duanjuebin2519 2011-09-08 17:59
浏览 12
已采纳

PHP会话不按预期运行 - 我该如何解决?

Here is my index.php

<?php 
session_start();
if($_SESSION['authorizedreferral'] == false){       //login.php sets 'authorizedreferral' to false, and redirects to here. That way, login.php can't be accessed directly.
    session_destroy();                              //destroy the session, so the 'authorizedreferral' session is revaluated each time.
    echo "<h1>No ticky, no washy!</h1>";            //Sorry, don't pass go, and don't collect $200

}elseif(!isset($_COOKIE['loggedin'])){              //if there isn't a 'loggedin' cookie set, forward to the login.php page
    $_SESSION['authorizedreferral'] = true;         //yes, this is a correct referral. Otherwise, login.php will kick you out!
    header("Location: login.php");                  //forward to login.php
    exit;                                           //need this for some reason?
}

?>

Here is login.php:

<?php 
    session_start();                                            //start the session
    if(!isset($_SESSION['authorizedreferral'])){                //if 'authorizedreferral' isn't set (i.e. someone just loads login.php directly)

        $_SESSION['authorizedreferral'] = false;                //set 'authorizedreferral' to false - they aren't allowed here! 
        header('Location: http://'.$_SERVER["HTTP_HOST"]);      //and ship 'em back home!
        exit;                                                   //need this for some reason

    }


?>

Here are the possible situations:

  1. User goes to index.php - since they haven't logged in (don't have login cookie), they get sent to the login.php page to login.
  2. User tries to access login.php directly - they are sent back to the index.php, and get the message "No Ticky, no washy!"

However, right now, the user always receives "No Ticky, No Washy!" when accessing the index.php page. What am I missing?

See http://webify.nitrouscloud.net

  • 写回答

1条回答 默认 最新

  • doubian0284 2011-09-08 18:06
    关注

    The first time the user comes to the site, they'll have an empty session. Your first if() clause will always evaluate to true, because of PHP's typecasting rules:

    if($_SESSION['authorizedreferral'] == false)

    The session is empty, so there is no authorizedreferal value in the session, so PHP returns a 'null' (and an unset array key warning). Under PHP's typecasting rules, null == false is TRUE.

    You'll have to change your logic to check if a user's logged in (do NOT store that in the cookie - store it in the session), and redirect to the login page:

    session_start();
if (!isset($_SESSION['loggedin']) || ($_SESSION['loggedin'] === false)) {
    header("Location: login.php");
}

    The other alternative is to use the strict comparison operator:

    if ($_SESSION['authorizedreferral'] !== true) {
    ...
}

    which would only succeed if there really WAS an authorizedreferral value that was set to boolean true. You'd still get the unset array warning for brand new users, though.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

悬赏问题

  • ¥20 完全没有学习过GAN,看了CSDN的一篇文章,里面有代码但是完全不知道如何操作
  • ¥15 使用ue5插件narrative时如何切换关卡也保存叙事任务记录
  • ¥20 软件测试决策法疑问求解答
  • ¥15 win11 23H2删除推荐的项目,支持注册表等
  • ¥15 matlab 用yalmip搭建模型,cplex求解,线性化处理的方法
  • ¥15 qt6.6.3 基于百度云的语音识别 不会改
  • ¥15 关于#目标检测#的问题:大概就是类似后台自动检测某下架商品的库存,在他监测到该商品上架并且可以购买的瞬间点击立即购买下单
  • ¥15 神经网络怎么把隐含层变量融合到损失函数中?
  • ¥15 lingo18勾选global solver求解使用的算法
  • ¥15 全部备份安卓app数据包括密码,可以复制到另一手机上运行