PHP - $_session Data Vanishing

The below should choose the radio button that is set by the $_SESSION variable or default to 3. However, it's defaulting to 1.

Code: [Select]
$content.='
<p class="form_item"><label>Product Rating:</label><br />
<div class="rating_radio"><input type="radio" name="review_product_rating" value="1"';
if(isset($review_product_rating) && $review_product_rating=="1"){$content.='checked';}
$content.=' /> <br />1</div>
<div class="rating_radio"><input type="radio" name="review_product_rating" value="2"';
if(isset($review_product_rating) && $review_product_rating=="2"){$content.='checked';}
$content.=' /> <br />2</div>
<div class="rating_radio"><input type="radio" name="review_product_rating" value="3"';
if(isset($review_product_rating) && $review_product_rating=="3" || !isset($review_product_rating)){$content.='checked';}
$content.=' /> <br />3</div>
<div class="rating_radio"><input type="radio" name="review_product_rating" value="4"';
if(isset($review_product_rating) && $review_product_rating=="4"){$content.='checked';}
$content.=' /> <br />4</div>
<div class="rating_radio"><input type="radio" name="review_product_rating" value="5"';
if(isset($review_product_rating) && $review_product_rating=="5"){$content.='checked';}
$content.=' /> <br />5</div>
<div class="worst">(Worst)</div><div class="best">(Best)</div>
</p>

I'm figuring it's because it's multiple if statement (with no elseif) so it's evaluating the first if and being set to true. I tried changing everything else after the first one to elseif, and it's throwing an unexpected T_ELSEIF error.

First let me explain my code.
It comprises of three php files.

inc_fn_header_and_menu.php,  contains the HTML and CSS header details and it initializes the session via session_start();

 

This  is later included in project_status.php] .

 

In project_status.php] , I have included another file project_status_app.php which contains a HTML form.

 project_status.php:

<?php
 include 'inc_fn_header_and_menu.php';
function includeFile($file,$variable) {
    $var = $variable;
    include($file);
}
if (isset($_GET['id']) && $_GET['id']!="") {
    $pid    = $_GET['id'];
    $_SESSION['pidForApproval'] = $_GET['id'];
    $query = 'SELECT * FROM `profile` WHERE pid ='.'\''.$pid.'\'';
    $result=mysqli_query($db,$queryToRetrievePP) or die("There are no records to display ... \n" . mysqli_error());
    foreach ($result as $row) {
        $status = $row['status'];
    }        
}
...........some PHP and HTML code.......
	<div id="customerPurchaseApprovalForm">
<?php  
  echo '<p>APPROVAL FOR CUSTOMER PURCHASE</p>';
  $discountApprovalStatus = "Granted";
  if ($discountApprovalStatus == "Granted") {  
 
  includeFile("project_status_app.php",$highestannualvalue);
  } else {
     //.........
  }

In project_status_app.php I am attempting to retrieve pidForApproval from the $_SESSION array.

<?php
        // put your code here  UPDATE `pp` SET `customer_purchase_remarks` = 'hahaha' WHERE `pp`.`id` = 207;
        
        if ($_SERVER['REQUEST_METHOD'] == 'POST') {
            include '../../inc/fastlogin.php';      
            $sql = "UPDATE pp SET customer_purchase_remarks ='{$_POST['remarkstxt']}' WHERE pp.pid='{$_SESSION['pidForApproval']}'"; 
            $result = mysqli_query ( $fastdb, $sql ) ;
            if (mysqli_affected_rows($fastdb) != 1) { 
               $_SESSION['err_cpa_rmks'] = "<p>Error while updating WHERE id='{$_SESSION['pidForApproval']}'</p>";
                //echo "<p>Error while updating WHERE id='{$_POST['pidForApproval']}'</p>".mysqli_error($fastdb);                 
            } else { 
                $_SESSION['suc_cpa_rmks'] = "<p>Records was updated successfully.</p>";
                //echo "Records was updated successfully."; 
            }
            header ("location: project_status.php?id="$_SESSION['pidForApproval']);
            exit();
        }    
        
        ?>

When I load  project_status.php,  project_status_app.php is supposed to display the form. Once the user fills in the form the and the submit button has been pressed, the UPDATE statement is supposed to run and then it is supposed to navigate back to project_status.php?id=FA142. But the update is failing and the when the project_status.php is loaded back, the url looks like this http://localhost/fast/project_status.php?id= . The id is empty. It is supposed to be something like this http://localhost/fast/project_status.php?id=FA142. With the id being populated at the 

header ("location: project_status.php?id=".$_SESSION['pidForApproval']);

I suspected that my $_SESSION['pidForApproval'] is not being populated in project_status.php but I echoed back $_SESSION['pidForApproval'] in that file itself and I can see it is being populated. Hence, I suspect that the $_SESSION['pidForApproval'] is not being passed to project_status_app.php. I have already attempted to include session_start(); clause in project_status_app.php but that gives an error, stating that the session has already started, in inc_fn_header_and_menu.php. Can someone help me as to why the $_SESSION['pidForApproval'] is not being passed on to the project_status_app.php file. Thank you.

Edited August 9, 2020 by Robinson
Missing some information.

Hello everyone, I am working on a form that is similar to a shopping cart system and I am thinking of creating a button that submits the checked value and saves them to a $_SESSION variable. And also a link that links to a cart.html that takes the values of a $_SESSION variable. I am have trouble figuring what tag/attribute should I use in order to achieve that.   Right now my code attached below submits the checked values to cart.html directly. However I want my submit button to save the checked box to a $_SESSION variable and STAY on the same page. And then I will implement a <a> to link to the cart.php.   I researched a little bit about this subject and I know it's somewhat related to ajax/jquery. I just wanted to know more about it from you guys. I appreciate your attention for reading the post and Thanks!   Below is the form that I currently have:

<form name= "finalForm" method="POST" action="cart.php">
<input type="Submit" name="finalSelected"/>

<?php foreach($FinalName as $key => $item) {?>
<tr>
<td><input type="checkbox" name="fSelected[]" value="<?php echo htmlspecialchars($FinalID[$key])?>" />
<?php echo "$FinalID[$key] & $item";?>
</td>
</tr>
<?php } ;?>

Below is the code for cart.php

<?php
require ('connect_db.php');
if(isset($_POST['finalSelected']))
{
	if(!empty($_POST['fSelected']))
	{
		$chosen = $_POST['fSelected'];
		foreach ($chosen as $item)
			echo "aID selected: $item </br>";
		$delimit = implode(", ", $chosen);
		print_r($delimit);
	}

}
if(isset($delimit))
{
$cartSQL = "SELECT * from article where aID in ($delimit)";
$cartQuery = mysqli_query($dbc, $cartSQL) or die (mysqli_error($dbc));
while($row = mysqli_fetch_array($cartQuery, MYSQLI_BOTH))
{
	$aTitle[] = $row[ 'name' ];
}
}
?>

<table>
	
		<?php if(isset($delimit)) { 
		$c=0; foreach($aTitle as $item) {?>
		<tr>
		<td>
			<?php echo $aTitle[$c]; $c++;?>
		</td>
		</tr>
		<?php }}?>
</table>

For the last few hours I have been pulling my hair out on a session not storing when I moved from local host to my vps.

I have been setting sessions like:


$_SESSION['mydata'] = $variable;


This works no problem on my wamp installation.

However to get it to work on my vps, I have to store them like this


$_SESSION[mydata] = $variable;


Can someone please explain to me why this is the case?

Hey, i was reading some code and i find this:

if(stristr($_SESSION["s"]["user"]["asdasd"]),$someString)


How the double/triple [] in $_SESSION works ?

PS: I tryied to google it but it was kinda hard to search :X

Thanks.

PHP 5.3.3

I am trying to redirect a user (currently logged in) to a page where they are able to edit a posted comment.

To keep things secure I am using a forms hidden input value to pass the {postID} to a redirect page

Code: [Select]
<form name="post_edit" method="post" action="post-edit-redirect.php" >
<input type="hidden" name="local" id="local" value="<?php echo $row_rsPosts['postID']; ?>" />
<input type="image" src="../imgs/managepost.png" name="submit" />
</form>

On the redirect page (simplified below) I am setting the {postID} in a SESSION before redirecting to the user to the page to edit their post with the new $_SESSION val for {postID} set.

Code: [Select]
session_start();
$id = $_REQUEST['local'];
$_SESSION['postID']=$id;
header("Location: edit-post.php");

This is working fine in every browser except IE (some one please just put an end to it), where when the edit-post.php page is reached the $_SESSION['postID'] is empty.  If I regenerate the session ID from the redirect page as below IE then sets the SESSION ok.

Code: [Select]
session_start();
session_regenerate_id();
$id = $_REQUEST['local'];
$_SESSION['postID']=$id;
header("Location: edit-post.php");

However there should be no need to do this and would rather not if there is no need.

Any help on why IE is not setting the SESSION is appreciated, and I hope I am not covering old ground here however I am unable to find a solution anywhere. - Cheers

Hi i have made a login in system for a website iam trying to make. after you log  in im trying to display the members username via the $_session created in the check_login.php. but when i Echo or print_r the $_session all is get is  "welcome  array" its like its not passing any information via the $_session from page to page. here is my code thanks in advance.


Check_login.php
session_start();

// username and password sent from form
$myusername=$_POST['myusername'];
$mypassword=md5($_POST["mypassword"]);

// To protect MySQL injection (more detail about MySQL injection)
$myusername = stripslashes($myusername);
$mypassword = stripslashes($mypassword);
$myusername = mysql_real_escape_string($myusername);
$mypassword = mysql_real_escape_string($mypassword);

$sql="SELECT * FROM $tbl_name WHERE username='$myusername' and password='$mypassword'";
$result=mysql_query($sql);

// Mysql_num_row is counting table row
$count=mysql_num_rows($result);
// If result matched $myusername and $mypassword, table row must be 1 row

if($count==1){
// Register $myusername, $mypassword and redirect to file "login_success.php"
$_SESSION["myusername"]==$myusername;
$_SESSION["mypassword"];

header("location:login_success.php");
}
else {
echo "Wrong Username or Password";
}

?>

login_success.php

<?
session_start();
if($_SESSION['myusername']="$myusername"){
header("location:main_login.php");
}

Echo "welcome" . $_SESSION['$myusername'];

?>

thanks

The $_Session has a url variable. Using a Dom how do I properly do:

Code: [Select]
html->load($_SESSION['variable'])

I was thinking about breaking down the session to retrieve the value inside but I don't know how.


 

edited

Hi i'm new to the forum and i'm wondering if anyone here could help me out with the problem i'm having. the script i have uses $_SESSION['userid'] = $users['id']; and i'm not exactly sure how to read that .. any information would be helpful. thanks in advance

hello all, hoping someone can help, i am still pretty new to php and i am stuck on creating a php cart.
the code i have below is working, but the problem i am having is i need a store in the session array i am struggling to get my head around it so hoping someone can help here.
i am hoping to have $product_id (which is currently in) $option1,2,3 and $text (for a textarea box)
heres my function file
function get_product() { echo "Hello"; } function add_product() { $product_id = $_POST['product_id']; if ($product_id == 'NULL') { echo "No Product Selected!"; } if (isset($_SESSION['cart'][$product_id])) { $_SESSION['cart'][$product_id]++; echo "<script>window.location='product.php'</script>"; }else{ $_SESSION['cart'][$product_id] = 1; echo "<script>window.location='product.php'</script>"; } } function increase_product() { $product_id = $_GET['product_id']; $_SESSION['cart'][$product_id]++; echo "<script>window.location='cart.php'</script>"; } function decrease_product() { $product_id = $_GET['product_id']; $_SESSION['cart'][$product_id]--; echo "<script>window.location='cart.php'</script>"; } function empty_cart() { unset($_SESSION['cart']); echo "<script>window.location='cart.php'</script>"; } }()
my product page (currently with out the extra form items (option1,2,3 etc)
include '_class/cart.php';$core->session($mode = 'start');if(isset($_POST['buy'])){$cart->add_product();}?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><title>Product</title></head><body><?php $core->navbar();?><form method="post" action=""><input name="product_id" type="hidden" value="Coffee" /><h1>Cup Of Coffee</h1><p>Buy me you know you want too!</p><input name="buy" type="submit" value="Add To Basket" id="buy" /></form><form method="post" action=""><input name="product_id" type="hidden" value="Biscuits" /><h1>Barrel Of Biscuits</h1><p>When Coffee Just Gives You The Munchies!</p><input name="buy" type="submit" value="Add To Basket" id="buy" /></form></body></html>()
my include cart file
if (isset($_SESSION['cart'])) {//Session Cart foreach($_SESSION['cart'] as $product_id => $quantity){//Session Array if($quantity < 1){//Quantity Less Then 1 unset($_SESSION['cart'][$product_id]); echo "<script>window.location='cart.php'</script>"; }//End Quantity Less Then 1 if(!$_SESSION['cart']){//Cart Array Empty unset($_SESSION['cart']); echo "<script>window.location='cart.php'</script>"; }//End Cart Array Empty if ($product_id != NULL){//Show Products echo '<h1>' . $product_id . '</h1>'; echo "Quantity <br>"; ?><a href="cart.php?product_id=<?php echo $product_id; ?>&option=increase">+</a> <?php echo $quantity; ?> <a href="cart.php?product_id=<?php echo $product_id; ?>&option=decrease">-</a><?php }//End Show Products }//End Session Array require 'library/paypal.php'; }else{ echo "Your Basket Is Empty"; }//End Session Cart()
and my actual cart file

include '_class/cart.php';$core->session($mode = 'start');?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><title>Cart</title></head><body><?php$core->navbar(); if (isset($_GET['product_id']['option'])) { $product_id = $_GET['product_id']; $option = $_GET['option']; if ($option == 'decrease'){ $cart->decrease_product(); } if ($option == 'increase'){ $cart->increase_product(); } }elseif (isset($_GET['option'])){ $option = $_GET['option']; if ($option == 'empty'){ $cart->empty_cart(); } }else{ require 'library/cart.php'; }?><p><a href="cart.php?option=empty">Empty Cart</a></p></body></html>()


please explain answers or exmples as clear as possible thanks everyone

I, for some unknown reason, decided to attempt to build my first social networking website for my senior project. I am sort of a dumb dumb when it comes to PHP. For what I am currently working on now I need to display "members" that go to the same "school" and start in the same "semester" according to whomever is currently logged in. I understand $_SESSION['userid'] = mysql_insert_id(); is tracking the current user, but how would I track other information attached to that current user. The "school" and "semester" are tracked within tables outside of the "user" table.

Any help at all would be awesome. If you need anymore information let me know.

Thanks a trizillion.

HI all i have the following code:

<?php 

ini_set('display_errors', 1);
ini_set('display_startup_errors', 1);
error_reporting(E_ALL);

if (session_status() == PHP_SESSION_NONE) {
  session_start();
}

if (!isset($_SESSION['user_name'])){
	header("location: index.php");
}
mysqli_report(MYSQLI_REPORT_ERROR | MYSQLI_REPORT_STRICT);
include '../_includes/dbconn.php';	

if($_SERVER['REQUEST_METHOD']=='POST'){
	if(isset($_POST['delete-equipment-button'])){
		$eid = $_POST['EM-id'];

		$stmt = $conn->prepare("
			SELECT a.equipment_id, b.equipment_name 
			from ssm_equipment_order a 
			inner join ssm_equipment b 
			on a.equipment_id = b.equipment_id 
			where a.equipment_id = ?
			");
		$stmt->bind_param('i', $eid);
		$stmt->execute();
		$stmt->store_result();
		$stmt->bind_result($eid, $eqname);
		$stmt->fetch();
		$instances = $stmt->num_rows;
		$_SESSION['eqname']="$eqname";
		if($instances>0){
			$_SESSION['updateEquipment']="is being used in an active order and cannot be deleted";
			header("location: ../equipment-list.php");
		}else{
			$_SESSION['updateEquipment']="has been successfully deleted";
			$stmt = $conn->prepare("
			DELETE FROM ssm_equipment WHERE equipment_id = ?
			");
		$stmt->bind_param('i', $eid);
		$stmt->execute();
		var_dump($_SESSION);
		// header("location: ../equipment-list.php");
		}
	}
}
 ?>

The session variable eqname gets set properly when the delete fails (the first half of my if).  When i get to the else, the session does not set a value.

I assumed that it was because the item whose name i am trying to get is being deleted but i thought this would happen after i have set the session variable and therefore be preserved for when i get back to the equipment list?

As always, i appreciate your help.

// SESSION TEST
if ($_SESSION['username']) {
require_once("../mysql.php");
// Find Username from Session ID

// Find Username from ID
$finduser="SELECT username FROM users WHERE id='$_SESSION[username];'";
$finduserquery=mysql_query($finduser)or die(mysql_error());
$userfetch = mysql_fetch_array($finduserquery);
// Set Username Variable
$userfromid = $userfetch['username'];
echo "lol" . ucwords($userfromid);
} else {
}

Everytime I load this page more than once when logged in, it seems to turn the variable blank. Therefore making the user not be able to view other pages that use a session.
Help?
Thanks

Hiya, I'm quite new to php.
My script was working fine till I transferred to a new host. The login system doesn't seem to register the $_SESSION 'userid' variable, so the proper page won't load because it thinks I'm not logged in.
login.php - processes the login information
Code: [Select]
<?php
session_start();
include('functions.php');
connect();
// note: session_start needs to be on every document apart 
// from index.php, login.php and register.php

$username = protect($_POST['username']);
$password = protect($_POST['password']);
// the password and username from the inputs are stored in variables

if ($username&&$password) {
// if both the username and password variables are true
$query = mysql_query("SELECT * FROM users WHERE username='$username'");
$numrow = mysql_num_rows($query); 

if ($numrow!=0) {
// if $numrow does not equal nothing
while ($row = mysql_fetch_assoc($query)) {
$userid = $row['userid'];
$dbusername = $row['username'];
$dbpassword = $row['password'];
}
if ($username==$dbusername&&md5($password)==$dbpassword) {
// $password gets encrypted so it can be checked on the database password
$_SESSION['username'] = $username;
$_SESSION['userid'] = $userid;
// used for sessions knowing who is logged in
header("Location:main.php");
// redirects to main.php page after successful login
} else {
echo "Incorrect password";
}
} else {

?>
<html>
<head>
<title>University Crusade</title>
<link rel="stylesheet" href="css/style.css" type="text/css" media="screen">
<meta name="viewport" content="width=device-width, minimum-scale=1,maximum-scale=1, user-scalable=no">
</head>
<body>
<div id="wrapper">
<?php
die ("

That account doesn't exist...<br /><a href=\"index.php\">try again,</a>
&nbsp;<a href=\"register.php\">or register an account.</a>
");
}
} else {
die("Please enter a username and password");
}
?>
</div>
<div id="footer">

</div>
</body>
</html>

and the main.php - after login.php it takes the user here
Code: [Select]
<?php 
session_start();
include('functions.php');
connect();
?>
<html>
<head>
<title>University Crusade</title>
<link rel="stylesheet" href="css/new.css" type="text/css" media="screen">
<meta name="viewport" content="width=device-width, minimum-scale=1,maximum-scale=1, user-scalable=no">
</head>
<body>
<?php
if (isset($_SESSION['userid'])) {
include('safe.php');
?>
<ul id="tab-nav">
<li><a href="stats.php" id="tab-character">CHARACTER</a></li>
<li><a href="games.php" id="tab-games">GAMES</a></li>
<li><a href="account.php" id="tab-account">ACCOUNT</a></li>
</ul>
<div id="wrapper">
<h2 id="name">Hello,&nbsp;<?php echo $_SESSION['username'] ?>!</h2>
<p>
Welcome to UNIVERSITY CRUSADE the fantasy-themed pervasive web game!
</p>
<p>
To start playing, begin with clicking the "games" button at the top of
the screen, from there choose a challenge and follow the instructions
</p>
<p>
What are the other buttons for? Well, the "account" button (top-right)
is where you can change settings for your account - things like changing
your password, deleting your account etc. The "character" button (top-left)
when clicked takes you to your character, you can change your display picture,
view your statistics and battle other players.
</p>
<p>
More help with the game is available in the "account" section, this includes
a detailed game manual describing in-detail game concepts and information.
</p>
</div>
<div id="footer">
<a href="logout.php" class="button">log me out</a>
</div>
<?php
} else {
die ("
<div id=\"wrapper\">
<p>Opps! You don't seem to be logged in...</p>
<a class=\"button\" href=\"index.php\">login now</a><br />
<p>Don't have an account? No worries, just <a href=\"register.php\">register for one.</a></p>
</div>
");
}
?>
</body>
</html>
I appreciate any help, as I'm left scratching my head.