[RESOLVED] if-else problem

awais

if ($db_found) {

	$uname = quote_smart($uname, $db_handle);
	$pword = quote_smart($pword, $db_handle);

	$SQL = "SELECT * FROM login WHERE username = $uname AND password = $pword";
	$result = mysql_query($SQL);
	$num_rows = mysql_num_rows($result);


	if ($result) {
		if ($num_rows > 0) {
			if ($uname =='abc')
			{
			session_start();
			$_SESSION['login'] = "1";
			header ("Location: welcomeabc.php");
			}
			else if($uname =='xyz')
			{
			session_start();
			$_SESSION['login'] = "1";
			header ("Location: welcomexyz.php");

			}
			else
			{session_start();
			$_SESSION['login'] = "1";
			header ("Location: login.php");
				}
		}
		else {
			//$errorMessage = "Invalid Login";
			//session_start();
			//$_SESSION['login'] = '';

			session_start();
			$_SESSION['login'] = "";
			header ("Location: login.php");
		}	
	}
	else {
		$errorMessage = "Error logging on";
	}

mysql_close($db_handle);

}

else {
	$errorMessage = "Error logging on";
}

awais

when i enter the user 'xyz' then it is redirecting me to the login page.....

traq

the following variables don't appear to be defined in the code you showed us:

$uname (not defined before it's used, I mean)
$pword (not defined before it's used, I mean)
$db_found (although I assume this one is defined somewhere, since you say part of your code is executing)
$db_handle

Beyond that, please be more specific about your problem. What have you tried? Do you have error reporting turned on? Have you checked your query and/or the actual database to be sure they hold the values you think they do? (Also, I have absolutely no idea what quote_smart() does.)

spufi

echo out $num_rows and $uname just before their related if statements to see what values are being stored.

awais

this is a part of my execution....
i got no errors .....but the problem is that when i enter user name xyz the i was redirected to the abc.php.....
so this is the problem.....

dalecosp

Does it make any difference if you call "exit()" after each [man]header/man call?

Oh, nevermind on that, probably not. But you could try it.

You need to put in some debugging echo statements, like spufi suggested. You also might try a tracking variable in the query string on those header calls.

if ($db_found) {

	$uname = quote_smart($uname, $db_handle);
	$pword = quote_smart($pword, $db_handle);

	$SQL = "SELECT * FROM login WHERE username = $uname AND password = $pword";
	$result = mysql_query($SQL);
	$num_rows = mysql_num_rows($result);


	if ($result) {
		if ($num_rows > 0) {
			if ($uname =='abc')
			{
			session_start();
			$_SESSION['login'] = "1";
			header ("Location: welcomeabc.php?uname=$uname");
			}
			else if($uname =='xyz')
			{
			session_start();
			$_SESSION['login'] = "1";
			header ("Location: welcomexyz.php?uname=$uname");

			}
			else
			{session_start();
			$_SESSION['login'] = "1";
			header ("Location: login.php");
				}
		}
		else {
			//$errorMessage = "Invalid Login";
			//session_start();
			//$_SESSION['login'] = '';

			session_start();
			$_SESSION['login'] = "";
			header ("Location: login.php");
		}	
	}
	else {
		$errorMessage = "Error logging on";
	}

mysql_close($db_handle);

}

else {
	$errorMessage = "Error logging on";
}

Then you can have "welcomeabc.php" and its sister tell you just what that variable is. Actually, you could probably just read it in the QS. 😉

spufi

Unrelated but you could move this code to after the if numrows statement since you know it will be used for any of the options that come within the following if/else statements. The only thing you are really checking for is what header to send.

session_start();
$_SESSION['login'] = "1";

It makes the if/else look like this.

session_start();
$_SESSION['login'] = "1";
if ($uname =='abc')                

    header ("Location: welcomeabc.php?uname=$uname");
else if($uname =='xyz')
    header ("Location: welcomexyz.php?uname=$uname");
else
    header ("Location: login.php");

Again, put in echo statements to track what values are being put where to see why the values are what they are.