SESSION
Posted: Mon Apr 14, 2003 11:38 pm
hi, I am currently having problem with my signin page. Whenever I try to sign in, it will bring me back to the main signin page again. I suspect the session is not created and i cannot find the error. Can anyone PLEASE HELP ME? ITS URGENT! THANKS
this is the session.php page
<?php
session_start();
global $verified_user;
//echo "$verified_user";
if ($verified_user=="") {
header("Location: http://www.ebizhorizon.com/bitfyp2003/g ... signin.php");
exit;
}
?>
this is the create session.php page.
<?php
session_start();
include "../connection/connection.php";
$login=$HTTP_POST_VARS['login'];
$pass=$HTTP_POST_VARS['password'];
$loginstr="$login"."$pass";
$loginstrlen=strlen($loginstr);
if ($loginstrlen<2){
$error = "Wrong%20Password%20or%20User%20does%20not%20exits.";
header("Location: signin.php?message=$error");
}
if($login!="" && $pass!=""){
$query = "SELECT LoginID, UserLevel, Name FROM Login WHERE LoginID = \"$login\" AND Password = \"$pass\"";
$results = mysql_query($query, $connection);
if(@mysql_num_rows($results) != 0) {
$verified_user = $login;
//$verified_userpw = $pass;
global $verified_user;
session_register("verified_user");
//session_register("verified_userpw");
setcookie("time",$PHPSESSID,time()+60,"/",".mydomain.com",0);
header("Location: ../secure/project.php");
}else {
$error = "Wrong%20Password%20or%20User%20does%20not%20exits.";
header("Location: signin.php?message=$error");
}
}
mysql_close($connection);
?>
this is the session.php page
<?php
session_start();
global $verified_user;
//echo "$verified_user";
if ($verified_user=="") {
header("Location: http://www.ebizhorizon.com/bitfyp2003/g ... signin.php");
exit;
}
?>
this is the create session.php page.
<?php
session_start();
include "../connection/connection.php";
$login=$HTTP_POST_VARS['login'];
$pass=$HTTP_POST_VARS['password'];
$loginstr="$login"."$pass";
$loginstrlen=strlen($loginstr);
if ($loginstrlen<2){
$error = "Wrong%20Password%20or%20User%20does%20not%20exits.";
header("Location: signin.php?message=$error");
}
if($login!="" && $pass!=""){
$query = "SELECT LoginID, UserLevel, Name FROM Login WHERE LoginID = \"$login\" AND Password = \"$pass\"";
$results = mysql_query($query, $connection);
if(@mysql_num_rows($results) != 0) {
$verified_user = $login;
//$verified_userpw = $pass;
global $verified_user;
session_register("verified_user");
//session_register("verified_userpw");
setcookie("time",$PHPSESSID,time()+60,"/",".mydomain.com",0);
header("Location: ../secure/project.php");
}else {
$error = "Wrong%20Password%20or%20User%20does%20not%20exits.";
header("Location: signin.php?message=$error");
}
}
mysql_close($connection);
?>