Sessions

natmaster · June 13th, 2003, 11:14 PM

i'm a newbie, and i can't get my sessions to work!
i want them for a login script.

here is what i have processing the info after login:
    session_start();
    session_register("username","level");
    $_SESSION['username']=$username;
    $_SESSION['level']=$level;
then i tried accessing this information from another page using
$_SESSION['username']
.......but it wasn't there

----------------------------
Oh happyland!

Moharo · June 14th, 2003, 03:24 AM

try this:

session_start();
session_register("level");
session_register("username");
$_SESSION["level"] = "levelvariable";
$_SESSION["username"] = "usernamevariable";

this should work... (access variable thru $_SESSION array)

the genuine genius

natmaster · June 14th, 2003, 11:52 AM

well i tried what you said and used several variations because i wasn't sure for some of it, but it didn't work.

i tried:
$_SESSION["level"] = "level";
$_SESSION["username"] = "username";
and
$_SESSION["level"] = "$level";
$_SESSION["username"] = "$username";
and
$_SESSION["level"] = $level;
$_SESSION["username"] = $username;

and then tried accessing the session variables using $_SESSION["username"] and $_SESSION['username']
but it didn't work
i didn't get any errors, it just acted like the sessions didn't exist, maybe i didn't properly initialize them

but i also wanted to know how to delete the session when i wanted. i have tried these so far:
$_SESSION['username']=NULL;
$_SESSION['level']=NULL;
and
session_unregister("username");
session_unregister("level");
and
session_destroy();
(when i used session_destroy it said: "Warning: Trying to destroy uninitialized")

----------------------------
Oh happyland!

natmaster · June 14th, 2003, 12:33 PM

well nevermind, i figured it out, i needed session_start() as the first line of every website i wanted to access the session variables. it works perfectly now :) thanks for all your help!

----------------------------
Oh happyland!

nikolai · June 19th, 2003, 02:20 PM

Follow up -- do _NOT_ use session_register() or session_unregister(). Don't pollute your global scope with session variables. Doing this is not only sloppy, it also introduces some security risks.

Stick with $_SESSION only.

<?php
session_start(); // required for ANY page using sessions.

$_SESSION['username'] = "nikolai";

unset($_SESSION['username']); // replaces session_unregister()
?>

Take care,

Nik
http://www.bigaction.org/

natmaster · June 19th, 2003, 03:52 PM

what does session_destroy(); do?

----------------------------
Oh happyland!

knight · March 5th, 2004, 05:24 AM

session_detroy() destroys all of the data associated with the current session. It does not unset any of the global variables associated with the session, or unset the session cookie :)

nikolai · March 12th, 2004, 04:08 PM

http://www.php.net/session_destroy

The best place to look for a description of a function (especially when you KNOW the function name) is the documentation.

Take care,

Nik
http://www.bigaction.org/