Registering PHP Session Variable

php session-variables
12,493

Solution 1

you need:

  1. put session_start() in start of your code
  2. don't use session_register(), is an obsolete function, replace by $_SESSION['foo'] = 'baa';

  3. destruct session:

    session_start();
    session_destroy();

  4. your web application is vulnerably to SQL injection attack. -check best way to stop SQL Injection in PHP

Solution 2

about your logout-button question. You have to start your session first

<?php
//logout.php
session_start();
session_destroy();
echo "Logouted"

instead of 

  session_register()

use just

   $_SESSION['email'] = '';
Share:
12,493
Michelle
Author by

Michelle

Updated on June 14, 2022

Comments

  • Michelle
    Michelle almost 2 years

    I'm trying to create a simple login form. I have session_start(); as the first thing loaded on the page. I have a file login.php which contains the login related code which is processed through an ajax call when the Login button is clicked. It contains:

    if ($_GET['cemail']) {

$email = $_GET['cemail']; 
$password = md5($_GET['cpassword']); 
$sql = "select * from users where email='" . $email . "' and password='" . $password . "'";
$result = mysql_query($sql);
if (mysql_num_rows($result) >= 1) { 
    session_register("email");
}
else {
    echo "<span style='color:#ffffff;'>Invalid Email/Password</span><br>";
}

}

    When I click the Login button, I get this warning:

    Warning: session_register() [function.session-register]: Cannot send session cache limiter - headers already sent (output started at /home/clicker/public_html/hstrial-RBochner/login.php:1) in /home/clicker/public_html/hstrial-RBochner/login.php on line 82

    Line 82 is the line that says session_register("email");

    I also tried to create a Logout button which just calls session_destroy(), but it gives me this:

    Warning: session_destroy() [function.session-destroy]: Trying to destroy uninitialized session in /home/clicker/public_html/hstrial-RBochner/login.php on line 66

    What am I doing wrong here? I've tried placing session_start() in various places. Any help/ideas? Thanks.

  • genesis
    genesis almost 13 years
    I do not agree with your third point - unset($_SESSION); is wrong - php.net/manual/en/function.unset.php#77926
  • Long Ears
    Long Ears almost 13 years
    Might be worth pointing out that if the session works without session_start(), then session.auto_start should be turned off and started explicitly otherwise every request which hits PHP will load (and lock) the session.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Destroy all session variables with PHP
php session variable lost
PHP: Alternative to SESSIONS
Clearing SESSION variables when a tab is closed
Accessing SESSION variables from another php file
Session Variable in Select Statement
PHP: How to store session in cookie
Safari and php sessions not working in facebook iframe
Create a Global Session for all users
Pass PHP session variable into HTML form