首次尝试登录时未识别会话

Issue resolved - see: https://stackoverflow.com/a/14719452/1174295

I've come across a problem within (at least) Google Chrome and Safari.

Upon the first attempt at logging in, the user is not redirected. The session is created, but it is almost as if it is not detected, and takes the user back to the index page. Upon a second attempt, the correct redirect is issued and the user is taken to the correct page.

The script works fine in Firefox, and I have checked extensively to see if the correct data is being returned, which it is. I've searched and I've searched and I've searched, but unfortunately nothing of use has cropped up.

Access.php - User logging in

<?php
session_start();
ob_start();


include_once('db.class.php');
include_once('register.class.php');
include_once('login.class.php');


$db = null;
$reg = null;
$log = null;


$db = new Database();
$log = new Login($db, null, null, null, null, null, null);


if (isset($_SESSION['login'])) {    
    $log->redirectUser($_SESSION['login']);
}


include_once('includes/header.html');

?>

Some HTML...

<?php
    if (isset($_POST['logsub'])) {
        $db = new Database();
        $log = new Login($db, $_POST['email'], $_POST['pass']);

        $validation = &$log->validate();

        if(empty($validation)) {
            $log->redirectUser($_SESSION['login']);
        } else {
            echo "<div id='error'><div class='box-error'><p style='font-weight: bold'>The following errors occured...</p><ul>";

                for ($i = 0; $i < count($validation); $i++) {
                    echo "<li>" . $log->getErrorMessage($validation[$i]) . "</li>";
                }
            echo "</ul></div></div>";
        }
    }
?>

Login.class.php - Login class

// Validate the credentials given
public function validateLogin() {
    // Hash the plain text password
    $this->hashedPass = $this->hashPassword();

    try {
        $query = $this->dbcon->prepare("SELECT Login_ID, Login_Email, Login_Password FROM Login WHERE Login_Email = :email AND Login_Password = :pass");
        $query->bindParam(':email', $this->email, PDO::PARAM_STR);
        $query->bindParam(':pass', $this->hashedPass, PDO::PARAM_STR);
        $query->execute();

        $fetch = $query->fetch(PDO::FETCH_NUM);
        $this->loginid = $fetch[0];

        // If a match is found, create a session storing the login_id for the user
        if ($query->rowCount() == 1) {
            $_SESSION['login'] = $this->loginid;    
            session_write_close();
        } else {
            return LOG_ERR_NO_MATCH;
        }
    } catch (PDOException $e) {
        $this->dbcon->rollback();
        echo "Error: " . $e->getMessage();
    }
}

// Fetch the customer ID
private function getCustId() {
    try {
        $query = $this->dbcon->prepare("SELECT Customer.Cust_ID FROM Customer JOIN Login ON Customer.Login_ID = Login.Login_ID WHERE Customer.Login_ID = :loginid");
        $query->bindParam(':loginid', $this->loginid, PDO::PARAM_INT);
        $query->execute();

        $fetch = $query->fetch(PDO::FETCH_NUM);     
        return $fetch[0];
    } catch (PDOException $e) {
        $this->dbcon->rollback();
        echo "Error: " . $e->getMessage();
    }
}

// Check the registration progress - are they verified? paid?
// This function is used elsewhere hence the $sessionid argument
public function checkRegistration($sessionid) { 
    $this->loginid = $sessionid;
    $this->custid = $this->getCustId();

    try {
        $queryVer = $this->dbcon->prepare("SELECT Cust_ID FROM Customer_Verify_Email WHERE Cust_ID = :custid");
        $queryVer->bindParam(":custid", $this->custid, PDO::PARAM_INT);
        $queryVer->execute();

        $queryFee = $this->dbcon->prepare("SELECT Cust_ID FROM Initial_Fee_Payment WHERE Cust_ID = :custid");
        $queryFee->bindParam(":custid", $this->custid, PDO::PARAM_INT);
        $queryFee->execute();

        // If a record exists in the verify table, return the value 1. This means the user has not yet verified their email.
        if ($queryVer->rowCount() == 1) {
            return 1;
        } else {
            // If a record does not exist in the payment table, no payment has been made. Return 2.
            if ($queryFee->rowCount() == 0) {
                return 2;
            // Otherwise, email is verified and the payment has been made.
            } else {
                return 0;
            }
        }

    } catch (PDOException $e) {
        $this->dbcon->rollback();
        echo "Error: " . $e->getMessage();
    }
}

// Redirect the user accordingly
public function redirectUser($sessionid) {
    $this->loginid = $sessionid;    
    $logNum = $this->checkRegistration($this->loginid);

    if ($logNum == 0) {
        header("Location: fbedder/details.php", true, 200);
        exit();
    } else if ($logNum == 1) {
        header("Location: fbedder/verification.php", true, 200);
        exit();
    } else if ($logNum == 2) {
        header("Location: fbedder/payment.php", true, 200);
        exit();
    }
}

Here's a link to the site: fbedder/ -> I have set-up a test account with the credentials -> email: test@ / password: test123321

To reiterate, the problem exists only in Google Chrome and Safari (the Safari being on my iPhone) and lies purely within the logging in aspect. On the first attempt, the session will be ignored (it is created), and on the second attempt, the user will be redirected.

Any ideas? I've tried a multitude of possibilities...

-- Edit --

I know where the issue lies now.

When the redirect is called, it sends the user to the details.php page. However, this page contains the following snippet of code:

if (!isset($_SESSION['login'])) {
    header("Location: fbedder/index.php");
}

Obviously what is happening, is that the session is not being detected / saved / "whatevered", and as a result is sending the user back to the index page. Is there are a way to ensure the $_SESSION is not effectively lost. I had read about this before posting here, and is why I inserted session_write_close(), but that doesn't seem to be doing the desired effect.

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
duanhuancong1969 2013-02-06 00:20
关注
After diagnosing the problem being within the fact the $_SESSION variable was effectively being lost, I read up about the session_write_close() function and came across this comment:

My sessions were screwing up because I had 2 different session IDs going at once:

1 PHPSESSID cookie for domain.com

1 PHPSESSID cookie for www.domain.com

This fixed it:

//At the beginning of each page...

session_set_cookie_params (1800,"/","domain.com"); session_start();

Source: http://pt2.php.net/manual/en/function.session-write-close.php#84925

Setting the parameters resolved the issue.
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

首次尝试登录时未识别会话 php safari
2013-02-05 21:28

回答 1 已采纳 After diagnosing the problem being within the fact the $_SESSION variable was effectively being lo
前往另一个页面时，PHP会话无法识别变量 mysql php
2018-04-20 04:19

回答 3 已采纳 you need to check session isset or not. Change <?php session_start(); $Username=$_GET['Userna
PHP会话未保存 php
2016-08-31 11:34

回答 2 已采纳 Many thanks to Ryan Vincent who helped solve this over chat. It stems from the way the actual sc
php面试题2024
2024-04-01 16:10

这货不是陈进坚的博客 php面试题汇总
登录时尝试设置会话数据 mysql php
2017-02-15 15:50

回答 1 已采纳 Read the manual on bind_result(): http://php.net/manual/en/mysqli-stmt.bind-result.php "Whe
实现PHP会话令牌时出现问题 html php
2018-08-29 15:41

回答 1 已采纳 There's a few problems with your code: token.php needs to output the token. Which is as simple as
PHP / CSS：未加载我的会话变量 css php
2018-08-30 03:20

回答 3 已采纳 New Answer PHP Constants need to be generated when the page/script is generated and will only las
php学习
2022-04-14 17:51

拓海AE的博客 PHP 简介 PHP 是服务器端脚本语言。 PHP 是什么？ PHP（全称：PHP：Hypertext Preprocessor，即"PHP：超文本预处理器"）是一种通用开源脚本语言。 PHP 脚本在服务器上执行。 PHP 可免费下载使用。 PHP 文件是什么...
会话登录设置为1，但在重定向时无法识别 jquery php
2018-10-04 20:23

回答 1 已采纳 You should try using session_start(): Example: ad-login-pro.php // At the very top of the page
如果未设置会话，则PHP标头重定向不起作用 javascript php
2019-04-11 12:06

回答 3 已采纳 After a redirect you can't add more code, the new page will call and the script of the new one wil
鼠标移动至少一次时创建PHP会话 javascript jquery php
2017-12-16 11:41

回答 1 已采纳 The PHP code should be something like this: session_start(); if (!isset($_SESSION['mouseMoved'])
PHP面试题
2023-06-20 14:37

m0_61420899的博客 4、当用户关闭浏览器或长时间未活跃时，服务器将和该会话相关的Session对象从内存中删除，并删除用户浏览器中的Session ID Cookie 5、Session的工作原理背后的原则是通过在服务器中存储会话信息，确保Web应用程序...
PHP / laravel将项目添加到未保存的会话 laravel php
2018-08-14 13:15

回答 2 已采纳 You will need to return the session by reference, i.e. static function &getSessionData($key = nul
PHP学习（后部分）
2023-10-28 20:19

nuc-x的博客通过 PHP，可以连接和操作数据库。MySQL 是跟 PHP 配套使用的最流行的开源数据库系统mysql解释：MySQL 是一种在 Web 上使用的数据库系统。MySQL 是一种在服务器上运行的数据库...在分类存储信息时，数据库非常有用。
PHP学习（二）
2021-07-28 15:26

种棵马拉松的博客 PHP PHP核心概念表单传值表单传值存在两种方式： GET方式，可以通过GET方式请求的场景有： form表单，method属性为GET <a>标签中的链接默认以GET方式请求 location对象的herf属性和assign()方法。如<...
没有解决我的问题, 去提问

悬赏问题

¥50 永磁型步进电机PID算法
¥15 sqlite 附加（attach database）加密数据库时，返回26是什么原因呢？
¥88 找成都本地经验丰富懂小程序开发的技术大咖
¥15 如何处理复杂数据表格的除法运算
¥15 如何用stc8h1k08的片子做485数据透传的功能？(关键词-串口)
¥15 有兄弟姐妹会用word插图功能制作类似citespace的图片吗？
¥200 uniapp长期运行卡死问题解决
¥15 latex怎么处理论文引理引用参考文献
¥15 请教：如何用postman调用本地虚拟机区块链接上的合约？
¥15 为什么使用javacv转封装rtsp为rtmp时出现如下问题：[h264 @ 000000004faf7500]no frame？

首次尝试登录时未识别会话

1条回答 默认 最新

悬赏问题

1条回答默认最新