Jump to content

[SOLVED] Help with login system

justinede

By justinede
in PHP Coding Help

 Share

Recommended Posts

justinede Member

justinede

Posted
Posted

Hello All,

 

I used a really simple login system from: http://www.phpeasystep.com/phptu/6.html

 

I am having issues with the login_success page where it wont echo the person's username. I have this at the top making sure the user is logged in before they can see this page.

 

<?
session_start();
if(!session_is_registered(myusername)){
header("location:http://justinledelson.com");
}
?>

 

I am putting 

<?php echo($myusername);?>

where i want it to say Welcome: user

Also, is it possible to say Welcome: user in the title?

Link to comment
https://forums.phpfreaks.com/topic/163084-solved-help-with-login-system/
Share on other sites
PFMaBiSmAd Advanced Member

PFMaBiSmAd

Posted
Posted

[] are used in arrays.

 

<?php
session_start();
if(isset($_SESSION['myusername'])){
header("location:http://justinledelson.com");
exit; // every header redirect needs an exit after it unless you are absolutely certain you want the rest of the code on the page to be executed while the browser performs the redirect.
}
?>

 

Also in the above code - Only use full php opening tags to make sure your code will be parsed on any server; use isset() to test a variable that might or might not exist to avoid generating an error; associative array index names are strings and must be quoted to avoid generating an error; and every header redirect needs an exit/die statement after it to prevent the remainder of the code on the page from being executed.

PFMaBiSmAd Advanced Member

PFMaBiSmAd

Posted
Posted

Your original code was testing if the session variable was NOT registered. Your revised code dropped the NOT condition, which I duplicated in the post above.

 

My last post, with the NOT condition added -

 

<?php
session_start();
if(!isset($_SESSION['myusername'])){
header("location:http://justinledelson.com");
exit; // every header redirect needs an exit after it unless you are absolutely certain you want the rest of the code on the page to be executed while the browser performs the redirect.
}
?>

justinede Member

justinede

Posted
  • Author
Posted

after using that, it just keeps redirecting me. i cant get in to see my page.

would i need to modify the part in my check login?

 

<?php
ob_start();
$host=""; // Host name
$username=""; // Mysql username
$password=""; // Mysql password
$db_name=""; // Database name
$tbl_name=""; // Table name

// Connect to server and select databse.
mysql_connect("$host", "$username", "$password")or die("cannot connect");
mysql_select_db("$db_name")or die("cannot select DB");

// Define $myusername and $mypassword
$myusername=$_POST['myusername'];
$mypassword=$_POST['mypassword'];

// To protect MySQL injection (more detail about MySQL injection)
$myusername = stripslashes($myusername);
$mypassword = stripslashes($mypassword);
$myusername = mysql_real_escape_string($myusername);
$mypassword = mysql_real_escape_string($mypassword);

$sql="SELECT * FROM $tbl_name WHERE username='$myusername' and password='$mypassword'";
$result=mysql_query($sql);

// Mysql_num_row is counting table row
$count=mysql_num_rows($result);
// If result matched $myusername and $mypassword, table row must be 1 row

if($count==1){
// Register $myusername, $mypassword and redirect to file "login_success.php"
session_register("myusername");
session_register("mypassword");
header("location:users/$myusername");
}
else {
echo "Wrong Username or Password";
}

ob_end_flush();
?>

justinede Member

justinede

Posted
  • Author
Posted

for some reason, it still dosnt want to work. Keeps redirecting me.

I will paste what I have.

 

<?php
ob_start();
$host=""; // Host name
$username=""; // Mysql username
$password=""; // Mysql password
$db_name=""; // Database name
$tbl_name="members"; // Table name

// Connect to server and select databse.
mysql_connect("$host", "$username", "$password")or die("cannot connect");
mysql_select_db("$db_name")or die("cannot select DB");

// Define $myusername and $mypassword
$myusername=$_POST['myusername'];
$mypassword=$_POST['mypassword'];

// To protect MySQL injection (more detail about MySQL injection)
$myusername = stripslashes($myusername);
$mypassword = stripslashes($mypassword);
$myusername = mysql_real_escape_string($myusername);
$mypassword = mysql_real_escape_string($mypassword);

$sql="SELECT * FROM $tbl_name WHERE username='$myusername' and password='$mypassword'";
$result=mysql_query($sql);

// Mysql_num_row is counting table row
$count=mysql_num_rows($result);
// If result matched $myusername and $mypassword, table row must be 1 row

if($count==1){
// Register $myusername, $mypassword and redirect to file "login_success.php"
$_SESSION['myusername'] = $myusername;
$_SESSION['mypassword'] = $mypassword;
header("location:users/$myusername");
}
else {
echo "Wrong Username or Password";
}

ob_end_flush();
?>

 

and

 

<?php
session_start();
if(!isset($_SESSION['myusername'])){
header("location:http://justinledelson.com");
exit; // every header redirect needs an exit after it unless you are absolutely certain you want the rest of the code on the page to be executed while the browser performs the redirect.
}
?>

justinede Member

justinede

Posted
  • Author
Posted

oh yes. now it works.. possibly could you help me with another thing?

 

so i am a user (Justin) and i log in and after everything is verified, I get sent to a page named Justin.php.

on  this page is this:

 

<?php
session_start();
if(!isset($_SESSION['myusername'])){
header("location:http://justinledelson.com");
exit; // every header redirect needs an exit after it unless you are absolutely certain you want the rest of the code on the page to be executed while the browser performs the redirect.
}
?>

 

this makes sure that no one who hasnt logged in can see that page. Right now, i have two accounts, if i log into one i can see the other users page and vise versa. I want to make it so no one but Justin can see that page. so if $myusername isnt Justin, i would get redirected back to index just like the people who hadnt logged in.

chmpdog Regular Member

chmpdog

Posted
Posted

here try this:

<?php
session_start();
if($_SESSION['myusername'] == "justin"){
header("location:http://justinledelson.com");
} else {
exit; // every header redirect needs an exit after it unless you are absolutely certain you want the rest of the code on the page to be executed while the browser performs the redirect.
}
?>

 

 

justinede Member

justinede

Posted
  • Author
Posted

nevermind I fixed it.. here is what i am using.

 

<?php
session_start();
if($_SESSION['myusername'] !== "Justin"){
header("location:http://justinledelson.com");
exit; // every header redirect needs an exit after it unless you are absolutely certain you want the rest of the code on the page to be executed while the browser performs the redirect.
} else {

}
?>

 

what this is saying is that if I am Justin, I can see this page. If am not logged in or I am a user not named justin it will redirect me to index.

pkedpker Member

pkedpker

Posted
Posted

what do u want it to do?

 

you could do

 

<?php
session_start();
if($_SESSION['myusername'] !== "Justin"){
header("location:http://justinledelson.com");
} else {
header("location:http://indexSiteGoesHere.com");
}
?>

 

you don't need the exit anywhere.. the php script is small it exits there anyways

PFMaBiSmAd Advanced Member

PFMaBiSmAd

Posted
Posted

Since the posted code would be put at the start of any page you want to restrict access to, you would not redirect when the if() test was false, because the remainder of the code on that page is the protected content that you only want to display if the visitor is authorized to receive that content. You would also put an exit/die after the redirect that is in the if() conditional to prevent the remainder of the code on the page from being executed while the browser is performing the redirect.

This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.