Login does not redirect, header('Location')

Question

Login does not redirect, header('Location')

Asked 10 years, 7 months ago

Viewed 7,781 times

2

I just made a website that enables CMS so that our client can login and modify the content to his liking. On the localhost and on a test server that we have works very well, but on the final target server I can’t leave the login page after filling in the correct details.

There are 2 possible outcomes Submit:

stay on the form page
and if it’s all right he does the redirect to the menu.

But it doesn’t do the redirect and none of the validation messages appear either. I went to the browser console and the only difference I saw between the Servers is in the response header where this is connection: close and in others (where it works correctly) is connection: Keep-Alive. Is this?

I’ve done a lot of research and I can’t find any clear answer to help me solve this problem.
I have even tried to implement header("Connection: Keep-Alive"); in the code but the problem remains, although in the response header it is now connection: Keep-Alive, close. I also used the var_dump on localhost appears array(1) { ["logged_in"]=> bool(true) }. On the final server appears array(0) { } session is not being started. I do not understand why.

<?php
session_start();
var_dump($_SESSION);
header("Connection: Keep-Alive");
header('Content-type: text/html; charset=UTF-8');
include_once('../includes/connection.php');
if(isset($_SESSION['logged_in'])) { ?>
<html>
    <head>
        <meta charset="UTF-8" />
        <title>AdminPT</title>
        <link rel ="stylesheet" href="../assets/style.css"/>
    </head>

        <body>
            <div class="container">
                CMS - PT
                <br>

                <ol>

                    <li><a href ="add.php">Adicionar Artigo</a></li>
                    <li><a href ="delete.php">Eliminar Artigo</a></li>
                    <li><a href ="logout.php">Sair</a></li>
                </ol>
            </div>
        </body>
    </html>

    <?php
}
else {
    //display login
    if(isset($_POST['username'], $_POST['password'])) {
        $username = $_POST['username'];
        $password = crypt(sha1(md5($_POST['password'])), 'st');

        if (empty($username) || empty($password)) {
            $error = "Todos os campos têm de ser preenchidos!";
        }
        else {
            $query = $pdo->prepare("SELECT * FROM users WHERE user_name = ? AND user_password = ?");

            $query->bindValue(1, $username);
            $query->bindValue(2, $password);

            $query->execute();

            $num = $query->rowCount();

            if($num == 1) {
                $_SESSION['logged_in'] = true;
            header('Location: index.php');
            exit();
            }
            else {
                $error = "Detalhes incorretos!";
            }
        }
    }

    ?>

    <html>
    <head>
        <title>AdminPT</title>
        <meta charset="UTF-8">
        <link rel ="stylesheet" href="../assets/style.css"/>
    </head>

        <body>
            <div class="container">
                CMS - PT
                <br><br>

                <?php
                if (isset($error)) { ?>
                    <small style="color:#aa0000"><?php echo $error; ?></small>

                <?php } ?>

                <br><br>

                <form action="index.php" method="post">
                    <input type ="text" name="username" placeholder="Username"/>
                    <input type="password" name="password" placeholder="Password"/>
                    <input type="submit" value="Login"/>
                </form>
            </div>
        </body>
    </html>

    <?php
}
?>

2

Have you tried using the full path in "window.Location"? Although in your case I would use PHP itself, with `header( 'Location: /index.php' ) - However note that the correct in the Location header is to use the full path as well. Nothing to do with the question, but you sticking 3 hashes into each other in the password is only weakening the protection.

– Bacco

2014/03/31 at 11:12
Thanks, already redirected with php I also used now var_dump in localhost appears "array(1) { ["logged_in"]=> bool(true) }" in the final server appears "array(0) { } ", ie Session is not being started, but I do not understand why. As for the hashs I just copied a method from youtube that sounded good, but thanks for the advice

– Miguel

2014/03/31 at 11:22
1

Whenever you have a moment, take a peek at this question to learn more about passwords and hashes: http://answall.com/questions/2402/comort-hash-de-passwords-safe

– Bacco

2014/03/31 at 11:33
Thank you very much yes I will see already recorded in bookmarks

– Miguel

2014/03/31 at 11:50
Have you tried to see if the Phps version is the same? Take a peek at the server error log, there might be some hints there.

– Bacco

2014/03/31 at 12:03
Server error log? How do I see it? Excuse my ignorance

– Miguel

2014/03/31 at 12:06
I have been investigating and yet sent a cookie with the id Session... I do not understand pk does not redirect, although the result of the Var_dump is "array(0) { }"

– Miguel

2014/03/31 at 12:13
Is output_buffering enabled in php.ini? (http://www.php.net/manual/en/outcontrol.configuration.php)

– vmartins

2014/04/18 at 01:10

Show 3 more comments

4 answers

6

1 - First of all, enable all error messages. So it will probably be explicit what is going wrong on the remote server.

2 - Try to move validations to code start. Many servers do not accept instructions like header:location "in the middle" of the code, and yes only before the <html>

3 - Another possibility is to have some module disabled on the remote server, so check through the phpinfo() the differences between the local and remote server.

I believe that only Action 2 solves everything, but I still leave other suggestions. :)

Obgado I tried now to implement the option 2 but it is not working I believe that I must be doing something wrong, Mr. can implement this idea in my code sff?

– Miguel

2014/03/31 at 13:31

Browser other questions tagged php server connection

You are not signed in. Login or sign up in order to post.

by CHRISTIAN • 21 points · Answer 1 · 2015-08-11T13:34:04+00:00

header("Location: " . $endereco);

You can always put:

exit();

If it doesn’t resolve, it may be that putting this at the beginning of your file:

ob_start();

and at the end of the archive:

ob_end_flush();

by eli • 21 points · Answer 2 · 2015-03-29T20:31:43+00:00

Mine is like this too I did the following:

In place of: header ("location :index.php")

I did so: echo "<a href='index.php'> voltar a página inicial</a>";

Then it will print on the screen back to the home page, just click and make the return.

by daniel Liberato • 1 point · Answer 3 · 2021-05-23T01:26:01+00:00

was having a problem of the following type, my file was inside a directory and the page I wanted to redirect was in a repository before .

when I put it that way

header("location:../app_agenda/novo_cadastro.php?cadastro=1");

made a mistake!!!!

I had to do it this way to make it work :)

header("location:../../app_agenda/novo_cadastro.php?cadastro=1");