PHP programming forum. Ask questions or help people concerning PHP code. Don't understand a function? Need help implementing a class? Don't understand a class? Here is where to ask. Remember to do your homework!
and [syntax="..."] tags where appropriate when posting code. Your post has been edited to reflect how we'd like it posted. Please read: [url=http://forums.devnetwork.net/viewtopic.php?t=21171]Posting Code in the Forums[/url] to learn how to do it too.[/color]
here is the code for my career site siteadmin login
and [syntax="..."] tags where appropriate when posting code. Your post has been edited to reflect how we'd like it posted. Please read: [url=http://forums.devnetwork.net/viewtopic.php?t=21171]Posting Code in the Forums[/url] to learn how to do it too.[/color]
Since you didn't really ask a question I am not really going to give you an answer. But I would suspect it might have something to do with register_globals.
Sorry about that my question is how do i get the log in to work because whenever i go to the site admin and put in the password and username it just kind of refreshes the page it doesnt go into the administrator control panel.....HELP!!!!
update your code, allow cookies in your browser, check, as Everah has suggested, whether your code depends on register_globals being on (most hosts disable that by default). If you code depends on it, start looking for an update - it's most likely a highly insecure web-application you're running.
register_globals, in a nutshell, is essentially the superglobal arrays ($_GET, $_POST, $_COOKIE, etc) extracted into their corresponding key/value pairs without the need to call the superglobal itself.
It is like an assumption that a form field named 'user_password' will automatically be in the variable $user_password, when in reality it is not, it is in the superglobal $_POST['user_password'].
Just looking at the code you've posted so far I really think you should take a step back and rethink your approach. The code in the first post is horrendously insecure. There are no considerations for security in it at all. If you can get it working by modifying your PHP configuration (and likely making it even less secure) your site would be pretty much an open door to a malicious hacker.
What makes this worse is that you mention it's a "career site". I assume that means it's a site where people advertise jobs, post CVs, etc. Monster.com is just such a site and was hacked not too long ago, they lost thousands of CVs and resumes to a hacker. I believe there are several people suing them over it at the moment. You don't want that to happen to you.