PHP session variables not carrying over to my logged in page, but session ID is

Question

I\'m using PHP 4.3.9, Apache/2.0.52

I\'m trying to get a login system working that registers DB values in a session where they\'re available once lo

Answer 1

Try doing a

session_regenerate_id(true); 

before the

session_write_close();

Also. The best way IMO to do a login script is this:

Let the login logic be handled within the mainpage the user is trying to access.

1. If the user is not authenticated, he is thrown back to the login page
2. If the user is authenticated, he gets an $_SESSION["auth"] or something
3. Then when the user is browsing the main page or other pages that need auth, they just check if the $_SESSION["auth"] is set.

Then you wont have the trouble of session not saving just before a redirect