Home/ Questions/Q 338317
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-12T10:25:05+00:00

How can you keep track of login status by PHP? I include the following

  • 0

How can you keep track of login status by PHP?

I include the following page to each my page to check the login status. I try to identify the user after he logs in by the cookie.
However, I have not managed to read my login_cookie or use it in any way.

The code handle_login_status.php where I manipulate the login status

<?php

    $dbconn = pg_connect("host=localhost port=5432 dbname=masi user=masi password=123");

    //1. read the first word in Cookie of the form 
        //"email@gmail.com,ca05106e445c15197f7213bc12648524
    //Then, store this word to $email 
    $cookie_tripped = explode(",", $_COOKIE['login_cookie']);   
    $email = $cookie_tripped[0];
    $result = pg_prepare($dbconn, "query1", 'SELECT passhash_md5 FROM users 
                         WHERE email = $1;');
    $result = pg_execute($dbconn, "query1", array($email));
    if(!$result) {
        exit;
    }

    // to take the passhash out of the cookie
    $passhash_md5_cookie = $cookie_tripped[1];
    if($result == $passhash_md5_cookie) {
        $result = pg_prepare($dbconn, "query7", "UPDATE users SET logged_in = $1
            WHERE email = $2;");
        $result = pg_execute($dbconn, "query7", array("true", $email));
        $logged_in = true;
    }
    else {
        $result = pg_execute($dbconn, "query7", array("false", $email));
        $logged_in = false;
    }

I set up the cookie in the handler of the login form.

The declaration of login_cookie at handle_login_form.php

global $login_cookie;
$login_cookie = $_POST['email'] . ',' . md5($_POST['password']);

$result = pg_prepare($dbconn, "query3", 'SELECT passhash_md5 
    FROM users WHERE email = $1;');
$result = pg_execute($dbconn, "query3", array($_POST['email']));

while ($row = pg_fetch_row($result)) {
    $password_original = $row[0];
}

$login_cookie_original = $_POST['email'] . ',' . md5($password_original);

if ( $login_cookie_original == $login_cookie )
{   
    setcookie("login_cookie", $login_cookie);
    header("Location: /codes/index.php?ask_question");
    die("logged in");
}
Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    You don’t even give us enough information to debug properly…

    • Where is $login_cookie_original defined?
    • Where is $login_cookie defined?

    Without that information, we can’t debug your code properly. You do use setcookie() properly to set the cookie, and then use the $_COOKIE variable to read it.

    Sessions would be an easier way to handle a login situation.

    You’ve also been asking lot of very basic questions about PHP and you don’t seem to have a grasp on how the language works. I suggest giving the documentation a good read before your next question.

    • 0