About Session

mani_he · September 12th, 2004, 03:09 PM

Hi
I have a question about member area and session.
everything (session) are working and i can send session to the users compter.
my problem is when users logged in to my website, the sign of login change never changed to to logout
i'm useing php and mysql on windows.
I hope somebody can help me
my code is when user logged in is:
//This code is on top of the checking users on my template.
if ($HTTP_SESSION_VARS['valid_user'])
{
echo '<a href="logout">logout</a>';
}
else
{
echo '<a href="loggin">login</a>';
}
//thise code is after when i check user for valid pass and username
$HTTP_SESSION_VARS['valid_user'] = $username;

Thank You
Best Regards
mani_he

mani_he · September 13th, 2004, 11:01 AM

Help Please

Thank You

richard.york · September 13th, 2004, 03:18 PM

Any particular reason that you're using $HTTP_SESSION_VARS instead of the newer $_SESSION equivalent? If your PHP is too old to support $_SESSION, then you really should either upgrade or petition your admin to upgrade.

Having said that if PHP is new enough to support the $_SESSION superglobal, use that instead and your script should work. If PHP is too old and you cannot upgrade, use session_register to create the session variable and $HTTP_SESSION_VARS to check a value.

Code:

//This code is on top of the checking users on my template.
if ($HTTP_SESSION_VARS['valid_user'])
{
   echo '<a href="logout">logout</a>';
}
else
{
  echo '<a href="loggin">login</a>';
}
//this code is after when i check user for valid pass and username
session_register('username');

http://www.php.net/session_register.

If you have a newer version of PHP, all you have to do is use the $_SESSION superglobal. This is the current practice and the best way to go.

Code:

//This code is on top of the checking users on my template.
if ($_SESSION['valid_user'])
{
   echo '<a href="logout">logout</a>';
}
else
{
  echo '<a href="loggin">login</a>';
}
//thise code is after when i check user for valid pass and username
$_SESSION['valid_user'] = $username;

HTH!

Regards,
Rich

--
[http://www.smilingsouls.net]
[http://pear.php.net/Mail_IMAP] A PHP/C-Client/PEAR solution for webmail

mani_he · September 14th, 2004, 04:25 PM

Thanks Rich for answering
my php is new and it's 4.3 or something like that and i can use $_SESSION
my problem is the scrpit for log in and log out is on top of the script for checking the user for pass and username you know what my screen website that i have is like that (maybe that would help)
main menu log in help
home
contact us username:
                           password:
                                     login
I hope you can help me to chang that login (on the top)to log out
if ($_SESSION['valid_user'])
{
echo 'logout';
}
else echo 'login';

if ($HTTP_POST_VARS['username'] && $HTTP_POST_VARS['password'])
{
  $username = $HTTP_POST_VARS['username'];
  $pass = $HTTP_POST_VARS['password'];
  connect to mysql
  connect to database
  $_SESSION['valid_user'] = $username;
}

but you know what the login never changed to logout
But thanks for your help

thank you
best regards
mani_he

richard.york · September 15th, 2004, 05:36 PM

If you log in and the value of $_SESSION['valid_user'] is tested before it is created, then that won't work. That is to say if in your page, the code appears in this order:

Code:

if ($_SESSION['valid_user'])
{
 echo 'logout';
}
else echo 'login';

if ($HTTP_POST_VARS['username'] && $HTTP_POST_VARS['password'])
{
  $username = $HTTP_POST_VARS['username'];
  $pass = $HTTP_POST_VARS['password'];
  connect to mysql
  connect to database
  $_SESSION['valid_user'] = $username;
}

This needs to be the other way around.

Code:

if ($HTTP_POST_VARS['username'] && $HTTP_POST_VARS['password'])
{
  $username = $HTTP_POST_VARS['username'];
  $pass = $HTTP_POST_VARS['password'];
  connect to mysql
  connect to database
  $_SESSION['valid_user'] = $username;
}


if ($_SESSION['valid_user'])
{
 echo 'logout';
}
else echo 'login';

You really should use the short superglobal names for all variables. $_POST instead of $HTTP_POST_VARS, $_GET instead of $HTTP_GET_VARS.

HTH!

Regards,
Rich

--
[http://www.smilingsouls.net]
[http://pear.php.net/Mail_IMAP] A PHP/C-Client/PEAR solution for webmail

mani_he · September 16th, 2004, 10:36 AM

Thanks Rich
It's work the way that you told me, thanks
and I will use short suerglobal
Thank You
Best Regards
mani_he

mani_he · September 16th, 2004, 11:37 PM

Hi Rich
I got another problem
on the page of login, the login sign changed to logout when user put the valid name and pass but when they go to the other page of my website the logout changed to login and that means $_SESSION could not read the session on the other page
i used this script for all pages
if ($_SESSION['valid_user'])
{
echo 'logout';
}
else echo 'login';

I hope you can help me
thank you

mani_he · September 18th, 2004, 03:47 PM

Hi rich
about my last post that means that session does not work for all pages, it only changes login sign to logout in login.php
but when the user goes to home.php the sign never changed.

Hope for help
Thank You
Best Regards