Session Variables

[MaxyOne]

Hi ther guys.

I have a little problem with a session variable.

Here's the code:

if($user == $row['username'] && MD5($pass) == $row['password']) {

        $_SESSION['level'] = $row['level'];

        header('Location:http://localhost/index.php');

                            } else { echo 'Wrong username or password.';}

 

After i get redirected by location, the $_SESSION['level'] is empty.

If i comment header and i add an echo for $_SESSION['level'] or $row['level'], the code works fine.

What is wrong with my code?

The session value doesent pass from this page to my index.php.

The session is started in index.php.

Thank you for your time.

[gristoi]

do you have session_start at the top of your index page

[MaxyOne]

Yes, i have.

[TeNDoLLA]

How about the code you posted, is it also in index.php after the session_star()t?

[PFMaBiSmAd]

In the code you posted above, is there anything else after that code on the page that could be clearing the session variables, because you need an exit; statement after a header() redirect to prevent the remainder of the code on the page from executing.

 

Are you developing and debugging your code on a system with error_reporting set to E_ALL and display_errors set to ON so that all the php detected errors will be reported and displayed? You could have an error with the session_start() statement on either page that would prevent the session variable(s) from working.

[MaxyOne]

index.php include login.php, where i have the html form, the above code is posted in login_process.php.

 

Ive added exit; after header....no changes.

[TeNDoLLA]

index.php include login.php, where i have the html form, the above code is posted in login_process.php.

So you set the $_SESSION -variable in login_process.php file? If thats the case I think you should have also session_start() in that file.

[MaxyOne]

I don't send any session variable to login_process.php

The $_SESSION['level'] is extracted from database in login_process.php acording to users level.

[Drummin]

From what I see, you are starting the session on the page login_process.php and so the session should start on this page before setting a session and not "started" on any other pages.

if($user == $row['username'] && MD5($pass) == $row['password']) {
session_start();
$_SESSION['level'] = $row['level'];
header('Location:http://localhost/index.php');
} else { echo 'Wrong username or password.';}

After the redirect to index.php you should be able to "pick up" that session and use the info, as in

$level=$_SESSION['level'];

[MaxyOne]

Ive added session_start(); on both pages, index.php, and login_processor.php

Now it works fine.

 

Thank you for your support guys.