Why is the session not kept between pages?
Code:
<?php
$message = '';
include('./globals.php');
$con = mysql_connect($data_host,$data_user,$data_pass);
mysql_select_db($data_base, $con);
if(isset($_SESSION['user_name']))
{
$message .= 'Session exists<br>';
$user_name = $_SESSION['user_name'];
$user_pass = $_SESSION['user_pass'];
}
else
{
$message .= 'No session. Getting post data (if any)<br>';
$user_name = $_POST['user_name'];
$user_pass = $_POST['user_pass'];
}
$result = mysql_query("SELECT Password FROM admins WHERE Name='$user_name'");
$data = mysql_fetch_array($result);
if ($data['Password'] == $user_pass)
{
$message .= '<br>' . $_SESSION['user_name'] . ' : <br>';
if(!isset($_SESSION['user_name']))
{
$message .= 'creating session';
session_start();
}
$_SESSION['user_name'] = $user_name;
$_SESSION['user_pass'] = $user_pass;
}
else
{
$message .= 'Password and username do not match data base!!';
session_destroy();
}
?>
<html>
<head>
<title><?=$site_name?> - Admin Control Panel</title>
</head>
<body>
<?php
echo $message . '<br>';
if(isset($_SESSION['user_name']))
{
echo 'You are logged in as ' . $_SESSION['user'] . ' :) <br>';
}
else
{
echo 'To access this page you must be logged in!<br>';
echo '<form action="admin.php" method="post">';
echo ' UserName: <input type="text" name="user_name"><br>';
echo ' Password: <input type="password" name="user_pass"><br>';
echo ' <input type="submit" value="Submit">';
echo '</form>';
}
echo 'Username = ' . $_SESSION['user_name'] . '<br>';
echo 'Password = ' . $_SESSION['user_pass'] . '<br>';
?>
<div><a href="./admin.php">Return to ACP Home</a></div>
</body>
</html>