6
Replies
php is your server side language then. 
Please clarify the rest of your scenario with specifics. When someone clicks an event what is the parameters being passed? Ideally you'd have URL parameter keys consistent and have the value change depending on the event selected. So if someone clicks on event #1 in LA the url on login is something like this:
login.php?location=la&id=1
and if someone clicks on event #7 in New York the url on login is something like this:
login.php?location=ny&id=7
Is this how you currently have it setup or are the URL params different each time like this:
login.php?ny=7 or login.php?la=1
Please advise on how your URL parameters are being sent to login page. Also, do you want session set upon sucessful login or is it ok to set session variables before login and then use the values of those session after login is sucessfull.
best,
Shocker 
This one seems pretty straight-forward then. Since URL params are consistent and only their values change depending on event selected I would add a simple code on adminSignin2.php that checks to see if URL params are set and if they are then assign their values to session variables. Something like this:
<?php
// start a session on the page
session_start();
// check to see if eventId is set and a value exists and make sure eventName is set and a value exits for it as well
if (isset($_GET['eventId']) && $_GET['eventId'] != "" && isset($_GET['eventName']) $_GET['everntName'] != "") {
// if the conditions are true then set session variables for eventId and eventName
$_SESSION['eventId'] = $_GET['eventId'];
$_SESSION['eventName'] = $_GET['eventName'];
// end the condition
}
// now let's check to see if the session variables have been set
if (isset($_SESSION['eventId']) && isset($_SESSION['']) {
// if the conditions are true then display the values of the session variables on the page
echo "event ID = ".$_SESSION['eventId'];
echo "<br />";
echo "event Name = ".&_SESSION['eventName'];
// end the condition
}
?>
Then in login processing check to make sure user attempting to login has authorization to access event ID and event Name by adding additional conditions into your login query to check if values of session variables that were set match values entered into table row for the user that's attempting to login. User login table would need 4 colums. 1 username, 1 pw, 1 eventid, one eventname. Then basics of the login query would SELECT username FROM logintable WHERE username = POST['username'] AND password = POST['password'] AND eventid = SESSION['eventId'] AND eventname = SESSION['eventName']. That's obviously not the right code, but hopefully you get the idea. The point being that you should check additional parameters in your login query to make sure user is allowed access to content they're attempting to login to. Then set a session variable for the username from the result of the query row. Make sure you sanitize your variables that are going into MySQL query to prevent injection attacks that could compromise your database.
A better way might be to just have one login page without all these links with url params going to login and determining where the user goes after that (if they're allowed). Just direct logged in user to their content depending on variables in their db table since that's more fool-proof. Not really sure how your whole system is setup though or what stage of development you're at to make a full recommendation regarding alternative development methods.
best,
Shocker
AdChoices