How to do that user will not be automatic logged in? Need help

Codewalkers Forums Sponsor:

November 23rd, 2005, 12:57 PM

toplisek

Contributing User

Join Date: Apr 2007

Posts: 140

Time spent in forums: 9 m 22 sec
Reputation Power: 3

How to do that user will not be automatic logged in? Need help

I have cookie and it is set with code:

php Code:

Original - php Code
setcookie('cookname', $_POST['usernamelogin']);

setcookie('cookname', $_POST['usernamelogin']);

user is automatic logged in with code on each page:

php Code:

Original - php Code

if(isset($_COOKIE['cookname']) /*&& isset($_COOKIE['cookpass'])*/)
          {
            $user = $_COOKIE['cookname'];
          //  $crypt_user = md5 ($_COOKIE['cookname'] );
            $SESSID  = md5( time() );
           /* $password = $_COOKIE['cookpass'];   */

$sql = "SELECT * FROM membership WHERE usernamemem = '$user'";
               $sql = mysql_query($sql);
        	   $result = mysql_fetch_assoc($sql);

if(   $user == $result['usernamemem'] /*&&
            		      $password == $result['password']*/    )
                  {
                        //  $_SESSION['logged'] = TRUE;
                        // $validation=TRUE;
                         $SESSID  = md5( time() );

$query1 = " DELETE FROM users_session
                            WHERE SESSusername = '{$user}'";
                             mysql_query ($query1,$link)
                             or die ("Delete error:".mysql_error());

$query2 = "INSERT INTO users_session
                           SET
                              `SESSID` = '{$SESSID}',
                              `SESSusername` = '{$user}',
                      	      `SESSIP` = '{$_SERVER['REMOTE_ADDR']}',
                              `SESStype` = 'logged',
                      		  `TimeOut` = UNIX_TIMESTAMP()" ;
                                $_SESSION['logged'] = TRUE;
                                $_SESSION['SESSID']= $SESSID;
                                $_SESSION['SESSusername'] = $user;
                                $_SESSION['SESSIP']= $_SERVER['REMOTE_ADDR'];
                                $_SESSION['SESStype']= 'logged';
                                $_SESSION['TimeOut']= 'UNIX_TIMESTAMP()';
                           mysql_query ($query2,$link)
                           or die ("Insert error:".mysql_error());
                      			     	//print 'logged in!!';
            	     }    //passwords dont mach
           }

 
   if(isset($_COOKIE['cookname']) /*&& isset($_COOKIE['cookpass'])*/)
          {
            $user = $_COOKIE['cookname'];
          //  $crypt_user = md5 ($_COOKIE['cookname'] );
            $SESSID  = md5( time() );
           /* $password = $_COOKIE['cookpass'];   */
 
 
               $sql = "SELECT * FROM membership WHERE usernamemem = '$user'";
               $sql = mysql_query($sql);
               $result = mysql_fetch_assoc($sql);
 
               if(   $user == $result['usernamemem'] /*&&
                          $password == $result['password']*/    )
                  {
                        //  $_SESSION['logged'] = TRUE;
                        // $validation=TRUE;
                         $SESSID  = md5( time() );
 
 
                          $query1 = " DELETE FROM users_session
                            WHERE SESSusername = '{$user}'";
                             mysql_query ($query1,$link)
                             or die ("Delete error:".mysql_error());
 
                           $query2 = "INSERT INTO users_session
                           SET
                              `SESSID` = '{$SESSID}',
                              `SESSusername` = '{$user}',
                              `SESSIP` = '{$_SERVER['REMOTE_ADDR']}',
                              `SESStype` = 'logged',
                            `TimeOut` = UNIX_TIMESTAMP()" ;
                                $_SESSION['logged'] = TRUE;
                                $_SESSION['SESSID']= $SESSID;
                                $_SESSION['SESSusername'] = $user;
                                $_SESSION['SESSIP']= $_SERVER['REMOTE_ADDR'];
                                $_SESSION['SESStype']= 'logged';
                                $_SESSION['TimeOut']= 'UNIX_TIMESTAMP()';
                           mysql_query ($query2,$link)
                           or die ("Insert error:".mysql_error());
                                  //print 'logged in!!';
                     }    //passwords dont mach
           }

How to do that if user decides logout, cookie will be with value empty? I have on logout page:

php Code:

Original - php Code
setcookie('cookname', '', time()-3600); $_COOKIE['cookname']=FALSE; session_destroy();

setcookie('cookname', '', time()-3600); 
 
$_COOKIE['cookname']=FALSE;
session_destroy();

But this logout does not reset cookie. What is problem? Please help..he will be again logged in

November 25th, 2005, 12:24 AM

lig

"Forum Nazi"

Codewalkers Demi-God (4500 - 4999 posts)

Join Date: Apr 2007

Location: Jacksonville, Fl

Posts: 4,753

Time spent in forums: 4 Days 8 h 15 m 54 sec
Reputation Power: 7

RE: How to do that user will not be automatic logged in? Need help

I beleive you need to unset the cookie, not make it's value false and destroy the seesion.

November 25th, 2005, 09:35 AM

Anonymous

Registered User

Codewalkers God 35th Plane (22000 - 22499 posts)

Join Date: Apr 2007

Posts: 22,309

Time spent in forums: < 1 sec
Reputation Power: 25

RE: How to do that user will not be automatic logged in? Need help

I have noticed that to unset the cookie, I have to give under
session_start();
setcookie('cookname', '', time()-3600);

Now it works, but I would like to include file in logout page. Do you know how is correct all code to
reset all session and cookies in such file?

November 27th, 2005, 04:22 AM

lig

"Forum Nazi"

Join Date: Apr 2007

Location: Jacksonville, Fl

Posts: 4,753

Time spent in forums: 4 Days 8 h 15 m 54 sec
Reputation Power: 7

RE: How to do that user will not be automatic logged in? Need help

I would also look in the manual under unset.

php Code:

Original - php Code
unset($_COOKIE['cookname']);

 
unset($_COOKIE['cookname']);

Viewing: Codewalkers Forums > PHP Related > PEAR Packages > How to do that user will not be automatic logged in? Need help

« Previous Thread | Next Thread »

Thread Tools	Search this Thread
Email this Page	Search this Thread: Advanced Search
Display Modes	Rate This Thread
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode	Rate This Thread:

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts vB code is On Smilies are On [IMG] code is On HTML code is Off

View Your Warnings | New Posts | Latest News | Latest Threads | Shoutbox

Forum Jump

Free IT White Papers!

How to Present Effectively Online
This white paper offers practical and actionable advice on the key steps that any presenter should consider as they plan and execute a Webinar or online meeting.
Request Your Free Technology Downloads!

Open Source Security Myths
Open Source Software (OSS) is computer software whose source code is available to the general public with relaxed or non-existent intellectual property restrictions (or arrangement such as the public domain), and is usually developed with the input of many contributors.
Request Your Free Technology Downloads!

Power and Cooling Capacity Management for Data Centers
This paper describes the principles for achieving power and cooling capacity management.
Request Your Free Technology Downloads!

Scalable, Fault-Tolerant NAS for Oracle - The Next Generation
For several years NAS has been evolving as a storage alternative for Oracle databases, and for good reason: NAS is quite often the simplest, most cost-effective storage approach for Oracle. Learn about the benefits that HP's approach to scalable NAS brings to Oracle environments in this comprehensive white paper.
Request Your Free Technology Downloads!

Understanding Web Application Security Challenges
This white paper discusses many common threats and preventive measures for Web application security, and explains what you can do to help protect your organization.
Request Your Free Technology Downloads!

More Free IT White Papers!