Hi Everyone,
I'm attempting to figure out the proper way to use sessions to log
someone into my system. The idea being, if they arn't logged in all
they can see is the login form, and if they are logged in, they and
have access to a database of addresses.
I think I understand how to start sessions, and store variables such
as some sort of login identifier to say they have access to the
database, what I'm running into and have been googling about all
morning so far, is how would I get the system to say they are logged
in? Is it as simple as:
$sql = "SELECT loginid FROM table where username="$username" and
password="$password";
and then setting session_register("loginid")
and then checking to see if the variable exists? Or am I missing like
huge chunks of info?
Anyone have a good website that I can read up on it about? About to
hit up phpsec.org to see what they have!
--
Jason Pruim
Raoset Inc.
Technology Manager
MQC Specialist
3251 132nd ave
Holland, MI, 49424
www.raoset.com
japruim@xxxxxxxxxx
