Dream.In.Code > Programming Help > PHP

Welcome to Dream.In.Code
	Getting PHP Help is Easy! Join 131,670 PHP Programmers for FREE! Get instant access to thousands of PHP experts, tutorials, code snippets, and more! There are 3,676 people online right now. Registration is fast and FREE... Join Now! Chat LIVE With a PHP Expert

PHP Sessions Keep Changing

2 Pages

1 2 >

Reply to this topic

Start new topic

PHP Sessions Keep Changing, Argh . . . .

akozlik	6 Oct, 2008 - 10:48 AM Post #1
D.I.C Addict Joined: 25 Feb, 2008 Posts: 586 Thanked 22 times Dream Kudos: 750 My Contributions	Alright, I come to you all with a problem. I am currently working on an authentication system that was built before I took over the site. Everything was working fine, but all of a sudden the sessions are changing the id when I go to a particular page. I have pages index.php, admin.php, set_order.php. All three of the pages have session_start() at the top, and nothing before them. The user logs in at index.php, and is redirected to admin.php. At this point the session stays the same. However, moving from admin.php to sort_order.php causes the session_id() to change, thus logging my users out. the set_order.php file is located in the 'scripts' directory. Finally, this is the content of set_order.php. php <?php session_start(); if (isset($_GET['order'])) $_SESSION['order'] = $_GET['order']; header("Location ../admin.php"); ?> When I echo out session_id() on that page, it's different. Any help would be greatly appreciated. I'm about at my wits end here. This post has been edited by akozlik: 6 Oct, 2008 - 10:50 AM
	This Post Was Helpful! ^New!

Register for Free to Make This Ad Go Away!

William_Wilson	6 Oct, 2008 - 10:56 AM Post #2
lost in compilation Joined: 23 Dec, 2005 Posts: 3,951 Thanked 13 times Dream Kudos: 3275 Expert In: Java, C, Javascript My Contributions	you probably don't want to post the entire admin.php, but could you at least show us some of it? There must be something in that code that is changing it. Are you switching on a header/exit method or a clicked link?
	This Post Was Helpful! ^New!

akozlik	6 Oct, 2008 - 11:02 AM Post #3
D.I.C Addict Joined: 25 Feb, 2008 Posts: 586 Thanked 22 times Dream Kudos: 750 My Contributions	Basically the admin.php gets to the set_order.php page by dynamically creating a link like set_order.php?order= and then whatever order to sort by. The sessions stay the same from index.php to admin.php, but change when it navigates to the set_order.php file. The set_order file sets a session variable, and then redirects via a header() Also, I just tried changing the link html <a href="scripts/set_order.php?order=last_name"> to html <a href="admin.php?order=last_name"> That didn't work either, so something weird's going on. All my links are relative paths, and not direct URLs.
	This Post Was Helpful! ^New!

William_Wilson	6 Oct, 2008 - 11:40 AM Post #4
lost in compilation Joined: 23 Dec, 2005 Posts: 3,951 Thanked 13 times Dream Kudos: 3275 Expert In: Java, C, Javascript My Contributions	have you tried printing the id at the beginning and end of the admin.php page? It seems most likely this is the culprit as there is little code in set_order to do anything, let alone change the id, also have you checked any includes for problems? Without more php code it is hard to know what is causing it. This post has been edited by William_Wilson: 6 Oct, 2008 - 11:41 AM
	This Post Was Helpful! ^New!

akozlik	6 Oct, 2008 - 11:41 AM Post #5
D.I.C Addict Joined: 25 Feb, 2008 Posts: 586 Thanked 22 times Dream Kudos: 750 My Contributions	Yes I've tried doing that as well, and the session stays the same. I'm working on using session_regenerate_id() to see if I can get something working.
	This Post Was Helpful! ^New!

William_Wilson	6 Oct, 2008 - 11:43 AM Post #6
lost in compilation Joined: 23 Dec, 2005 Posts: 3,951 Thanked 13 times Dream Kudos: 3275 Expert In: Java, C, Javascript My Contributions	limiting the code in your admin page may help track it down as well. Try commenting out all lines that use includes and anything that occurs more than once, like your links, so that only 1 remains, this will allow you to comment them out one or a few at a time and find it, I've run into these random issues myself and often it is simply an overlooked line.
	This Post Was Helpful! ^New!

akozlik	6 Oct, 2008 - 11:45 AM Post #7
D.I.C Addict Joined: 25 Feb, 2008 Posts: 586 Thanked 22 times Dream Kudos: 750 My Contributions	That's the thing is that most of the code on the admin.php page is simply making some queries, looping through the results and echoing them out the page. There aren't many included files, and those that are included, I ran through the session_ids and they were fine. The problem's only happening when I refresh the admin.php, or link to another page from it.
	This Post Was Helpful! ^New!

JackOfAllTrades	6 Oct, 2008 - 12:16 PM Post #8
D.I.C Regular Joined: 23 Aug, 2008 Posts: 491 Thanked 42 times Dream Kudos: 25 My Contributions	Is the app not using cookies for session ID transmission, and the PHPSESSIONID is not being passed in the URL that's constructed? Could there be a permissions problem on the directory where sessions are stored? Just a couple of WAGs.
	This Post Was Helpful! ^New!

William_Wilson	6 Oct, 2008 - 12:33 PM Post #9
lost in compilation Joined: 23 Dec, 2005 Posts: 3,951 Thanked 13 times Dream Kudos: 3275 Expert In: Java, C, Javascript My Contributions	the fact that refreshing the admin page breaks it leads me to think that permissions aren't at fault, but I could be wrong. Do any of your includes call session_start() ? It should only be called once per page load and can do odd things if it is called more than once.
	This Post Was Helpful! ^New!

CTphpnwb	6 Oct, 2008 - 07:12 PM Post #10
D.I.C Regular Joined: 8 Aug, 2008 Posts: 331 Thanked 19 times My Contributions	QUOTE(William_Wilson @ 6 Oct, 2008 - 01:33 PM) Do any of your includes call session_start() ? It should only be called once per page load and can do odd things if it is called more than once. I just tried to duplicate the problem but can't. Even with multiple session_start() calls. CODE <?php session_start(); echo $_SESSION['order']; $x= session_id(); echo "<br>Session #".$x."<br>"; ?> <form action="<?php echo $php_self ?>" method="get"> Enter some text: <input type="text" size= 15 name="order" value="<?php echo $_GET['order']; ?>" /> <input type="submit" value="Submit" /> </form> <?php if (isset($_GET['order'])) $_SESSION['order']= $_GET['order']; session_start(); session_start(); session_start(); echo $_SESSION['order']; $x= session_id(); echo "<br>Session #".$x."<br>"; foreach ($_SESSION as $key=>$value) { echo "<br>Key: ".$key." Value: ".$value; } ?>
	This Post Was Helpful! ^New!

engale	6 Oct, 2008 - 07:35 PM Post #11
D.I.C Addict Joined: 30 Sep, 2008 Posts: 532 Thanked 2 times Dream Kudos: 50 My Contributions	I double checked like CTphpnwb did but also was unable to find an error, the only thing I can think is prehaps the ini file has the sessions set to a few seconds, this would then distroy the session file and when the session_start is called again generate a new. Only thing I can think that would really do it at this point.
	This Post Was Helpful! ^New!

Moonbat	6 Oct, 2008 - 07:49 PM Post #12
D.I.C Regular Joined: 30 Jun, 2008 Posts: 373 Thanked 22 times Dream Kudos: 600 My Contributions	When the new session is created, does the data from the old session (not including ID) get transferred to the new session? If it does, then I would have to assume that session_regenerate_id() is being used somewhere else, and you should get rid of it wherever it is. If it is not transferring other session data, then the session timeout is probably very small, and you probably will have to use ini_set() to change the session.gc_maxlifetime setting in your php.ini file to something bigger.
	This Post Was Helpful! ^New!

2 Pages

1 2 >

Fast Reply

Reply to this topic

Start new topic

Display Mode: Standard · Switch to: Linear+ · Switch to: Outline

Track this topic · Email this topic · Print this topic · Subscribe to this forum

Time is now: 11/20/08 07:09AM

Invision Power Board v2.1.7 © 2008 IPS, Inc.

Licensed to: MediaGroup1

Advertising | Terms of Use | Privacy Policy | About Us | Site Map

Forum Index: Programming Help | C and C++ | Visual Basic | Java | VB.NET | C# | ASP.NET | PHP | ColdFusion | Perl and Python | Ruby | Databases | Other Languages | Game Programming | Software Development | Computer Science | Industry News | Programming Tutorials | C++ Tutorials | Visual Basic Tutorials | Java Tutorials | VB.NET Tutorials | C# Tutorials | PHP Tutorials | Linux Tutorials | ColdFusion Tutorials | Windows Tutorials | HTML/JavaScript Tutorials | CSS Tutorials | Flash Tutorials | Web Promotion Tutorials | Photoshop Tutorials | Software Development Tutorials | Database Tutorials | Other Language Tutorials |

Copyright 2001-2008 MediaGroup1 LLC, All Rights Reserved
A MediaGroup1 LLC Production - Version 6.0.2.1.36

Search^Updated!w00t

Over 509,000 Pages! Advanced Forum Search

Live PHP Help!

PHP Tutorials

Reference Sheets

PHP Snippets

Bye Bye Ads

Free DIC T-Shirt

T-Shirt Example

Related Sites

Monthly Drawing

Partners

Top Contributors

Top 10 Kudos This Month