I did as what you said. But the problem now is that I am not able to get the values in the next page.
index.php -------------- session_name("mysessionname"); session_start(); ---------------> auth.php ----------------- $failed="yes"; session_register('failed'); header ("Location: /main.php"); -----------------> main.php ----------------- echo $failed;// this is null here -----------------> What might be the problem ? Thanks in advance, Murugesan. > Murugesan, > > I'll assume your redirecting the user to main.php because (s)he has passed > the authentication routine... in that case just store the username and > password as a session variable that way you wont need to pass the username > and password via the url. > > auth.php, [just before the call to header()]: > <? > session_register('empid'); > session_register('pwd'); > header ("Location: /main.php"); > ?> > > then in main.php you need to start your session to access the session > variables > <? > session_name("yoursessionname"); > session_start(); > // you now have access to $empid and $pwd > echo "<br>your employee id = $empid and the password you typed was $pwd"; > ?> > > > > -----Original Message----- > > From: murugesan [mailto:[EMAIL PROTECTED] > > Sent: Monday, 25 August 2003 15:18 > > To: Cody Phanekham; [EMAIL PROTECTED] > > Subject: Re: [PHP] How to open random Flash page with hyperlink? > > > > > > Thanks for the information. > > In the code you provided > > > > ----if ((!$passwd) || (!$username)) // user hasnt logged in > > { > > ..... > > > > Actually I have implemented this in a separate page. > > > > That is upon sign up of the <form> in the index page > > I call a new page auth.php > > In that file > > I have done this authentication and called the function > > header ("Location: /main.php?empid=$empid&pwd=$pwd"); > > > > Actually when passing this URL the password appears in the > > address bar. > > How to over come this? It will be very much usefull if I get > > the answer. > > > > Thanks in advance > > -Murugesan > > -------------------------------------------------------------- > > -------------- > > -------------------------------------------------------------- > > -------------- > > - > > Ok lets say you want every user to login before they can > > access other parts > > of your site. > > > > index.php: > > <? > > session_name("mysessionname"); > > session_start(); > > session_register("s_authed"); > > $s_authed = 0; // initialize session flag > > > > if ((!$passwd) || (!$username)) // user hasnt logged in > > { > > // display login form > > ... > > } > > else > > { > > // retrieve database username and password here > > ... > > // check if they match > > if (($db_passwd == $passwd) && ($db_username == $username)) > > { > > $s_authed = 1; // user has been authorised > > // redirect to real page > > echo " > > <script> > > window.location='main.php' > > </script>"; > > } > > } > > ?> > > > > main.php: > > <? > > session_name("mysessionname"); > > session_start(); > > if (!$s_authed) // check access > > { > > // user hasnt been authorised, therefore redirect to login page > > echo " > > <script> > > window.location='index.php' > > </script>"; > > } > > else > > { > > // display page > > ... > > } > > ?> > > > > > > if a user tries to access main.php directly without logging > > in they will be > > redirected to index.php > > > > checkout http://www.php.net/manual/en/ref.session.php for > > more information > > > > > > > > > > > > > Thanks for the message. > > > Can you please tell me how to do session authentication?. > > > > > > -murugesan -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php