Trying to understand sessions and using them to authenticate...

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi Everyone,

I'm attempting to figure out the proper way to use sessions to log someone into my system. The idea being, if they arn't logged in all they can see is the login form, and if they are logged in, they and have access to a database of addresses.

I think I understand how to start sessions, and store variables such as some sort of login identifier to say they have access to the database, what I'm running into and have been googling about all morning so far, is how would I get the system to say they are logged in? Is it as simple as:

$sql = "SELECT loginid FROM table where username="$username" and password="$password";

and then setting session_register("loginid")

and then checking to see if the variable exists? Or am I missing like huge chunks of info?

Anyone have a good website that I can read up on it about? About to hit up phpsec.org to see what they have!


--

Jason Pruim
Raoset Inc.
Technology Manager
MQC Specialist
3251 132nd ave
Holland, MI, 49424
www.raoset.com
japruim@xxxxxxxxxx



[Index of Archives]     [PHP Home]     [Apache Users]     [PHP on Windows]     [Kernel Newbies]     [PHP Install]     [PHP Classes]     [Pear]     [Postgresql]     [Postgresql PHP]     [PHP on Windows]     [PHP Database Programming]     [PHP SOAP]

  Powered by Linux