-1

你好我有问题:在 login.php 文件中我存储 $_SESSION['$myusername']; 我尝试检查 page.php 文件中的 SESSION 用户名,如果会话不存在,它将重定向回 l​​ogin.php。我尝试使用有效用户登录,但我重定向回 l​​ogin.php 我不知道问题出在哪里。

登录.php:

 <?php


$host="localhost"; // Host name
$username="root"; // Mysql username
$password=""; // Mysql password
$db_name="2"; // Database name

// Connect to server and select databse.
mysql_connect("$host", "$username", "$password")or die("cannot connect");
mysql_select_db("$db_name")or die("cannot select DB");
if (isset($_POST['formsubmitted'])) {
    $error = array();//Declare An Array to store any error message 
};  
// username and password sent from form
$myusername=$_POST['myusername'];
$mypassword=$_POST['mypassword'];

// To protect MySQL injection (more detail about MySQL injection)
$myusername = stripslashes($myusername);
$mypassword = stripslashes($mypassword);
$myusername = mysql_real_escape_string($myusername);
$mypassword = mysql_real_escape_string($mypassword);

$sql="SELECT * FROM `members` WHERE username='$myusername' and password='$mypassword'";
$result=mysql_query($sql);

// Mysql_num_row is counting table row
$count=mysql_num_rows($result);

// If result matched $myusername and $mypassword, table row must be 1 row

if($count==1){

// Register $myusername, $mypassword and redirect to file "login_success.php"
//store data:
$_SESSION['$myusername'];

//next page:


header("location:page.php");
}

else {

include 'index.php';
$error[] = '<b><h5>Invalid Username or Password!</b>';


if(isset($error) && is_array($error))
{
   echo "<div class='content1'>" . implode("<br />", $error) . "</div>";
};

};
?>

page.php:

<?php
    ob_start();
    session_start();
    if(!isset($_SESSION['$myusername']))
    {
         header("Location: login.php")
    }


?>
4

2 回答 2

0

在 Page.php 中,您不应在检查会话变量时包含 $:

if(!isset($_SESSION['$myusername']))

应该: 

if(!isset($_SESSION['myusername']))

在 Login.php 中,您必须设置会话变量:

if($count==1){
  // Register $myusername, $mypassword and redirect to file "login_success.php"
  //store data:
  $_SESSION['$myusername'];
  //next page:
  header("location:page.php");
}

应该:

if($count==1){
  // Register $myusername, $mypassword and redirect to file "login_success.php"
  //store data:
  $_SESSION['myusername'] = $myusername;
  //next page:
  header("location:page.php");
}

Login.php 还需要在顶部调用 session_start()。

于 2012-11-01T17:35:21.770 回答
0

第一个问题在您的login.php页面中,您没有启动会话。添加session_start()到页面的开头。

其次,您永远不会为会话变量赋值。尝试:

$_SESSION['myusername'] = $myusername;

注意,我还删除了$里面的会话密钥名称。因此,在您的page.php页面中,您还必须使用isset($_SESSION['myusername']). 您可以始终保留$,但我不相信这就是您要使用的意思。

于 2012-11-01T17:36:20.647 回答