我无法在php中设置会话,我找不到原因。
希望你能给我一个线索,我可能会做错事!
的index.php
<?php
// Inialize session
session_start();
include_once("commons/config.php");
$authenticated = checkLoggedIn("yes", FALSE);
//flushMemberSession();
var_dump($authenticated);
echo "<pre>";
var_dump($_SESSION);
echo "</pre>";
?>
... followed by html and some php ifs
jquery ajax调用WHICH RETURNS TRUE 或 FALSE ,应该来自checkPass() actions.php内的$('#login').click(function(){
var data = $('#login-form').serialize();
$.post('commons/actions.php', data, function(result){
if(result == true){
console.log(result);
//location.reload();
}else{
console.log('not authenthicated');
}
},'json');
return false;
});
session_start();
if (!$_SERVER['SERVER_ADDR'] == $_SERVER['REMOTE_ADDR']){
header('HTTP/1.0 400 Unauthorized', true, 400);
exit;
} else {
include('config.php');
$user = mysql_real_escape_string(stripslashes($_POST['username']));
$pass = mysql_real_escape_string(stripslashes($_POST['password']));
$response = checkPass($user, $pass); // false or
$debug = array('user'=>$user, 'pass'=>$pass, 'response'=>$response);
print_r(json_encode($response));
}
actions.php
function checkLoggedIn($status, $redirect=TRUE){
switch($status){
case "yes":
if(!isset($_SESSION["loggedIn"])){
if($redirect) {
header("Location: login.php");
exit;
} else {
$authenticated = false;
return $authenticated;
}
} else {
checkLoggedIn("no");
}
break;
case "no":
if(isset($_SESSION["loggedIn"]) && $_SESSION["loggedIn"] === true ){
//header("Location: members.php");
$authenticated = true;
return $authenticated;
}
break;
}
return true;
}
function checkPass($username, $password) {
$query="SELECT username, password FROM users WHERE username='$username' and password='$password'";
$result=mysql_query($query, $link) or die("checkPass fatal error: ".mysql_error());
// Check exactly one row is found:
if(mysql_num_rows($result)==1) {
cleanMemberSession($username);
return true;
/*$row=mysql_fetch_array($result);
return $row;*/
}
//Bad username:
return false;
}
function cleanMemberSession($username) {
session_regenerate_id();
$_SESSION["username"]=$username;
$_SESSION["loggedIn"]=true;
session_write_close();
}
功能:
Response Headers
Connection Keep-Alive
Content-Length 4
Content-Type text/html
Date Sun, 27 May 2012 19:36:54 GMT
Keep-Alive timeout=5, max=100
Server Apache/2.2.21 (Win32) mod_ssl/2.2.21 OpenSSL/1.0.0e PHP/5.3.8 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By PHP/5.3.8
Request Headers
Accept application/json, text/javascript, */*; q=0.01
Accept-Encoding gzip, deflate
Accept-Language en-us,en;q=0.5
Connection keep-alive
Content-Length 31
Content-Type application/x-www-form-urlencoded; charset=UTF-8
Cookie PHPSESSID=qhbjq76f4np7iug09jrnl4j5j1
Host localhost
Referer http://localhost/tw/Tevienes/web/
User-Agent Mozilla/5.0 (Windows NT 6.1; WOW64; rv:12.0) Gecko/20100101 Firefox/12.0
X-Requested-With XMLHttpRequest
AJAX标题
var_dump($_SESSION);顺便说一句,对array(0) { }的回复是$_SESSION['test'] = 'alex';
我刚刚在{。{1}}之后在index.php中添加了session_start();,并且会话变量已经设置...所以它必须是函数设置变量的东西......或者谁知道什么其他
答案 0 :(得分:2)
将session_start()放在所有被调用的.php文件中,也就是从ajax调用的文件。 同样在actions.php的开头,将括号放在比较上。 !运算符的优先级高于&lt;或&gt;。
变化
if (!$_SERVER['SERVER_ADDR'] == $_SERVER['REMOTE_ADDR']){
到
if (!($_SERVER['SERVER_ADDR'] == $_SERVER['REMOTE_ADDR'])){
答案 1 :(得分:0)
远射和愚蠢,但检查服务器和客户端上的日期和时间是否设置正确。如果任何一个设置不正确,会话cookie将/可能不会被设置。