0px;">
								<a href="http://siteurl/" border="0"><img
									src="files1/logo_no_pps.png" alt="" width="243" border="0"
									height="78"> </a>
								</div></td>
							<td>
								<div id="links">
									<a style="background: none repeat scroll 0% 0% transparent;"
										href="index.php" id="menu_" class="menuItem">Home</a>&nbsp;
									&nbsp; <a
										style="background: none repeat scroll 0% 0% transparent;"
										href="http://siteurl/forum/index.php" id="menu_about"
										class="menuItem">Forum</a>&nbsp; &nbsp;
								</div></td>

						<td>

							<div id="loginpanel">
							<?php
							if(isset($_SESSION['username'])){
								print "Logged in as ".$_SESSION['username']." | <a href='index.php?p=logout' class='loginpanel'>Logout</a>";
							} else {
								print '<a href=index.php?p= class=loginpanel>Log in</a> | <a href=index.php?p=register class=loginpanel>Register</a>';
							}
							?>
							</div></td>
					</tr>
				</tbody>
			</table>
		</div>
	</div>

	<div id="toppanel_bg" style="z-index: 1;"></div>
	<div id="page" style="z-index: 4;">
		<div id="content">
		<?php
		switch($action){
			case 'game':
				include_once './game.php';
				break;
			case 'register':
				include_once './register.php';
				break;
			case 'error':
				include_once './error.php';
				break;
			case 'logon':
				include_once './logon.php';
				break;
			case 'banned':
				include_once './banned.php';
				break;
			case 'logout':
				include_once './logout.php';
				break;
			default:
				include_once './login.php';
				break;
		}
		?>
		</div>
		<br>
	</div>
	<!-- page end-->
</div>
<!-- pagecenter end-->
</body>
</html>

brroot

thanks for trying to help.

bradgrafelman

Yikes... lot of disinformation in this thread. Here are some comments to set everyone straight:

Joshua F;10983230 wrote:
First, I see you used <? and not <?php. The difference is the PHP compatibility, <?php has more features then <? does. That could be the problem.

Incorrect; neither of the tags has any more "features" than the other since they both have at most one feature: they get the PHP interpreter into PHP mode.

The only difference is that '<?' is often disabled for compatibility with XML, so to write portable code you should always use the full '<?php' tag and never use the '<?' or '<?=' short-open tags.

Joshua F;10983235 wrote:
<?php
ob_start();
session_start();
$action = $_GET['p'];
$actions_array = array('','game','register','error','logon','banned','logout');
?>
Use that as your top code, to make it correct.

Incorrect, IMHO. Why use [man]ob_start/man? It's unnecessary as it adds extra load to the server for no reason. Get rid of it. (Hint: No, it is not a solution to the 'Headers already sent' errors - it's a cheap workaround. 😉)

Joshua F;10983235 wrote:
Also, just remember Undefined index means that the variable isn't found. So when you're registering the session, you must not of typed it correctly.

Not really; it just means that there is no element in the array defined by the key/index given. However, with external data, this is to be expected and accounted for...

brroot;10983237 wrote:
change if($SESSION['username']) to if($SESSION) and now it works perfectly with no annoying notices

Not really - you just swept things under the rug and pretended as if they were fixed. The "annoying notices" are gone because you aren't checking the same condition that you were before.

Instead, the answer is to use [man]empty/man or [man]isset/man as is suggested below.

Joshua F;10983238 wrote:
Also, I believe you should try this.
if(isset($_SESSION['username'])){

Ah, finally - we're at the crux of the issue at hand.

External data should never be referenced without first verifying that it exists (e.g. using [man]isset/man or [man]empty/man). For example, this:

$action = $_GET['p'];

is poorly written IMHO and should instead look something more like this:

$action = isset($_GET['p']) ? $_GET['p'] : NULL;

(which uses the ternary operator to set a default value if the external data doesn't exist).

EDIT: Also, don't forget to mark this thread resolved (if it is) using the link on the Thread Tools menu above.