Solved

Retrieve session data after page forwarding using the header function

Posted on 2009-03-31
4
698 Views
Last Modified: 2012-05-06
I am trying to have persons register to my website and then have Welcome <name they registered with> on the next page.
I saved formation to a session as follows in the register.php page:
$_SESSION['username']= $username;

I then forwarded the user to the hello.php where they would be greeted with the welcome message as follows:
header('Location:hello.php');

Next, I tried to retrieve information from the session variable in the hello.php as follows:
$username = $_SESSION['username'];
echo $username;

However, the username did not appear. What am I doing wrong and how can I fix it?
See code below (register.php and hello.php).
.........................Hello.php............................
<?php
session_start();
 
$username = $_SESSION['username'];
echo $username;
 
echo 'Registration successful';
session_write_close();
?>
 
 
 
..........................................Register.php...................................................
<html>
<head>
<title>Registration form</title>
</head>
 
<body>
 
<h3>Registration Form</h3>
 
<?php
session_start();
define('SALT_LENGTH', 9);
if(isset($_POST['sendUsername']))
{
    $username = $_POST['username'];
    $password1 = $_POST['password1'];
    $password2 = $_POST['password2'];
    	if(empty($username))
   	{
      	echo "You haven't filled in username!<br/>";
    	}
    	if(empty($password1))
    	{
        	echo "You haven't filled in password!<br/>";
    	}
    	else if(!preg_match("/^[a-zA-Z0-9.,?_]+$/",$password1))
    	{
		echo "You have entered an invalid password!<br/>";
	}
	else if(strlen($password1)<5)
	{
		echo "Your password must be at least 5 characters long!<br/>";
	}
	if(empty($password2))
    	{
        	echo "You haven't retyped your password!<br/>";
     	}
	else if(!preg_match("/^[a-zA-Z0-9.,?_]+$/",$password2))
    	{
		echo "You have entered an invalid password!<br/>";
	}
	else if(strlen($password2)<5)
	{
		echo "Your password must be at least 5 characters long!<br/>";
	}
	else if($password1!=$password2)
	{
		echo "Your password must be the same!<br/>";
	}
	else
	{
		$dbServer = '127.0.0.1';
		$dbUser = 'alpha';
		$dbPass = 'qwerty';
		$dbName = 'myusers';
 
		$conn = mysql_connect($dbServer, $dbUser, $dbPass) or
			die('Error connecting to mysql' . mysql_error());
		$db = mysql_select_db($dbName, $conn) or
			die('Error selecting database' . mysql_error());
		$username = mysql_real_escape_string($username);
		$password = generateHash($password1);
		$query1 = "SELECT * FROM users WHERE username = '$username'";
		$result = mysql_query($query1);
		if (mysql_fetch_assoc($result)!=0)
		{
			echo "The user name entered is already taken";
		}
		else 
		{
			$query = "INSERT INTO users(username, passwordHash) VALUES('$username','$password')";
			//mysql_query($query);
			$_SESSION['username']= $username;
			header('Location:hello.php');
		}
		
		
		mysql_close($conn);
	}
}
 
 
function generateHash($plainText, $salt = null)
{
    if ($salt === null)
    {
        $salt = substr(md5(uniqid(rand(), true)), 0, SALT_LENGTH);
    }
    else
    {
        $salt = substr($salt, 0, SALT_LENGTH);
    }
 
    return $salt . sha1($salt . $plainText);
}
session_write_close();
?>
 
<p>
 
<form method="post" action="register.php">
<b>Username:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</b><input name="username" type="text" size="20"  value="<?php echo $username; ?>"><br/>
<b>Password:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</b><input name="password1" type="password" size="20"  value="<?php echo $password1; ?>"><br/>
<b>Retype password:</b><input name="password2" type="password" size="20"  value="<?php echo $password2; ?>"><p>
<input name="sendUsername" type="submit" value="submit">
</form>
 
</body>
</html>

Open in new window

0
Comment
Question by:kgpretty
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 39

Accepted Solution

by:
Roger Baklund earned 125 total points
ID: 24035053
In Register.php, you must call session_start() before you send any output to the browser. Start it like this:

<?php session_start(); ?>
<html>
<head>
<title>Registration form</title>
</head>
0
 

Author Comment

by:kgpretty
ID: 24035839
Where should lines 26 - 111 go?
0
 
LVL 2

Expert Comment

by:toymachiner62
ID: 24035858
I think they'll be alright. Just try putting line 25 at the very beginning
0
 

Author Closing Comment

by:kgpretty
ID: 31565124
Thanks
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Author Note: Since this E-E article was originally written, years ago, formal testing has come into common use in the world of PHP.  PHPUnit (http://en.wikipedia.org/wiki/PHPUnit) and similar technologies have enjoyed wide adoption, making it possib…
Since pre-biblical times, humans have sought ways to keep secrets, and share the secrets selectively.  This article explores the ways PHP can be used to hide and encrypt information.
The viewer will learn how to count occurrences of each item in an array.
The viewer will learn how to look for a specific file type in a local or remote server directory using PHP.

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question