Session variables do not work php

Question

Session variables do not work php

Here is the code for my login page, where the login script authenticates the user and then redirects to the inbox using the header function.

<?php session_start(); include_once('config.php'); $user=htmlentities(stripslashes($_POST['username'])); $password=htmlentities(stripslashes($_POST['password'])); // Some query processing on database if(($id_user_fetched<=$id_max_fetched) && ($id_user_fetched!=0)){ $_SESSION['loggedIn'] = 'yes'; header("Location:http://xyz/inbox.php?u=$id_user_fetched"); //echo 'Login Successful'; }else{ echo 'Invalid Login'; echo'<br /> <a href="index.html">Click here to try again</a>'; } }else{ echo mysqli_error("Login Credentials Incorrect!"); } ?>

The inbox.php page looks like this:

 <?php session_start(); echo 'SESSION ='.$_SESSION['loggedIn']; if($_SESSION['loggedIn'] != 'yes'){ echo $message = 'you must log in to see this page.'; //header('location:login.php'); } //REST OF THE CODE ?>

Now with the above code, inbox.php always shows the result: SESSION = you must be logged in to view this page. This means that either the session variable is not configured, or inbox.php cannot receive the session variable. Where am I going wrong?

+6

php session session-variables

Arihant Oct 30 '13 at 19:28

source share

8 answers

revo · Answer 1 · 2013-10-30T20:00:43+0000

Make sure session_start(); called before calling any sessions. Thus, a safe bet would be to place it at the top of your page immediately after the opening of the <?php tag before anything else. Also make sure there are no spaces / tabs before the opening <?php tag.
After redirecting the header end the current script with exit(); (others also suggested session_write_close(); and session_regenerate_id(true) , you can also try them, but I would use exit(); ).
Make sure cookies are enabled in the browser that you use for verification.
Make sure register_globals off, you can check this in the php.ini file as well as using phpinfo() . Refer to this on how to disable it.
Make sure you did not delete or clear the session.
Make sure the key in the $_SESSION supergell $_SESSION not overwritten anywhere.
Make sure you are redirected to the same domain. Therefore, redirecting from www.yourdomain.com to yourdomain.com does not take the session forward.
Make sure the .php file extension (this happens!).

PHP session after redirect

Vadman · Answer 2 · 2014-01-28T03:16:54+0000

I had the same problem for a while, and it was very difficult for me to understand it. My problem was that I had a website that worked for a while, when the sessions worked correctly, and then everything suddenly broke.

Apparently your session_save_path (), for me this is / var / lib / php 5 /, should have 777 chmod permissions. I accidentally changed it, completely breaking the session.

To fix, just do sudo chmod -R 777 /var/lib/php5/ (or whatever your session_save_path ()) is on linux.

EDIT: changing the permission to 777 is not the best solution if you know the user you are running on your server. Run sudo chmod -R 700 /var/lib/php5/ and then sudo chown -R www-data /var/lib/php5/ so that the php user has access to this folder.

Ashraf ali · Answer 3 · 2016-11-05T12:24:37+0000

Perhaps if your session path is not working correctly, you can try session.save_path(path/to/any folder); function as an alternative way. If this works, you can ask your hosting provider for a default error.

Arihant · Answer 4 · 2013-10-30T20:25:25+0000

Just talking to the hosting service, that was the problem at the end. he said: "Your session.save_path account has not been installed because a problem has occurred. I have set it up for you now."

And it works fine after that :)

Luis felipe de melo · Answer 5 · 2015-10-01T16:53:41+0000

If you are using a script connection, be sure to use session_start(); in this connection, there were some problems before noticing this problem.

Jacek dziurdzikowski · Answer 6 · 2017-09-23T19:57:16+0000

Another important reason why sessions cannot work is played back with session cookie settings, for example. session cookie lifetime to 0 or other low values due to a simple error or another developer for any reason.

 session_set_cookie_params(0)

talsibony · Answer 7 · 2016-07-05T06:55:15+0000

I had a similar problem with the cookie domain:

  ini_set('session.cookie_domain', '.domain.com');

the domain was not configured correctly, so all sessions were ignored because the user cookie was never set correctly, hope this helps someone.

Devqxz · Answer 8 · 2017-05-24T18:26:38+0000

Today I ran into this problem. the problem is with $ config ['base_url']. I noticed htpp: //www.domain.com and http://example.com . to fix always set base_url at http://www.example.com

Session variables do not work php

More articles: