Home/ Questions/Q 6824869
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-26T21:57:11+00:00

I have the following function which retrives the currently logged in users’ username and

  • 0

I have the following function which retrives the currently logged in users’ username and finds out their access level from the database (either ‘requested’,’user’, or ‘admin’)

function fetchAccess()
    {
    global $con;
    $username = $_SESSION['username'];
    $q = "SELECT access FROM users WHERE username = '$username'  LIMIT 1";
    $result = mysql_query($q, $con);
    $row = mysql_fetch_assoc($result);
    $access = $row['access'];

    if(isset($_SESSION['username']))
        {

        if($access == 'user')
            {
            return 1; // Returns 1 if access level is user
            }
        elseif($access == 'admin')
            {
            return 2; // Returns 2 if access level is admin
            }
        elseif($access == 'requested')
            {
            return 3; // Returns 3 if access level is requested
            }
        }
    }

When I am checking whether the user is an admin using the follow code, this works correctly.

/* Redirects user if access level does not equal admin */
    $result = fetchAccess();
    if($result != 2)
        {
        header("location:index.php");
        }

However when I check to see whether the access is ‘requested’ – this following is NOT working correctly.

<?php

/* Redirects user if access level does is 'requested' */
    $result = fetchAccess();
    if($result == 3)
        {
        header("location:redirect.php");
        }

?>

Does anyone know why this is?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    You can do this:

    function fetchAccess()
    {
    global $con;
    $username = $_SESSION['username'];
    $q = "SELECT access FROM users WHERE username = '$username'  LIMIT 1";
    $result = mysql_query($q, $con);
    $row = mysql_fetch_assoc($result);
global $access
    $access = $row['access'];
}

    then:

    global $access
if($access != admin){
   header("location:redirect.php");
}
    • 0