I have a login, connects to dB, verifys user and redirects.
Code: Select all
<?php
session_start();
//connect to login dB
include "dBALVConnect.php";
//set vars from posts
$postUserLogin = $_POST['user'];
$postUserPass = $_POST['pass'];
//look at what?
$lookAtWhat = "SELECT * FROM userAccounts WHERE user_login ='$postUserLogin' AND user_pass RLIKE BINARY '$postUserPass'";
//look at that!
$looking = mysql_query($lookAtWhat) or die(mysql_error());
//extract
while ($row = mysql_fetch_array($looking)) {
extract($row);
$dBUserLogin = $user_login;
$dBUserPassword = $user_pass;
$dBUserAuthLevel = $user_authLevel;
$dBUserRD = $user_redirect;
}
//set session
if ($postUserLogin == $dBUserLogin and $postUserPass == $dBUserPassword){
$_SESSION['userLogin'] = $dBUserLogin;
$_SESSION['userAuthLevel'] = $dBUserAuthLevel;
} else {
//do nothing
}
?>Once redirected (code not shown) the page again double checks their auth level. If approved the page is displayed, if not it resets the session values and stops the processing. Shown here :
page2.php
Code: Select all
//session(s)
session_start();
//check auth
if ($_SESSION['userAuthLevel'] == $authLAdmin ){
//do nothing
} else {
//reset session vars and exit
echo "You should'nt be here!";
$_SESSION['userLogin'] = "";
$_SESSION['userAuthLevel'] = 0;
exit();
}
My issue is that it works 100% in I.E. but when using Safari or FireFoxx I keep getting the "You should'nt be here!" echo.
Obviously that is because the userAuthLevel !== $authLAdmin.
But it does in I.E........*stabs brain with q-tip*