I am making a website that allows users to login, so when I login it logs in, but if i refresh the page the session ends? I know that it should not be doing this. Basically my problem is my page is destroying the session when the page is refreshed. Any help would be much appreciated!
Heres my main login code:
if(isset($_POST['username'])&&isset($_POST['password'])) {
$username = $_POST['username'];
$password = $_POST['password'];
$password_hash = md5($password);
if (!empty($username)&&!empty($password)) {
$query = "SELECT * FROM employees WHERE username = '$username' AND password = '$password_hash'";
$query_run = mysql_query($query);
$mysql_num_rows = mysql_num_rows($query_run);
if ($mysql_num_rows == 0) {
echo 'Unable to log in, username and/or password does not match!'.'<br><br>';
echo '<a href = "#">Try Again!</a>';
} else if ($mysql_num_rows == 1) {
$user_id = mysql_result($query_run, 0, 'id');
$first_name = mysql_result($query_run, 0, 'firstname');
$last_name = mysql_result($query_run, 0, 'lastname');
$user_name = mysql_result($query_run, 0, 'username');
$pass_word = mysql_result($query_run, 0, 'password');
$email = mysql_result($query_run, 0, 'email');
$grade = mysql_result($query_run, 0, 'Security Clearance');
$_SESSION['user_id']=$user_name;
}
}
}
Heres my core.php
ob_start();
session_start();
function loggedin() {
if(isset($_SESSION['user_id'])&&!empty($_SESSION['user_id'])) {
return true;
} else {
return false;
}
}
Heres my index page (the page the user see's when logged in)
require 'core.php';
require 'connect.inc.php';
// The page to connect to my MySQL db
include 'main_login.inc.php';
if (loggedin()) {
// if logged in : do stuff
}
} else {
// if its not logged in : redirect
// If User Is Not Logged: Redirect To Jamie Co Home
header('Location: #');
}
