Problem: Creating a dynamic Game using PHP and Database. Users has to log on. I need to make sure the user has logged on before accessing certain pages. At the moment, they can simple go to the restricted pages without logging on. I am trying to solve this issue using PHP Sessions.
here is the site. Here are the relevant pieces of Code as well:
Index:
CODE
<?php session_start(); ?>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"
"http://www.w3.org/TR/html4/strict.dtd">
<?php $_SESSION['test'] = Ethan; ?>
<html lang="en">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title>Wonder Game</title>
<meta name="generator" content="TextMate http://macromates.com/">
<meta name="author" content="Ethan Mick">
<!-- Date: 2008-06-30 -->
<link rel="stylesheet" type="text/css" href="http://wondergame.freehostia.com/open/MainDesign.css" />
</head>
<body>
<div id="main">
<div id="header"><p>Here there will be a Logo!</p>
<?php echo $_SESSION['test']; ?>
</div>
<div id="leftbar">
<p>Welcome to</p> <h1>Wonder</h1> <p>the game of economic Domination.</p>
<p>Because Wonder is the in the Pre-alpha stages, only people who have a code may sign up. This is to keep the riff-raff out while we prepare the game for the masses. This site will be updated as soon as the internal workings of the game are complete.</p>
<p>Thank you for your cooperation.</p>
<p>If you are curious about this game and want more information, we have set up a <a href="http://wondergame.freehostia.com/blog/">blog</a>, and it has a <a href="http://wondergame.freehostia.com/blog/?page_id=4">Change log</a> for recent changes.</p>
</div>
<div id="rightbar">
<form action="http://wondergame.freehostia.com/open/WonderLogin.php" name="userlogin" method="post">
Username: <input type="text" name="username" id="">
Password: <input type="password" name="password" id="">
<input type="submit" value="Submit">
If you have a testing code, Redeem it <a href="http://wondergame.freehostia.com/open/register.html">here.</a>
</div>
</body>
</html>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"
"http://www.w3.org/TR/html4/strict.dtd">
<?php $_SESSION['test'] = Ethan; ?>
<html lang="en">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title>Wonder Game</title>
<meta name="generator" content="TextMate http://macromates.com/">
<meta name="author" content="Ethan Mick">
<!-- Date: 2008-06-30 -->
<link rel="stylesheet" type="text/css" href="http://wondergame.freehostia.com/open/MainDesign.css" />
</head>
<body>
<div id="main">
<div id="header"><p>Here there will be a Logo!</p>
<?php echo $_SESSION['test']; ?>
</div>
<div id="leftbar">
<p>Welcome to</p> <h1>Wonder</h1> <p>the game of economic Domination.</p>
<p>Because Wonder is the in the Pre-alpha stages, only people who have a code may sign up. This is to keep the riff-raff out while we prepare the game for the masses. This site will be updated as soon as the internal workings of the game are complete.</p>
<p>Thank you for your cooperation.</p>
<p>If you are curious about this game and want more information, we have set up a <a href="http://wondergame.freehostia.com/blog/">blog</a>, and it has a <a href="http://wondergame.freehostia.com/blog/?page_id=4">Change log</a> for recent changes.</p>
</div>
<div id="rightbar">
<form action="http://wondergame.freehostia.com/open/WonderLogin.php" name="userlogin" method="post">
Username: <input type="text" name="username" id="">
Password: <input type="password" name="password" id="">
<input type="submit" value="Submit">
If you have a testing code, Redeem it <a href="http://wondergame.freehostia.com/open/register.html">here.</a>
</div>
</body>
</html>
WonderLogin.php:
CODE
<?php session_start(); ?>
<?php
ob_start();
$user = ($_POST['username']);
$pass = md5($_POST['password']);
$con = mysql_connect("mysql4.freehostia.com","ethmic_ethmic","Password");
if (!$con)
{
die('Could not connect: ' . mysql_error());
}
echo "It Connected";
echo "
";
mysql_select_db("ethmic_ethmic", $con);
$query = "SELECT username, password FROM wonder_users WHERE Username='". $user ."' AND Password='". $pass ."'";
$result = mysql_query($query) or die ( mysql_error() );
if(mysql_num_rows($result) == 1)
{
header('Refresh: 5; url=http://wondergame.freehostia.com/closed/home.htm');
setcookie("wonder_define_login", "login_true", time()+360000000);
$_SESSION['user'] = $user;
$_SESSION['logged_in'] = TRUE;
echo $_SESSION['user'];
echo "<h1>Log in successful.</h1>"; echo "
";
echo "You have been logged in successfully. You should be redirected shortly. If not, please click the link below."; echo "
";
echo "Please go here: http://wondergame.freehostia.com/closed/home.htm";
exit;
}
else
{
echo "did not log in.";
}
ob_flush();
?>
<?php
ob_start();
$user = ($_POST['username']);
$pass = md5($_POST['password']);
$con = mysql_connect("mysql4.freehostia.com","ethmic_ethmic","Password");
if (!$con)
{
die('Could not connect: ' . mysql_error());
}
echo "It Connected";
echo "
";
mysql_select_db("ethmic_ethmic", $con);
$query = "SELECT username, password FROM wonder_users WHERE Username='". $user ."' AND Password='". $pass ."'";
$result = mysql_query($query) or die ( mysql_error() );
if(mysql_num_rows($result) == 1)
{
header('Refresh: 5; url=http://wondergame.freehostia.com/closed/home.htm');
setcookie("wonder_define_login", "login_true", time()+360000000);
$_SESSION['user'] = $user;
$_SESSION['logged_in'] = TRUE;
echo $_SESSION['user'];
echo "<h1>Log in successful.</h1>"; echo "
";
echo "You have been logged in successfully. You should be redirected shortly. If not, please click the link below."; echo "
";
echo "Please go here: http://wondergame.freehostia.com/closed/home.htm";
exit;
}
else
{
echo "did not log in.";
}
ob_flush();
?>
home.htm:
CODE
<?php session_start(); ?>
<?php
if(!$_SESSION['logged_in'])
{
header("Location: http://wondergame.freehostia.com");
}
?>
<html>
<head>
<title>Wonder: The Game of Economic Domination</title>
<link rel="stylesheet" type="text/css" href="http://wondergame.freehostia.com/common.css" />
</head>
<body>
<p>welcome <?php
echo $_SESSION['user'];
echo "Does this PHP work? Do you see your username?";
?>
</p>
<p>How are you?</p>
<a href="http://wondergame.freehostia.com/game/resourceupdate.php">Test Game Mechanics!</a>
</body>
</html>
<?php
if(!$_SESSION['logged_in'])
{
header("Location: http://wondergame.freehostia.com");
}
?>
<html>
<head>
<title>Wonder: The Game of Economic Domination</title>
<link rel="stylesheet" type="text/css" href="http://wondergame.freehostia.com/common.css" />
</head>
<body>
<p>welcome <?php
echo $_SESSION['user'];
echo "Does this PHP work? Do you see your username?";
?>
</p>
<p>How are you?</p>
<a href="http://wondergame.freehostia.com/game/resourceupdate.php">Test Game Mechanics!</a>
</body>
</html>
So, what happens, is the user logs on through the form on the index. It goes to the PHP file which checks if they are a valid user, if so, they are pushed ahead. Now, I put sessions starting on all the pages, and what needs to happen is in the WonderLogin.php, it needs to add the Variable, "$_SESSION['logged_in'] = TRUE;" and have that be seen by all the others pages to test if the user logged on or not.
I know vairables can be stored; on "WonderLogin.php" it echoes " $_SESSION['user'] = $user;" and that happens. It jus doesn't happen on "home.htm"
Any ideas? And again, if you think that by looking at all the code for a while on the Server would allow you to figure it out, send me a PM. I want to be able to log in effectively!!! Erm, if you want me to make a Username for you too, send a PM. We require ppl to have registration codes to keep out riff-raff. Thank you!!!!
