Add additional session variable on login?

Similar Messages

• Missing session variables and multiple CFID/CFTOKEN

  We are using ColdFusion 9.0.1 and have recently started to experience some sporadic behavior in our applications. These applications have worked without error for over 6+ years and have not been modified during this time.
  Over the past couple of weeks, we have been receiving calls in regards to users not being able to login and receiving errors when performing various actions.  We have put troubleshooting measures in place that display values when this occurs.
  We have noticed that when the errors occur, there are multiple CFID/CFTOKEN COOKIE values. Additionally, session variables are being dropped (during simple tasks such as going from one screen to the next).  These errors do not occur for the majority of users and have primarily occurred in Internet Explorer, but we have had some instances in other browsers.  In most instances, if the user switches browsers, the same application works fine for them.
  In one particular case, we have a <cfif> tag in the application.cfm file that checks for “session.user_id”.  If it doesn’t exist, the user is directed to a login page using the <cflocation> tag. When experiencing the problem, users are continuously going back to the login screen because the system is saying that the session variable does not exist.
  When working with one user who was experiencing this problem, we were able to remedy the problem by adding “addtoken=’yes’” to the cflocation tag.  ** We do not prefer to do this for security reasons.
  Rather than go through each application and try to “band-aid” each instance that occurs, can anybody offer some suggestions on why this behavior recently began and how we may be able to globally address it?

  My immediate guess is that there is faulty logic in the code that updates the value of session.user_id. Apparently, one of the following scenarios might be happening.
  Coldfusion creates a session, X, say. Session.user_id is as yet undefined, so ColdFusion cflocates the user to the login page. The user logs in, still within session X. His session.user_id is set.
  Suppose, for whatever reason (and I know of at least two), the session drops. The user's very next request will make ColdFusion to create a new session, Y, say. Under session Y, the variable session.user_id, which corresponded to session X, will no longer exist. So ColdFusion cflocates the user to the login page. This cycle will of course repeat if left uncorrected.
  Another possible scenario is that the variable session.user_id is not set at all, or is set in the context of a new session. I am assuming that the login page is a form. Then login validation occurs at the action page of the form. Presumably the variable session.user_id is set at this action page. If so, then perhaps ColdFusion fails to set this variable, or a new session is created as the request goes from the login-form page to the action page.
  The 2 main reasons why a session drops are 1) it times out, 2) a new request starts a new session. Hence the following suggestions.
  1) Is your sessionTimeout value low, say, just a few minutes? If so, increase it to 20 minutes.
  2) Remember that the default behaviour of ColdFusion is to start a new session at every request. Use cflogin and cfloginuser together with loginStorage="session". Cflogin executes only if there is no logged in user, irrespective of the session. Therefore, getAuthUser() is a better authentication test than session.user_id.
  3) Use Application.cfc in place of Application.cfm. In particular, the CFC offers you more fine-grained control over the beginning and end of sessions.

• Define User ID Session Variable

  I created a login page to authenticate users. The user enters
  their email and password to login. At login, I would also like to
  select a user id from the same table the email and password are
  stored in. How can I add a session variable for the user id?
  Here is the code created by Dreamweaver:

  Are these functions on the same page? Will you be using this
  variable on
  other pages?
  What you have described should work fine. Can you test it by
  placing -
  <?php echo "user id = " . $_SESSION['User_ID'];exit();
  ?>
  immediately after your assignment code?
  Murray --- ICQ 71997575
  Adobe Community Expert
  (If you *MUST* email me, don't LAUGH when you do so!)
  ==================
  http://www.projectseven.com/go
  - DW FAQs, Tutorials & Resources
  http://www.dwfaq.com - DW FAQs,
  Tutorials & Resources
  ==================
  "chris.cavage" <[email protected]> wrote in
  message
  news:gipmc7$ifd$[email protected]..
  > After logging into my site, I need to have the User_ID
  from the mysql
  > table be
  > saved as another session variable so I can reference the
  user later.
  >
  > I added this to my page:
  >
  > <?php $_SESSION['User_ID'] =
  $row_Recordset1['User_ID'] ?>
  >
  > My first recordset is table1 (has member information in
  it).
  >
  > I then created a recordset from table2 (has the user_id
  and financial info
  > there): recordset2 filters the field "User_ID" based on
  the session
  > variable,
  > "User_ID".
  >
  > I am then trying to insert information from that
  recordset, but nothing
  > happens.
  >
  > I did start the session at the top of the page. What can
  I do
  > differently?
  >

• Session variable in the title

  I want to add my session variable in the title.
  I used the following:
  @{biServer.variables['NQ_SESSION.myvariable']}
  and I got the default session variable value and not the current one.
  I know about the way to add column and use it in narrative text, but I want it in the title.
  Can someone please assist?

  Look into these http://obiee101.blogspot.com/2008/02/obiee-adding-session-variables-to.html
  http://obiee101.blogspot.com/2007/12/obiee-referencing-session-variables-in.html
  Display Session Variable in Title View
  hope answered.
  Cheers,
  KK

• Export Recordset As XML w/ session variable

  I'm trying to use the Export Recordset As XML function. It works great for recordsets without any variables (such as a session variable), but as soon as a add a variable to the record set, I get a "Header already Sent!" Error.
  The prior (non-adobe) version had a "variable" selection on the Advanced tab which seems to be gone now.
  How do I add a session variable to the recordset and have it play nice with Export Recordset As XML? I need an XML doc that only includes a specific users information. The session variable is made when the user logs in to see the data.

  I'm trying to use the Export Recordset As XML function. It works great for recordsets without any variables (such as a session variable), but as soon as a add a variable to the record set, I get a "Header already Sent!" Error.
  The prior (non-adobe) version had a "variable" selection on the Advanced tab which seems to be gone now.
  How do I add a session variable to the recordset and have it play nice with Export Recordset As XML? I need an XML doc that only includes a specific users information. The session variable is made when the user logs in to see the data.

• Prompt using SQL Results with row-wise session variable comparison

  I have a prompt on Department and I only want the departments to show that have been authorized via a session variable for that user. The session variable can return can return multiple values and is set as row-wise. The session variable is returning results and have been used successfully in an application filter.
  I'm trying to put the correct SQL statement and this syntax doesn't work:
  SELECT "Department"."Department Code" 
  FROM "UBC Financials - YTD Table"
  WHERE  "Department"."Department Code" = '@{DEPT_LIMITS}'
  Can someone give me an example that does work?
  Thanks,

  Try something like WHERE  "Department"."Department Code" = VALUEOF(NQ_SESSION."DEPT_LIMITS")
  or else filter on department and then hit on add then Session variable
  ~ http://cool-bi.com

• Edit session value after login

  I would like to edit the session value of a session that is set after a user logs in.
  Problem:
  I have a field 'date of birth' in my database: yyyy-mm-dd, but i need the age value instead in the session.
  I know how to calculate this but that is not the question, i need to know where to edit this value so that after a login the session is set to the age of the user instead of his/her date of birth value from the database.
  I hope you understand.
  Can someone please help me out...
  Thanks,
  Jim

  Hi Jim,
  <br />
  <br />nope, Adobe/Interakt are not participating here.
  <br />
  <br />However, I do *think* that converting these values *upon* login seems quite weird to do -- ADDT´s session variables are based on the "as is" contents of DB table fields, and what you´re asking for is a very special usage scenario which was even never asked for in the Interakt forums, so that´s why assumingly other forum particpants reading this keep scratching their heads as well.
  <br />
  <br />The only approach I can suggest for now, is to convert the session variables *after* login, and that´s quite easily possible -- on that very page that´s going to display the banner, it should be possible to initialize the abovementioned "calculate age from birthday" conversion routine and assign the session variable "current_age" to the PHP variable "$birthday_user", e.g. $birthday_user = $_SESSION['current_age'];
  <br />
  <br />Once you have this clearly assigned, all you´d have to do is to apply a "Show IF conditional region" that´s checking against the $birthday_user value, e.g.
  <br />
  <br /><?php<br />// Show IF Conditional region_check_user_age<br />if ($birthday_user < 20) {<br />?>
  <br />display banner for folks under 20
  <br /><?php<br />// else Conditional region_check_user_age<br />} else { ?>
  <br />display banner for folks older than 20
  <br /><?php }<br />// endif Conditional region_check_user_age<br />?>
  <br />
  <br />As the line breaks in the code posted above will most likely disappear as before, I´m attaching a text-only version
  <br />
  <br />Cheers,
  <br />Günter Schenk
  <br />Adobe Community Expert, Dreamweaver

• "Go Back" whilst adding SESSION VARIABLE?

  Is it possible to add a SESSION VARIABLE at the same time as one operates a "Go Back" link?
  My site covers information for three towns. The names of the towns are the possible SESSION VARIABLES. In the absense of a SESSION VARIABLE I plan to divert to a page where the user selects a town form the list of three links. I am trying to make this link add the selected town-name as a SESSION VARIABLE and also operate the "Go Back" link so that the target page now receives a SESSION VARIABLE.
  I tend to use php and in this case I am making use of a Go Back javascript, but cannot work out quite how to make it work, or if it is possible.
  I'm using DWmx2004.

  Thanks for the ideas.
  DWFAQ.info wrote:
  You can use javascript to save info on a cookie and use go back button. Then you can use the info from the cookie to write to session variable on the page you went back to. Depending on what you're doing there may be security issues involved using this method.
  That sounds interesting. Security is not an issue here, but I've not used cookies before. Could you either explain how that would be done, or point me to an explanation (and example) somewhere, please?

• Using Session Variables for User Login - sometimes they don't persist... what am I doing wrong?

  Hi all,
  I'm running a site that requires user login.  I approached the building of this site as almost a complete newb to CF (and dynamic coding in general), and it's been a great learing experience (with lots of help from you guys).
  However, I guess I never learned the correct way to handle a user login.  It seemed to me that I could just test the user-entered credentials against those stored in a database, then set a session variable containg that user's record number.  Then, not only would I have an easy way of knowing who this user was and therefore what info to serve him, but I could test for the existence of a valid login on every page in the protected folder, by adding this code to my application.cfc in that folder:
  <cfset This.Sessionmanagement=true>
  <cfset This.Sessiontimeout="#createtimespan(0,8,0,0)#">
     <cfif NOT isDefined ("session.username") or NOT isDefined ("session.password") or NOT isDefined ("session.storeID")>
       <cflocation url="../index.cfm" addtoken="no">
     </cfif>
  ...and it goes on to run a query and verify that the session.username and session.password match for the store defined by session.storeID.  If not, all session variables are cleared and it bounces you back to the login page.  When the user clicks Logout, all I do is delete all the session variables.
  This seemed to work great for like a year, but lately I've been getting reports that the login doesn't seem to persist for longer than approx. 20 minutes of inactivity.  You can see I specified session variables to remain active for 8 hours (I know that seems like a drastically long login, but it's what's necessary for this application).  I've only gotten this report from a few people, and I myself can't seem to duplicate it... I've tested an inactive login for 45 minutes now and it held.
  SO:  any reason you can think of why session variables would be spontaneously clearing for some people?  Would having your router reset its IP address invalidate the session or something?  Also, the problem seemed to begin appearing after my host upgraded all their servers to CF9... could there be any relation?
  And on a more general note... did I go about this completely the wrong way to begin with?  If so, what's the standard way to manage a login?
  Lots of questions, I know... thanks very much for any answers or suggestions!
  Joe

  Ian,
  Thanks very much - very helpful information.
  Sounds like passing the tokens in every request is probably the way to go for this.  I don't think it's likely that any users will be sharing links, unless they actually intend for the recipient to see their info anyway.
  Is that all I would have to do, is add the tokens to every path?  Would that guarantee that all the session variables would remain valid until timeout or being cleared?
  Again, thanks, you've been really helpful.
  Joe
  On Jun 23, 2010 4:37 PM, Ian Skinner &lt;[email protected]&gt; wrote:
  Unfortunately this is the nature of HTTP web applications.  There is NO state maintained from HTTP request to request.  This is by design in the HTTP protocol specifications.
  ColdFusion provides two methods to circumvent this limitation.  Each method has limitations and caveats.  They both rely on the passing of tokens between the client and the server with every request.  These tokens can be passed as cookies OR URL (GET) variables.  You are using the cookie method, which is the simpler and most common. You may be experiencing the limitation of this method.  If something happens to the cookies the session can be lost.
  You could pass the (CFID &amp; CFTOKEN) OR JESSIONID tokens through the URL query string with every request.  This requires one to add these values to every link, form action, cflocation or other request path in our application.  ColdFusion provides the session.urltoken variable to make this easier to do.  The tokens will be visible to the user.  Also if the links with an individual token is share with other users, via e-mail, chat, social networks, etc and one of these users utilize the link during the life of a session (8 hours apparently in your case).  Then that user will access the session of the original user.
  Cookie session management is by far the most common choice by CF developers.  If these methods do not meet your needs you would need to go beyond the HTTP limitations of web applications.  One might be able to accomplish this with a Flex|Air|Flash applications that can be configured to use a continuous connection to the server.  Thus not suffer the stateless nature of the normal HTTP request-response cycle.
  I do not know if a router resetting would cause cookies to be discarded or otherwise invalidated.  But I would not think it is beyond the relm of possibilities.

• Login session variable - pls help before i slot myself

  im brand new to this guys and really struggling with logging
  in a member to their particular account as opposed to a general
  members section using dreamweavers login application and some basic
  php coding.
  i just cant seem to figure it out it (im stuck on the session
  variables i think..) and unfortunately my php is very poor at them
  moment!
  pls HELP!!
  below is the dreamweaver generated code from its basic login
  application.
  im using it in a dreamweaver template so im not sure if thats
  the issue but bascially im using 2 SQL tables i constructed to
  achieve this-
  1.) tblaccesslevel
  intLevelID (unsigned + auto increment + primary key)
  txtAccess
  (ive allocated various numerical access levels into
  txtAccess. ie. 1-7
  and
  2.) tblplayeraccount
  intUserID (unsigned + auto increment + primary key)
  txtFirstName
  txtLastName
  txtEmailAddress
  txtPassword
  intAccessLevel
  (ive generated 2 users in the above table tp test)
  in dreameavers server behaviors the recordset generated by
  the login server behavior simply says Log In User
  obviously i need a session variable somewhere to get the
  intUserId....
  also a relationship needs to be generated in the sql
  statement to connect the intAccessLevel but i think i can manage
  that (i think..)
  below is the code this application generated -
  if someone can give me some hints or if they've done
  something similiar pls provide the required code ...it would be a
  huge help!! i dont know what im doing wrong!!!
  <?php require_once('../Connections/Rugby.php'); ?>
  <?php
  // *** Validate request to login to this site.
  if (!isset($_SESSION)) {
  session_start();
  $loginFormAction = $_SERVER['PHP_SELF'];
  if (isset($_GET['accesscheck'])) {
  $_SESSION['PrevUrl'] = $_GET['accesscheck'];
  if (isset($_POST['emailaddress'])) {
  $loginUsername=$_POST['emailaddress'];
  $password=$_POST['password'];
  $MM_fldUserAuthorization = "intAccessLevel";
  $MM_redirectLoginSuccess = "../player_home.php";
  $MM_redirectLoginFailed = "../failed.php";
  $MM_redirecttoReferrer = false;
  mysql_select_db($database_Rugby, $Rugby);
  $LoginRS__query=sprintf("SELECT txtEmailAddress, txtPassword,
  intAccessLevel FROM tblplayeraccount WHERE txtEmailAddress='%s' AND
  txtPassword='%s'",
  get_magic_quotes_gpc() ? $loginUsername :
  addslashes($loginUsername), get_magic_quotes_gpc() ? $password :
  addslashes($password));
  $LoginRS = mysql_query($LoginRS__query, $Rugby) or
  die(mysql_error());
  $loginFoundUser = mysql_num_rows($LoginRS);
  if ($loginFoundUser) {
  $loginStrGroup = mysql_result($LoginRS,0,'intAccessLevel');
  //declare two session variables and assign them
  $_SESSION['MM_Username'] = $loginUsername;
  $_SESSION['MM_UserGroup'] = $loginStrGroup;
  if (isset($_SESSION['PrevUrl']) && false) {
  $MM_redirectLoginSuccess = $_SESSION['PrevUrl'];
  header("Location: " . $MM_redirectLoginSuccess );
  else {
  header("Location: ". $MM_redirectLoginFailed );
  ?>

  Are you wanting to redirect them to a specific page based on
  their username or to the same page with dynamic content based on
  their username?

• Login Session Variable Problem

  I've created a simple login using the inbuilt DW suite, but I don't seem to be able to display the session variable after they login.
  On the success page it should filter the RS based on the Username and also display the Username etc on the page but nothing is shown. I tested the success page in DW and entered a value for the session var and it works fine, all I can think of is that the session is empty, not coming through, but I'm clueless.
  Any ideas?
  <<<<<LOGIN PAGE>>>>>
  <?php
  // *** Validate request to login to this site.
  if (!isset($_SESSION)) {
    session_start();
  $loginFormAction = $_SERVER['PHP_SELF'];
  if (isset($_GET['accesscheck'])) {
    $_SESSION['PrevUrl'] = $_GET['accesscheck'];
  if (isset($_POST['UserName'])) {
    $loginUsername=$_POST['UserName'];
    $password=$_POST['Password'];
    $MM_fldUserAuthorization = "";
    $MM_redirectLoginSuccess = "login_successful.php";
    $MM_redirectLoginFailed = "login.php";
    $MM_redirecttoReferrer = true;
    mysql_select_db($database_connpbxlogin, $connpbxlogin);
    $LoginRS__query=sprintf("SELECT UserName, UserPassword FROM Users WHERE UserName=%s AND UserPassword=%s",
      GetSQLValueString($loginUsername, "text"), GetSQLValueString($password, "text"));
    $LoginRS = mysql_query($LoginRS__query, $connpbxlogin) or die(mysql_error());
    $loginFoundUser = mysql_num_rows($LoginRS);
    if ($loginFoundUser) {
       $loginStrGroup = "";
      //declare two session variables and assign them
      $_SESSION['MM_Username'] = $loginUsername;
      $_SESSION['MM_UserGroup'] = $loginStrGroup;     
      if (isset($_SESSION['PrevUrl']) && true) {
        $MM_redirectLoginSuccess = $_SESSION['PrevUrl'];
      header("Location: " . $MM_redirectLoginSuccess );
    else {
      header("Location: ". $MM_redirectLoginFailed );
  ?>
  <<<<<SUCCESS PAGE>>>>>
  $colname_LoggedRS = "-1";
  if (isset($_SESSION['MM_Username'])) {
    $colname_LoggedRS = $_SESSION['MM_Username'];
  mysql_select_db($database_connpbxlogin, $connpbxlogin);
  $query_LoggedRS = sprintf("SELECT * FROM Users WHERE UserName = %s", GetSQLValueString($colname_LoggedRS, "text"));
  $LoggedRS = mysql_query($query_LoggedRS, $connpbxlogin) or die(mysql_error());
  $row_LoggedRS = mysql_fetch_assoc($LoggedRS);
  $totalRows_LoggedRS = mysql_num_rows($LoggedRS);
  ?>
  <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
  <html xmlns="http://www.w3.org/1999/xhtml">
  <head>
  <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
  <title>Untitled Document</title>
  </head>
  <body>
  </p>
  <p>username: <?php echo $row_LoggedRS['UserFirstName']; ?></p>
  <p>email: <?php echo $row_LoggedRS['UserEmail']; ?></p>
  <p>Session Data:
    <?php echo $_SESSION['MM_Username']; ?></p>
  </body>
  </html>
  <?php
  mysql_free_result($LoggedRS);
  ?>

  Does your success page begin with session_start()?

• Session Variables Won't Persist

  Hello all, I'm writing an app for work where a user logs in
  to a system and then adds and removes entries from a database
  through a web app. I use session variables to store both the user's
  login ID and that user's permissions. I get through the login just
  fine. After clicking on a link on the following page though ( an "a
  href=" link) the session variables are not available to the
  following page. I don't understand why the session variables aren't
  persisting throughout the site. In my application.cfm I have
  <cfapplication name="App" sessionmanagement="true"
  sessiontimeout="#CreateTimeSpan(0, 1, 0, 0)#"> Any help with
  this would be greatly appreciated.

  Ah good. That's precisely what I was touching on when I asked
  you:
  - Are you accessing the same site with different domains, or
  sub-domains? Ex: www.mysite.com, www2.mysite.com
  Changing domains, and/or how you address the site itself will
  always throw a curve-ball to your session vars. Session vars seem
  to be related to two things:
  1) The site's "domain" address (servername, www.mysite.com,
  www2.mysite.com, localhost, etc)
  2) The application "name" (see "name" attribute of your
  cfapplication tag)
  If either of the above two things change, you *can* lose your
  session.
  If you wanted to have a session persist across different
  domains however, it is important to note that you CAN in fact do
  that. You simply need to manually pass the CFID and CFTOKEN in the
  URL at the exact point you cross from one domain to another.
  (Assuming of course that both domains point to the same CF
  application on the same server or cluster, and using the same
  application "name")
  The CF-server will detect those CFID and CFTOKEN vars in the
  URL, and pull the correct session that you had from the previous
  domain. Once you're "in" the second domain, you no longer need to
  pass these tokens via the URL. However, if you wanted to cross BACK
  to the original domain, you should once again pass those CFID and
  CFTOKEN vars in the URL at the exact point you switch domains.
  Anyways, I'm glad you worked it out. I wanted to add this
  additional bit of explanation in case anyone else is reading, or
  someone stumbles across this a year from now.

• Using row-wise multi-value GROUP system session variable in report filter

  The title says it all except I am using 10g OBIEE.
  What I want to do is filter on the dynamic system session variable GROUP created in a row-wise initialization block.
  The GROUP vriable is being set up correctly and it shows the user dynamically put into the correct groups in Answers.
  (Using the admin tool and looking at the user session, only the initial authentication block variables show up.)
  But if I want to filter using the value of GROUP it doesn't work.
  The obvious way is to choose the filter icon, then choose Add -> Variable -> Session, enter GROUP, and then display results.
  It comes back with no rows.
  Any idea how to do this? I've tried lots of things but none of them work either producing no rows or an error.
  This is the kind of Answers SQL this report is resulting in, which makes sense to me, but produces no rows.
  SELECT "Package Virtual Group (Dim)"."Package Virtual Group" saw_0, "Contact (Fact)"."Contacts All Count" saw_1 FROM "Case/Transaction/ABC" WHERE "Package Virtual Group (Dim)"."Package Virtual Group" = VALUEOF(NQ_SESSION."GROUP") ORDER BY saw_0

  866038 wrote:
  Errors come from trying things that don't work.
  For example, instead of =, using IN VALUEOF(NQ_SESSION.GROUP) or @{session.GROUP} or lots of other things.
  The question is this:
  how can I filter a column in Answers using the GROUP session variable which had been initialized in a row-wise initialization block?
  I can find no way to do it. Mostly it returns no rows.Hi,
  we had a similar requirement, where we have an external name that has project number values. We used row wise initialization to capture all the projects that a user belongs to. Then, we applied the filters at the RPD level, instead of doing it at the report level. From you requirement I see that you are trying to filter the groups based on user login. When a user logs in, he will see the information about the groups that he only belongs to. Correct me if I am wrong here.
  Assuming I am right about your requirement, providing the filter that you need apply in RPD.
  On all the fact tables are joined to the Package Virtual Group dimension, apply the below filter.
  case when 1=1 then (Dim)"."Package Virtual Group" END = VALUEOF(NQ_SESSION."GROUP");
  The reason for use of case statement here is, it converts the logical sql to IN Clause, helping us acheive the exact query that we would want.
  Please Award points if this helps.
  Thanks,
  -Amith.

• Need Help With Redirect That Uses Session Variable

  I am new to dynamic sites, php, and developer toolbox, but I have been able to create a login site using the different form wizards fairly easily (in CS3 with Developers toolbox).
  <br />
  <br />I am trying to set a server behavior on a page that redirects the user to a new page if a session variable matches a recordset.
  <br />
  <br />I was using an extension (PHP Sessions - http://www.adobe.com/cfusion/exchange/index.cfm?event=extensionDetail&amp;extid=681308 ) that worked great, but when I installed developers toolbox, it stopped working (get error message about runtime/MX environment).
  <br />
  <br />Ive been struggling for days and this is what Ive come up with so far:
  <br />------------------------------------
  <br />session_start();
  <br />if (!isset($HTTP_SESSION_VARS[$_SESSION['kt_firstname']]) || $HTTP_SESSION_VARS[$_SESSION['kt_firstname']] = $row_Recordsetfname['firstname']) {
  <br /> header ("Location: ../firstname/firstname1.php");
  <br />}
  <br />------------------------------------
  <br />
  <br />It redirects regardless of the match. Any ideas on what I can do to get this working? Here is all of the code (with block from above inserted) up until the doc type:
  <br />------------------------------------
  <br /><?php require_once('../Connections/project1.php'); ?>
  <br /><?php<br />// Load the tNG classes<br />require_once('../includes/tng/tNG.inc.php');<br /><br />// Make unified connection variable<br />$conn_project1 = new KT_connection($project1, $database_project1);<br /><br />//Start Restrict Access To Page<br />$restrict = new tNG_RestrictAccess($conn_project1, "../");<br />//Grand Levels: Any<br />$restrict->Execute();<br />//End Restrict Access To Page<br /><br />if (!function_exists("GetSQLValueString")) {<br />function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "") <br />{<br />  $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;<br /><br />  $theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);<br /><br />  switch ($theType) {<br />    case "text":<br />      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";<br />      break;    <br />    case "long":<br />    case "int":<br />      $theValue = ($theValue != "") ? intval($theValue) : "NULL";<br />      break;<br />    case "double":<br />      $theValue = ($theValue != "") ? "'" . doubleval($theValue) . "'" : "NULL";<br />      break;<br />    case "date":<br />      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";<br />      break;<br />    case "defined":<br />      $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;<br />      break;<br />  }<br />  return $theValue;<br />}<br />}<br /><br />// FELIXONE - 2002   SB by Felice Di Stefano - www.felixone.it<br />session_start();<br />if (!isset($HTTP_SESSION_VARS[$_SESSION['kt_firstname']]) || $HTTP_SESSION_VARS[$_SESSION['kt_firstname']] = $row_Recordsetfname['firstname']) {<br />  header ("Location: ../firstname/firstname1.php");<br />}<br /><br />$colname_Recordsetfname = "-1";<br />if (isset($_SESSION['kt_user_name'])) {<br />  $colname_Recordsetfname = $_SESSION['kt_user_name'];<br />}<br />mysql_select_db($database_project1, $project1);<br />$query_Recordsetfname = sprintf("SELECT firstname FROM registration WHERE user_name = %s", GetSQLValueString($colname_Recordsetfname, "text"));<br />$Recordsetfname = mysql_query($query_Recordsetfname, $project1) or die(mysql_error());<br />$row_Recordsetfname = mysql_fetch_assoc($Recordsetfname);<br />$totalRows_Recordsetfname = mysql_num_rows($Recordsetfname);<br /><br />$colname_Recordset1 = "-1";<br />if (isset($_SESSION['kt_user_name'])) {<br />  $colname_Recordset1 = $_SESSION['kt_user_name'];<br />}<br />mysql_select_db($database_project1, $project1);<br />$query_Recordset1 = sprintf("SELECT `Date` FROM registration WHERE user_name = %s", GetSQLValueString($colname_Recordset1, "text"));<br />$Recordset1 = mysql_query($query_Recordset1, $project1) or die(mysql_error());<br />$row_Recordset1 = mysql_fetch_assoc($Recordset1);<br />$totalRows_Recordset1 = mysql_num_rows($Recordset1);<br />?>
  <br />
  <br />------------------------------

  I am new to adobe toolbox... I ve created a ligin page but not sure how to pass the session variable. I am trying to direct successful login to a page like... index.php?id=filter
  <br />
  <br />been struggling all day with this. Please help!!!
  <br />
  <br /><?php require_once('Connections/comm.php'); ?>
  <br /><?php<br />// Load the common classes<br />require_once('includes/common/KT_common.php');<br /><br />// Load the tNG classes<br />require_once('includes/tng/tNG.inc.php');<br /><br />// Make a transaction dispatcher instance<br />$tNGs = new tNG_dispatcher("");<br /><br />// Make unified connection variable<br />$conn_comm = new KT_connection($comm, $database_comm);<br /><br />// Start trigger<br />$formValidation = new tNG_FormValidation();<br />$formValidation->addField("kt_login_user", true, "text", "", "", "", "");<br />$formValidation->addField("kt_login_password", true, "text", "", "", "", "");<br />$tNGs->prepareValidation($formValidation);<br />// End trigger<br /><br />// Make a login transaction instance<br />$loginTransaction = new tNG_login($conn_comm);<br />$tNGs->addTransaction($loginTransaction);<br />// Register triggers<br />$loginTransaction->registerTrigger("STARTER", "Trigger_Default_Starter", 1, "POST", "kt_login1");<br />$loginTransaction->registerTrigger("BEFORE", "Trigger_Default_FormValidation", 10, $formValidation);<br />$loginTransaction->registerTrigger("END", "Trigger_Default_Redirect", 99, "{kt_login_redirect}");<br />// Add columns<br />$loginTransaction->addColumn("kt_login_user", "STRING_TYPE", "POST", "kt_login_user");<br />$loginTransaction->addColumn("kt_login_password", "STRING_TYPE", "POST", "kt_login_password");<br />$loginTransaction->addColumn("kt_login_rememberme", "CHECKBOX_1_0_TYPE", "POST", "kt_login_rememberme", "0");<br />// End of login transaction instance<br /><br />// Execute all the registered transactions<br />$tNGs->executeTransactions();<br /><br />// Get the transaction recordset<br />$rscustom = $tNGs->getRecordset("custom");<br />$row_rscustom = mysql_fetch_assoc($rscustom);<br />$totalRows_rscustom = mysql_num_rows($rscustom);<br /><br />?>
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <script src="includes/common/js/base.js" type="text/javascript"></script>
  <br />
  <script src="includes/common/js/utility.js" type="text/javascript"></script>
  <br />
  <script src="includes/skins/style.js" type="text/javascript"></script>
  <br /><?php echo $tNGs->displayValidationRules();?>
  <br />
  <br />
  <br />
  <br /><?php<br /> echo $tNGs->getLoginMsg();<br />?>
  <br /><?php<br /> echo $tNGs->getErrorMsg();<br />?>
  <br />
  <form method="post" id="form1" class="KT_tngformerror" action="%3C?php%20echo%20KT_escapeAttribute(KT_getFullUri());%20?%3E">
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <br />
  <table cellpadding="2" cellspacing="0" class="KT_tngtable">
  <tr>
  <td class="KT_th">
  <label for="kt_login_user">Username:</label>
  </td>
  <td>
  <input type="text" name="kt_login_user" id="kt_login_user" value="<?php echo KT_escapeAttribute($row_rscustom['kt_login_user']); ?>" size="32" />
  <br /> <?php echo $tNGs->displayFieldHint("kt_login_user");?> <?php echo $tNGs->displayFieldError("custom", "kt_login_user"); ?></td>
  </tr>
  <tr>
  <td class="KT_th">
  <label for="kt_login_password">Password:</label>
  </td>
  <td>
  <input type="password" name="kt_login_password" id="kt_login_password" value="" size="32" />
  <br /> <?php echo $tNGs->displayFieldHint("kt_login_password");?> <?php echo $tNGs->displayFieldError("custom", "kt_login_password"); ?></td>
  </tr>
  <tr>
  <td class="KT_th">
  <label for="kt_login_rememberme">Remember me:</label>
  </td>
  <td>
  <input <?php if (!(strcmp(KT_escapeAttribute($row_rscustom['kt_login_rememberme']),"1"))) {echo "checked";} ?> type="checkbox" name="kt_login_rememberme" id="kt_login_rememberme" value="1" />
  <br /> <?php echo $tNGs->displayFieldError("custom", "kt_login_rememberme"); ?></td>
  </tr>
  <tr class="KT_buttons">
  <td colspan="2">
  <input type="submit" name="kt_login1" id="kt_login1" value="Login" />
  <br /></td>
  </tr>
  </table>
  <br />
  <a href="forgot_password.php">Forgot your password?</a>
  <br /></form>
  <br />
  <p>&#160;</p>
  <br />
  <br />

• Flashbuilder and Cold Fusion  (using application/session variables)

  I would like to know if anybody uses Flashbuilder with Cold Fusion?
  Since Cold Fusion has lots of different scopes of variables (application, session, client, form, url, etc...) how do you manage this in Flex/Flashbuilder?
  Are there forums or groups specifically for using Flex3/Flashbuilder with backend server side technologies such as Cold Fusion?.
  The only server side technology that I have interest in is Cold Fusion.  I've seen basic tutorials and videos using Cold Fusion CFC's and data binding with Flex.  I haven't seen or heard anything using a Cold Fusion application, session, or client variable in Flex.
  Hopefully some of you have some experience on this topic.
  Thanks

  hey popster,
  i too had this question some time ago. my entire app was built on CF with HTML before i started integrating Flex 3 with it. i found that i needed to create cookie variables for all my session variables i was using in order to maintain and remember who the user was in my CFC calls. i also found that after i compiled a flex app, i changed the .html to .cfm (the file that loads the compiled SWF file). by doing this i was able to pass CF session variables into the flex app and you can refer to these anywhere in Flex by using Application.application.parameters.{variable name here} 
  add the CF variable in the FlashVars line to pass it into Flex (see the last line of code). this will create a variable (in my case i'm passing session.employeenumber). then in your flex app you can reference it by using Application.application.parameters.emplid:
  AC_FL_RunContent(
     "src", "Request",
     "width", "100%",
     "height", "87%",
     "align", "middle",
     "id", "Request",
     "quality", "high",
     "bgcolor", "#869ca7",
     "name", "Request",
     "allowScriptAccess","sameDomain",
     "type", "application/x-shockwave-flash",
     "pluginspage", "http://www.adobe.com/go/getflashplayer",
     "wmode","transparent",
     "FlashVars","emplid=<cfoutput>#session.employeenumber#</cfoutput"
  A little trick I learned (does Adobe really expect us to re-engineer how our apps have been working by no longer using sessions for Flex?). Then in your CFCs if you also create cookies for every session variable you can maintain the variables based on user login. HOPE THIS HELPS!
  -Matt