Major Cookie Problem
am 13.05.2010 13:32:50 von Barry Zimmerman--0016364c74df630c0a0486781e04
Content-Type: text/plain; charset=ISO-8859-1
Safari browser will not accept my cookie it is ignoring it? have I done
something wrong with how the cookie is presented for safari??? The cookie I
try to set: setcookie('peg', 'YES', 'time()+190', '', 0); Also all browsers
are starting my phpsession off when its not even declared until after the
post request? Can someone please help and tell me why my session is getting
set, as when I go to the page I can see that the php session is being set as
I check the cookies it has the phpsession there? Totally puzzled? Here is my
code // Include the connections script to make a database connection.
include("inc/connect.php"); $username = ""; $password = ""; $errorMessage =
""; function quote_smart($value, $handle) { if (get_magic_quotes_gpc()) {
$value = stripslashes($value); } if (!is_numeric($value)) { $value = "'" .
mysql_real_escape_string($value, $handle) . "'"; } return $value; } if
($_SERVER['REQUEST_METHOD'] == 'POST'){ $username = $_POST['username'];
$password = $_POST['password']; $username = htmlspecialchars($username);
$password = htmlspecialchars($password); $db_found = mysql_select_db($db,
$connection); if ($db_found) { $username = quote_smart($username,
$connection); $password = quote_smart($password, $connection); $SQL =
"SELECT * FROM tablea WHERE username = $username AND password =
'".md5($_POST['password'])."'"; $result = mysql_query($SQL); $num_rows =
mysql_num_rows($result); if ($result) { if ($num_rows > 0) {
session_start(); $_SESSION['username'] = "$_POST[username]"; header
("Location: index.html"); } /* New Block Log in attempts*/ else {
session_start(); $_SESSION['attempts'] = "+1"; # setup SQL statement $SQL =
" INSERT INTO tableb "; $SQL = $SQL . " (sid, username, password, attempts,
ipaddress) VALUES "; $SQL = $SQL . " ('$_COOKIE[PHPSESSID]',
'$_POST[username]', '$_POST[password]', '$_SESSION[attempts]',
'$_SERVER[REMOTE_ADDR]') "; #execute SQL statement $result = mysql_db_query(
*****,"$SQL",$connection ); # check for error if (!$result) { echo("ERROR: "
.. mysql_error() . "\n$SQL\n"); } else { # setup SQL statement 2 $SQL =
"SELECT * FROM tableb WHERE sid = '$_COOKIE[PHPSESSID]' "; $result =
mysql_query($SQL); if (mysql_num_rows($result) ==0) { $errorMessage =
"Please check your username and/or password is correct"; } elseif
(mysql_num_rows($result) >=3) { header ("Location: index2.html"); } else {
$errorMessage = "Please check your username and/or password is correct"; } }
} /* END */ } else { $errorMessage = "Please check your username and/or
password is correct"; } mysql_close($connection); } else { $errorMessage =
"Please check your username and/or password is correct"; } } ?>
--0016364c74df630c0a0486781e04--