Gå til innhold

Login scriptet husker ikke at jeg er logget inn?

Yaricks

Av Yaricks
i Programmering og webutvikling

Anbefalte innlegg

Yaricks

Yaricks

Skrevet
Skrevet (endret)

********* Løst ! *********

 

 

Hei, har ett problem. Har ett login script som ikke virker helt..

 

Jeg logger inn, menyen for medlemmer kommer opp, men når jeg klikker på en av menyknappene så kommer login boksen opp igjen, og jeg blir logget ut.. Noen som vet hvordan jeg kan fikse det? :ermm:

 

 

<?
ob_start();
require_once($_SERVER['DOCUMENT_ROOT'].'/test/connect_db.php'); 

if(isset($_SESSION['username']) && isset($_SESSION['password'])) {
      //REDIRECT TO USERS PROFILE...
  // header("Location: http://mytva.yaricks.net/main.php");
} //end if logged in

//IF SUBMIT BUTTON PRESSED
if(isset($_POST['submit'])) {

  if(!$_POST['username']) die("Error: You must enter your username before logging in.");
  if(!$_POST['password']) die("Error: You must enter your password before logging in.");
  
//set cookie if checked
  if(!empty($_POST['stay_in'])) {  
        $joined =''.$_POST['username'].'[]'.md5($_POST['password']).'';
   } //end if

//verify user...
$get_user = mysql_query("SELECT * FROM `pilots` WHERE username = '".$_POST['username']."' AND 

user_password = '".md5($_POST['password'])."'");
$q = mysql_fetch_object($get_user);
   if(!$q) die("Login Failure: An error occured, please verify your username and password are correct.");

//set session variables 
$_SESSION['logged_in'] = 1;
$_SESSION['username'] = $_POST['username']; 
$_SESSION['password'] = $_POST['password']; 
$_SESSION['userlevel'] = $_POST['userlevel'];
session_write_close();

} else {
//show login form
?>
<form name="login" method="post" action="<? $_SERVER['PHP_SELF']; ?>">
<table>
<tr>
 <td>Username:<input type="text" id="username" name="username"></td>
</tr>
<tr>
 <td>Password:<input type="password" id="password" name="password"></td>
</tr>
<tr>
 <td>Submit: <input type="submit" value="Submit" name="submit" id="submit"></td>
</tr>
<tr>
<td>Remember? <input type="checkbox" name="stay_in[]" checked="yes"></td>
</tr>
</table>
</form>
<?
}//end else
?>
<?

//check cookie
if ($_SESSION['logged_in'] != 1 && isset($_COOKIE['login_cookie'])) {
   list($user, $pass) = explode('[]', $_COOKIE['login_cookie']);
    $qu = mysql_query("SELECT `user_password` FROM `pilots` WHERE `username` = '".addslashes($user)."'");
   if (mysql_num_rows($qu) == 1) {
       $passw = mysql_fetch_object($qu);
       if ($passw->user_password == $pass) {
         $_SESSION['logged_in'] = 1;
          $_SESSION['username'] = $user;
           $_SESSION['password'] = $pass;
       }
   }
}

if(!isset($_SESSION['username']) && !isset($_SESSION['password'])) {
  $_SESSION['logged_in'] = 0;
  $user = "Guest"; 
}
?>
<? 

if ($_SESSION['logged_in'])
echo "You are logged in!<br>" 
."What do you want to do? <br>"
      ."[<a href=\"http://mytva.yaricks.net/main.php\">Main</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=2\">Check the latest news</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=filepirep\">File a pirep</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=3\">Check out the our fleet</a>]<br>"
   ."[<a href=\"/forum\">Check the forum</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=4\">Find a route</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=9\">I need some training</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=5\">Check out the pilot roster</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=6\">Contact us</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=7\">Learn something about us</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=logout\">Logout!</a>]<br>";


else 
echo "[<a href=\"register.php\">Register</a>]";

?>

Endret av Yaricks
Lenke til kommentar

Videoannonse

Videoannonse
Annonse
Ric_H

Ric_H

Skrevet
Skrevet 

//IF SUBMIT BUTTON PRESSED
if(isset($_POST['submit'])) {

(...)

} else {
//show login form
?>

 

Submit-knappen trykkes vel ikke hver gang? I så fall vil jo login-formen vises.

 

Og du logges kanskje ut fordi du ikke bruker session_start() ?

Lenke til kommentar
Yaricks

Yaricks

Skrevet
  • Forfatter
Skrevet (endret)

Har funnet ett nytt login script, men får en feil melding.

Warning: Cannot modify header information - headers already sent by (output started at /mounted-storage/home15a/sub003/sc17720-BQAO/www/mytva/ny/main.php:9) in /mounted-storage/home15a/sub003/sc17720-BQAO/www/mytva/ny/test_login.php on line 87

 

Warning: Cannot modify header information - headers already sent by (output started at /mounted-storage/home15a/sub003/sc17720-BQAO/www/mytva/ny/main.php:9) in /mounted-storage/home15a/sub003/sc17720-BQAO/www/mytva/ny/test_login.php on line 88

 

Men det er ikke noe i main.php som setter header... :no:

 

Kun to include scripts der..

 

Hm. ok... Hvis jeg kjører test_login.php alene, uten main.php får jeg ikke feil meldingen, men hvis jeg includerer det, eller legger inn hele scriptet inn i main.php får jeg feimeldingne.... :nei:

 

OK! Prøvd meg litt frem.. Uansett hvilket login script jeg prøver, får jeg samme feilmelding!! MEN! Hvis jeg kjører det uten main.php får jeg ikke feilmeldinen... Men det er ikke no i main.php!! :ohmy: Main.php nederst..

 

Login.php:

 

<?php

// Connects to your Database 
mysql_connect("server", "bruker", "passord") or die(mysql_error()); 
mysql_select_db("database") or die(mysql_error()); 


//Checks if there is a login cookie

if(isset($_COOKIE['ID_mytravel_org']))


//if there is, it logs you in and directes you to the members page
{ 
$username = $_COOKIE['ID_mytravel_org']; 
$pass = $_COOKIE['Key_mytravel_org'];

$check = mysql_query("SELECT * FROM pilots WHERE username = '$username'")or die(mysql_error());

while($info = mysql_fetch_array( $check ))  
 {

 if ($pass != $info['password']) 
 	{
 	
 	}

 else
 {
 	header("Location: test_login.php");

 	}

 }

}


//if the login form is submitted

if (isset($_POST['submit'])) { // if form has been submitted


// makes sure they filled it in

if(!$_POST['username'] | !$_POST['pass']) {
 die('You did not fill in a required field.');
}

// checks it against the database

if (!get_magic_quotes_gpc()) {
 $_POST['email'] = addslashes($_POST['email']);
}

$check = mysql_query("SELECT * FROM users WHERE username = '".$_POST['username']."'")or die(mysql_error());

//Gives error if user dosen't exist

$check2 = mysql_num_rows($check);
if ($check2 == 0) {
 die('That user does not exist in our database. <a href=register.php>Click Here to Register</a>');
   }


while($info = mysql_fetch_array( $check ))  
{

$_POST['pass'] = stripslashes($_POST['pass']);
$info['password'] = stripslashes($info['password']);
$_POST['pass'] = md5($_POST['pass']);

//gives error if the password is wrong

if ($_POST['pass'] != $info['password']) {
 die('Incorrect password, please try again.');
}

else
{
// if login is ok then we add a cookie 

$_POST['username'] = stripslashes($_POST['username']);


$hour = time() + 3600; 
setcookie(ID_mytravelvirtual_site, $_POST['username'], $hour);
setcookie(Key_mytravel_org, $_POST['pass'], $hour);	

//then redirect them to the members area
echo "You are logged in!<br>" 
."What do you want to do? <br>"
      ."[<a href=\"http://mytva.yaricks.net/main.php\">Main</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=2\">Check the latest news</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=filepirep\">File a pirep</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=3\">Check out the our fleet</a>]<br>"
   ."[<a href=\"/forum\">Check the forum</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=4\">Find a route</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=9\">I need some training</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=5\">Check out the pilot roster</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=6\">Contact us</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=7\">Learn something about us</a>]<br>"
   ."[<a href=\"http://mytva.yaricks.net/main.php?page=logout\">Logout!</a>]<br>";

}

}

} else {	

// if they are not logged in
?>

<form action="<?php echo $_SERVER['PHP_SELF']?>" method="post">
<table border="0">
<tr><td colspan=2><h1>Login</h1></td></tr>
<tr><td>Username:</td><td>
<input type="text" name="username" maxlength="40">
</td></tr>
<tr><td>Password:</td><td>
<input type="password" name="pass" maxlength="50">
</td></tr>
<tr><td colspan="2" align="right">
<input type="submit" name="submit" value="Login">
</td></tr>
</table>
</form>
<?php
}


?>

 

 

Main.php:

<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<meta name="generator" content="Adobe GoLive 5">
<title>MyTravelVirtual.org</title>
<link rel="stylesheet" type="text/css" href="style.css">
<style type="text/css">
<!--
body,td,th {
color: #F7F7F7;
background-color: #1e60ad;
}
body {
background-color: #FFFFFF;
}
.style7 {
font-size: 18px;
font-weight: bold;
}
a:link {
color: #FFFFFF;
}
a:visited {
color: #FFFFFF;
}
a:hover {
color: #999999;
}
a:active {
color: #333333;
}
-->
   </style>

</head>

<body leftmargin= "0" rightmargin="0" marginwidth="0" topmargin="0" marginheight="0">
<STYLE TEXT="test/css">
<!--

BODY{scrollbar-face-color: #9FA0A8; scrollbar-shadow-color: #E9FFFF; scrollbar-highlight-color: #007BEF; scrollbar-3dlight-color: #000000; scrollbar-darkshadow-color: #000000; scrollbar-track-color: #1b1c1d; scrollbar-arrow-color: #007BEF}

-->
</style>
 <div align="center">
 	<table border="0" cellpadding="0" cellspacing="0" width="763" background="graphics/bg.jpg">
   <tr>
   	<td>
     <div align="center">
     	<table width="759" border="0" cellpadding="0" cellspacing="0" bgcolor="#FFFFFF">
       <tr>
         <td><img src="graphics/banner top.jpg" alt="banner" width="800" height="63" longdesc="http://mytva.yaricks.net"></td>
       </tr>
       <tr>
       	<td><img src="graphics/blueline.jpg" width="800" height="5" border="0"></td>
       </tr>
       <tr>
       	<td>
         <table width="100%" border="0" cellpadding="0" cellspacing="0" class="bglogin">
         	<tr>
            <td bgcolor="white" width="524" valign="top">
           	<div align="left">
              <table width="518" height="1" border="0" bgcolor="#1e60ad">
                                                         <tr>
                                                           <td></td>
                                                         </tr>
                                                     </table>
             <br>
             <table border="0" cellpadding="0" cellspacing="0" width="98%">
             	<tr>
                <td>
               	<div align="left">
                 <div align="left"> 
                 	<div align="left">
                   <p align=top>
                     <?php
/* ______________________________________________________________________
_INCLUDESCRIPT_v1.3___________________________________mortz.tjokk.net_

Forfatter:   Morten Daniel Fornes
E-post:      [email protected]
Hjemmeside:  http://mortz.tjokk.net
Sist endret: 21/10/2005
_______________________________________________________________________
*/

/*** KONFIGURASJON ***/

$default = "1"; // fila som skal inkluderes hvis variabelen er tom.
$directory = "inc";  // mappa filene dine ligger i.
$extension = "php";  // filendingen på filene dine.


/*** SCRIPTET STARTER HER ***************************************************/
/*** (ikke gjør endringer med mindre du vet hva du gjør! =) *****************/

$page = $_GET['page'];

// for å hindre at det inkluderes fra uønskede plasser (stopper hackerne)
if (preg_match('/(http:\/\/|^\/|\.+?\/)/', $page)) echo "I'll h4x yuo!!1";


elseif (!empty($page))           // sjekke at variabelen ikke er tom.
{
if (file_exists("$directory/$page.$extension"))    // sjekke om fila eksisterer.
include("$directory/$page.$extension");     // inkluder fila.
else              // hvis ikke,
echo "<h2>Error 404</h2>\n<p>Finner ikke siden!</p>\n"; // skriv en feilmelding.
}
else               // eller,
include("$directory/$default.$extension");     // inkluder fila som definert som $default.

?></p>
                   <div align="left">
                   	<div align="left">
                     <div align="left">
                       <p align=justify></a></p>
                      </div>
                   	</div>
                   </div>
                   </div>
                 </div>
               	</div>                </td>
             	</tr>
             </table>
            </div>            </td>
           <td width="10"> </td>
            <td bgcolor="1e60ad" valign="top" background="graphics/blockbg.jpg" width="273"><table bgcolor="#666666" class="bglogin">
                                               <tr class="bglogin">
                                                 <td bgcolor="#333333" class="bglogin">
<?php
include "test_login2.php"
?>
</td>
                                               </tr>
                                             </table>
               <p></p></td>
         	</tr>
          </table>        	</td>
       </tr>
       <tr height="32">
       	<td height="32" bgcolor="#FFFFFF">
       	<div align="left"></div>        	</td>
       </tr>
       <tr>
         <td bgcolor="#FFFFFF"> </td>
       </tr>
       <tr>
       	<td bgcolor="#FFFFFF"> </td>
       </tr>
       <tr>
       	<td><img src="graphics/pixel.gif" width="100%" height="1" border="0"></td>
       </tr>
     	</table>
     </div>
   	</td>
   </tr>
 	</table>
 </div>
 <div class="menu01">
 	<div align="center">
   
 	</div>
 </div>
</body>
</html>

Endret av Yaricks
Lenke til kommentar
kimandrel

kimandrel

Skrevet
Skrevet
Hm.. Har prøvd flere login script, men samme feilmelding uansett hvis den ligger med main.php..

 

Men! Hvis jeg åpner login siden uten main.php får jeg ikke feilmelding!! Noen som vet hva som kan være galt?

7869164[/snapback]

 

Husk, at ferdig script sjelden virker slik som det skal når du setter det inn i en side Mathias slik du gjlr (med include) derfor må du ha session start på selve index fila de. Prøv det

Lenke til kommentar

Opprett en konto eller logg inn for å kommentere

Du må være et medlem for å kunne skrive en kommentar

Opprett konto

Det er enkelt å melde seg inn for å starte en ny konto!

Start en konto

Logg inn

Har du allerede en konto? Logg inn her.

Logg inn nå
Gå til emneliste
×
×
  • Opprett ny...