prepend.php gets called before running any page on a site. Put the "session_start()" in the prepend.php and you won't have to worry where you put it. Learn more about it on the php web site (don't have the url handy). Peter On Tue, 29 Oct 2002, Seabird wrote: > turns out, I already have a session_start(). I have some seperate files and > use them as includes. The thing is... my login form is located on my > "index.php" and if I do a login, only this file will recognize my session > variables. > > I load pages external into a layer, but none of them get the session > variables. I'll upload some files so you can see. I'll post this. > > Thanx already, > Jacco > -- > http://seabird.jmtech.ca > > Attitude is Everything! > But Remember, Attitudes are Contagious! > Is Yours worth Catching???? > "Baroiller Pierre-Emmanuel" <baroiller@daoditu.com> wrote in message > 20021030002059.9083.qmail@pb1.pair.com">news:20021030002059.9083.qmail@pb1.pair.com... > > You only need to add session_start() in your script before storing your > data > > into the $_SESSION array. > > Without session_start(), no session is started by php... > > > > Regards, > > P.E. Baroiller > > > > "Seabird" <jacco@vliegt.nl> a écrit dans le message de news: > > 20021030000955.3142.qmail@pb1.pair.com... > > > Hi everyone, > > > > > > I use a login-script, but for some reason I keep losing my $_SESSION > > > variables. Can Anyone tell me why? > > > > > > Here's my login script: > > > > > > <?php > > > if(isset($_POST['submit'])) { // if form has been submitted > > > /* check they filled in what they were supposed to and authenticate */ > > > if(!$_POST['uname'] | !$_POST['passwd']) { > > > print '<form action="index.php" method="post"> > > > <div align="left"> > > > <input class="test" name="uname" type="text" size="8" > > > maxlength="8"> > > > <input class="test" type="password" size="8" maxlength="8" > > > name="passwd"> > > > <input name="submit" type="submit" value="Login"> > > > <br> > > > <span class="welcome">please fill in the required > > > fields.</span></div> > > > </form> > > > '; > > > } > > > // authenticate. > > > if(!get_magic_quotes_gpc()) { > > > $_POST['uname'] = addslashes($_POST['uname']); > > > } > > > $check = $db_object->query("SELECT username, password FROM users WHERE > > > username = '".$_POST['uname']."'"); > > > if(DB::isError($check)) { > > > print '<form action="index.php" method="post"> > > > <div align="left"> > > > <input class="test" name="uname" type="text" size="8" > > > maxlength="8"> > > > <input class="test" type="password" size="8" maxlength="8" > > > name="passwd"> > > > <input name="submit" type="submit" value="Login"> > > > <br> > > > <span class="welcome">username doesn\'t exist.</span> <a > > > class="header" > > > href="javascript:loadPage(\'mainlayer\',null,\'login/signup.php\')">sign > > up > > > here</a></div> > > > </form> > > > '; > > > } > > > $info = $check->fetchRow(); > > > // check passwords match > > > $_POST['passwd'] = stripslashes($_POST['passwd']); > > > $info['password'] = stripslashes($info['password']); > > > $_POST['passwd'] = md5($_POST['passwd']); > > > if($_POST['passwd'] != $info['password']) { > > > print '<form action="index.php" method="post"> > > > <div align="left"> > > > <input class="test" name="uname" type="text" size="8" > > > maxlength="8"> > > > <input class="test" type="password" size="8" maxlength="8" > > > name="passwd"> > > > <input name="submit" type="submit" value="Login"> > > > <br> > > > <span class="welcome">wrong password, try again</span></div> > > > </form> > > > '; > > > } > > > > > > // if we get here username and password are correct, register session > > > variables and set > > > // last login time. > > > $date = date('m d, Y'); > > > $update_login = $db_object->query("UPDATE users SET last_login = > '$date' > > > WHERE username = '".$_POST['uname']."'"); > > > $_POST['uname'] = stripslashes($_POST['uname']); > > > $_SESSION['username'] = $_POST['uname']; > > > $_SESSION['password'] = $_POST['passwd']; > > > $db_object->disconnect(); > > > ?> > > > <span class="welcome">Welcome <a class="header" > > > > > > href="javascript:loadPage('mainlayer',null,'users/edit.php?user=<?=$_SESSION > > > ['username']?>')"><font > > > color="white"><?=$_SESSION['username']?></font></a><br><a class="header" > > > href="login/logout.php">Logout</a> > > > </span> > > > <?php > > > } > > > else { // if form hasn't been submitted > > > ?> > > > <form action="<?=$HTTP_SERVER_VARS['PHP_SELF']?>" method="post"> > > > <div align="left"> > > > <input class="test" name="uname" type="text" size="8" > > > maxlength="8"> > > > <input class="test" type="password" size="8" maxlength="8" > > > name="passwd"> > > > <input name="submit" type="submit" value="Login"> > > > <br> > > > <a class="header" > > > href="javascript:loadPage('mainlayer',null,'login/signup.php')">sign up > > > here</a> </div> > > > </form> > > > <?php > > > } > > > ?> > > > > > > -- > > > http://seabird.jmtech.ca > > > > > > Attitude is Everything! > > > But Remember, Attitudes are Contagious! > > > Is Yours worth Catching???? > > > > > > > > > > > > > > -- > PHP Database Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > --------------------------------------------------------------------------- Peter Beckman Systems Engineer, Fairfax Cable Access Corporation beckman@purplecow.com http://www.purplecow.com/ --------------------------------------------------------------------------- -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php