Member Avatar for labise

the admin page goes nowhere before it works very well

<?php 
session_start();
if (isset($_SESSION["manager"])) {
    header("location: index.php"); 
    exit();
}
?>
<?php 
// Parse the log in form if the user has filled it out and pressed "Log In"
if (isset($_POST["username"]) && isset($_POST["password"])) {

	$manager = preg_replace('#[^A-Za-z0-9]#i', '', $_POST["username"]); // filter everything but numbers and letters
    $password = preg_replace('#[^A-Za-z0-9]#i', '', $_POST["password"]); // filter everything but numbers and letters
    // Connect to the MySQL database  
    include "../storescripts/connect_to_mysql.php"; 
    $sql = mysql_query("SELECT id FROM admin WHERE username='$manager' AND password='$password' LIMIT 1"); // query the person
    // ------- MAKE SURE PERSON EXISTS IN DATABASE ---------
    $existCount = mysql_num_rows($sql); // count the row nums
    if ($existCount == 1) { // evaluate the count
	     while($row = mysql_fetch_array($sql)){ 
             $id = $row["id"];
		 }
		 $_SESSION["id"] = $id;
		 $_SESSION["manager"] = $manager;
		 $_SESSION["password"] = $password;
		 header("location: index.php");
         exit();
    } else {
		echo 'That information is incorrect, try again <a href="index.php">Click Here</a>';
		exit();
	}
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Admin Log In </title>
<link rel="stylesheet" href="../style/style.css" type="text/css" media="screen" />
</head>

<body>
<div align="center" id="mainWrapper">
  <?php include_once("../template_header.php");?>
  <div id="pageContent"><br />
    <div align="left" style="margin-left:24px;">
      <h2>Please Log In To Manage the Store</h2>
      <form id="form1" name="form1" method="post" action="admin_login.php">
        User Name:<br />
          <input name="username" type="text" id="username" size="40" />
        <br /><br />
        Password:<br />
       <input name="password" type="password" id="password" size="40" />
       <br />
       <br />
       <br />
       
         <input type="submit" name="button" id="button" value="Log In" />
       
      </form>
      <p>&nbsp; </p>
    </div>
    <br />
  <br />
  <br />
  </div>
  <?php include_once("../template_footer.php");?>
</div>
</body>
</html>
  • 3 Contributors
  • 11 Replies
  • 139 Views
  • 8 Hours Discussion Span
  • Latest Post Latest Post by labise
Member Avatar for baig772

specify your problem also

Member Avatar for diafol

Exactly. What's wrong _which header ? There are 2 inthe code. Also you seem to be stripping chars from usernames and passwords. If you want to clean them use mysql_real_escape_string.

Member Avatar for labise

that code belongs to my "admin login php" page; if i login succesfully it goes to manage products but for 3 days i never access to there and i take such a faults 310 (net::ERR_TOO_MANY_REDIRECTS).

Member Avatar for diafol

You seem to have header in a while loop. That doesn't make sense. The while loop itself doesn't make much sense as you're only retrieving a single record. Take out the loop.
Just a thought is there a redirect in index.php which could send you on a pingball route?

Edited by diafol because: n/a
Member Avatar for labise

i am new to php

Member Avatar for diafol

i am new to php

OK, welcome, but what's the problem? You need to be specific.

Member Avatar for labise

the problem is when i put username and password the page stay static goes nowhere.it must go index2.php

Member Avatar for diafol 
header("location: index.php");

This is supposed to be index2.php?

Member Avatar for labise

yep

Member Avatar for diafol

And? Does it now work?

Member Avatar for labise

i've try it from google chrome and it works!!! but it doesnt in iexplorer

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.