Help From David Powers Please

Report · Jan 11, 2008

David,

I am using the redirect to a personal page from page 515 of The Essential Guide to DWCS3 in the following form: $_SESSION[MM_Username].php in the "if login succeeds" field.

This does not work for me the first time the login page loads. I get a 404 error. However, it I hit the back button and try it again it works. I have a guess that the Session variable is being set before it pulls the Username from the DB, but I don't know enough to be sure. I tried moving the variable assignment lines around and screwed it up royally.

This is being run on a live server. Listed below is my code that works if I hit the back button. Any help would be greatly appreciated.

Thanks.

Glenn

<?php require_once('../Connections/connatkinsdb.php'); ?>
<?php
if (!function_exists("GetSQLValueString")) {
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
{
$theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;

$theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);

switch ($theType) {
case "text":
$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
break;
case "long":
case "int":
$theValue = ($theValue != "") ? intval($theValue) : "NULL";
break;
case "double":
$theValue = ($theValue != "") ? "'" . doubleval($theValue) . "'" : "NULL";
break;
case "date":
$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
break;
case "defined":
$theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
break;
}
return $theValue;
}
}
?>
<?php
// *** Validate request to login to this site.
if (!isset($_SESSION)) {
session_start();
}

$loginFormAction = $_SERVER['PHP_SELF'];
if (isset($_GET['accesscheck'])) {
$_SESSION['PrevUrl'] = $_GET['accesscheck'];
}

if (isset($_POST['username'])) {
$loginUsername=$_POST['username'];
$password=$_POST['pwd'];
$MM_fldUserAuthorization = "admin_priv";
$MM_redirectLoginSuccess = "$_SESSION[MM_Username].php";
$MM_redirectLoginFailed = "../User Area/loginfail.php";
$MM_redirecttoReferrer = false;
mysql_select_db($database_connatkinsdb, $connatkinsdb);

$LoginRS__query=sprintf("SELECT username, pwd, admin_priv FROM users WHERE username=%s AND pwd=%s",
GetSQLValueString($loginUsername, "text"), GetSQLValueString($password, "text"));

$LoginRS = mysql_query($LoginRS__query, $connatkinsdb) or die(mysql_error());
$loginFoundUser = mysql_num_rows($LoginRS);
if ($loginFoundUser) {

$loginStrGroup = mysql_result($LoginRS,0,'admin_priv');

//declare two session variables and assign them
$_SESSION['MM_Username'] = $loginUsername;
$_SESSION['MM_UserGroup'] = $loginStrGroup;

if (isset($_SESSION['PrevUrl']) && false) {
$MM_redirectLoginSuccess = $_SESSION['PrevUrl'];
}
header("Location: " . $MM_redirectLoginSuccess );
}
else {
header("Location: ". $MM_redirectLoginFailed );
}
}
?>
?>

Report · Jan 12, 2008

GEAtkins wrote:
> I am using the redirect to a personal page from page 515 of The Essential
> Guide to DWCS3 in the following form: $_SESSION[MM_Username].php in the "if
> login succeeds" field.

Thank you for reminding me. There's a mistake in the book, which I
discovered over the Christmas period, so forgot to send to friends of ED
for the errata page.

Don't use $_SESSION[MM_Username]. Use $loginUsername instead. It then works.

--
David Powers, Adobe Community Expert
Author, "The Essential Guide to Dreamweaver CS3" (friends of ED)
Author, "PHP Solutions" (friends of ED)
http://foundationphp.com/

Report · Jan 12, 2008

Thanks much my friend. Works perfectly.

Glenn

Help From David Powers Please

1 Correct answer