Hello,
I am trying to set some variables before including a file. Essentially what I was trying to do is prevent access to a particular page using a session variable, but since I am including this file in an IFRAME that will not work. What I had
$var1 = "blah";
include("file.php");
Then in file.php:
if($var1 != "blah"){
die();
}
And it dies everytime. I also tried include("file.php?var1=bla
If my method completely sucks I don't mind you telling me because I am certain there is a much easier solution to this.
Thanks.
This Question has been solved and asker verified All Experts Exchange premium technology solutions are available to subscription members.
Experts Exchange has been collecting answers to technology questions since 1996…3 million and counting! If you have a question, chances are we already have your answer.
If you can't find the exact answer you're looking for, ask our exclusive community of 50,000 experts. You’ll get a personalized answer from a trusted professional.
Thousands of free tech tips, tricks, how-to’s and tutorials are available in our peer reviewed articles section. See for yourself how smart our experts are, no login required.
Save solutions to your questions, answers you’ve discovered through searching plus helpful articles in your personal knowledgebase for easy future access.
Access the answers to your technology questions today.
30-day free trial. Register in 60 seconds.
Members of the expert community talk about why the experience at Experts Exchange is different than what you will find anywhere else.
Try it out and discover for yourself.
30-day free trial. Register in 60 seconds.
Join the community of experts here and help other tech pros by answering question in your area of expertise. You can earn FREE access to all Experts Exchange's premium features and resources.
variable values seem to pass to includes on my system...
snoyes solution probably works well.
>I am trying to set some variables before including a file. Essentially what I was trying to do is prevent access to a particular page >using a session variable, but since I am including this file in an IFRAME that will not work.
I use $_SESSION variables in an IFRAME all the time... doesn't cause me any problems in IE or FF.
did you try this?
The problem with :
if($var1=="blah)
include("file.php");
is that that will still leave file.php able to be accessed directly.
As for the sessions, it seems to be losing the session when I create the IFRAME. All the pages I create a session variable once they login successfully, but if I try to check it in this one page in the IFRAME, it fails everytime.
you can't include("blah.php?var=blah
then in blah.php
if ($_GET["blah"] != "blah) { die("ERROR: NOT BLAH!"); }
hi totallymarc,
If you just want to prevent the file from being accessed directly, you might just add the following to the top of 'file.php'
if (basename($_SERVER['PHP_SE
Which will work with includes... the rest of files contents will not be processed if the filename is file.php (where file.php the name of the script it is in).
Diablo84
Alright, here's the mystery. I absolutely love the idea of (basename($_SERVER['PHP_SE
, which is what I was trying to use initially, but even though the file is being included, that statement still gets evaluated as true and kills the page. The other bizarre thing is that even if I access the URL with http://site.com/file.php?v
Thanks.
Just to give more details what's going on/not going on Here is the layout :
Page 1:
<IFRAME src=music.php></IFRAME>
Page2 (music.php):
session_start();
header("Cache-control: private");
if(!isset($_SESSION[var]){
$var=blah;
include('file.php');
Page3 (file.php):
session_start();
header("Cache-control: private");
echo "var:" .$var; // will print var: and nothing else
echo "var: " .$_GET['var']; // same thing
if(!isset($_SESSION['var']
if instead I try
if (basename($_SERVER['PHP_SE
The frustrating thing is this EXACt code works on other pages. The only difference is this page is in a different directory, but but no special .htaccess rules have been applied.
Any insight is appreciated.
Thanks in advance.
I figured out the problem. So simple, yet some things still don't quite add up, if someone can explain it I'll give them the points ;).
What it was is the directory structure is kind of messed up, so to simplify it I was using include('http://site.com/p
Thanks.
All the clues are that little bit too vague to be specific with an answer....
The session problem sounds like it is related to the domain or path setting in the session cookie.
A session will only be available on the domain (and same sub domain) that is was set on unless the domain parameter for the session cookie is set to .domain.com (notice the leading dot). This is what i would expect the cause of the problem to be.
You can read more on the matter in the documentation for the setcookie function (under the parameters section): http://us3.php.net/manual/
The settings for the session cookie are in the php.ini file under the [SESSION] section.
Just to note, when including files it's easiest to use:
include($_SERVER['DOCUMENT
That all said, i am unclear as to why the...
if (basename($_SERVER['PHP_SE
approach was not working. If the filename of the current script is file.php (ie. if you access the file directly) it should evaluate as true and die... if the file is included in another file $_SERVER['PHP_SELF'] will return the name of that file and so it should evaluate as false.
I just tested with:
page1.php:
--------------------------
<iframe src="page2.php"></iframe>
--------------------------
page2.php:
--------------------------
<?php
include('page3.php');
?>
--------------------------
page3.php:
--------------------------
<?php
if (basename($_SERVER['PHP_SE
?>
hello world
--------------------------
page1.php (output): The iframe containing the text "hello world"
page2.php (output): The text "hello world"
page3.php (output): The text "Access Denied"
>> shouldn't setting $var in the file including the page still be able to be passed ?
yes it should, when accessing the file that set the variable, eg:
page1.php:
--------------------------
<?php
$var = 'hello world';
include('page2.php');
?>
--------------------------
page2.php:
--------------------------
<?php
echo "var: $var";
?>
--------------------------
page1.php (output): "var: hello world"
page2.php (output): "var:" (with an undefined variable notice error)
As a general note, it sounds like you have the error reporting configured to a lower level... when developing and debugging it is very useful to show ALL errors, this serves two purposes, 1) It will help you identify and solve problems quicker and easier and 2) it will avoid you picking up any bad habits with "notice code" syntax (ie. code that is erroneous but the errors are not shown as a result of the error reporting level).
If you don't want to/can't change the php.ini setting for error_reporting you can simply add: error_reporting(E_ALL); to the top of your scripts.
Diablo84
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.
I will leave the following recommendation for this question in the Cleanup topic area:
Accept: Diablo84
Any objections should be posted here in the next 4 days. After that time, the question will be closed.
Huji
EE Cleanup Volunteer
Business Accounts
Answer for Membership
by: snoyes_jwPosted on 2005-06-30 at 08:08:23ID: 14338969
Why not instead say
if ($var1 == "blah")
include("file.php");
Then file.php doesn't have to worry about whether it should run or not.