php按钮会话检查并允许访问
这对我没有帮助 我尝试使用简单的php CRUD和会话 user.php如果登录用户只能访问ore其打印错误,但 这是user.php顶行php按钮会话检查并允许访问,php,Php,这对我没有帮助 我尝试使用简单的php CRUD和会话 user.php如果登录用户只能访问ore其打印错误,但 这是user.php顶行 <?php include('server.php') ?> <?php if(!isset($_SESSION['name'])){ // header("Location:login.php"); echo "nee to login to access this page" ; exit; session_destroy(
<?php include('server.php') ?>
<?php
if(!isset($_SESSION['name'])){
// header("Location:login.php");
echo "nee to login to access this page" ;
exit;
session_destroy();
}
?>
unset($_SESSION['name']);
session_destroy();
如果你试图点击URL,它就会被删除。不,我只是键入URL ip.user.php?delete=20,这是一天的错误,但它从数据库中删除了。你不知道吗?如果用户没有登录,他们可以访问user.php,但如果是directy type user.php?delete=10,它会被删除,所以在该页面上尝试打印(美元会话)检查你是否真的得到了这些值?若并没有,那个么你们可能会有注销的问题,因为会话并没有被破坏。。。
if (isset($_GET['delete'])) {
$id = $_GET['delete'];
$qry = "DELETE FROM crud WHERE id=$id" ;
mysqli_query($conn, $qry);
$_SESSION['message'] = "recoard deleted success";
$_SESSION['msg_type'] = "danger";
header('location: user.php');
}
//on the top of page check session is set or not
session_start();
if(isset($_SESSION) && isset($_SESSION['name']))
{
if (isset($_GET['delete']))
{
$id = $_GET['delete'];
$qry = "DELETE FROM crud WHERE id=$id" ;
mysqli_query($conn, $qry);
$_SESSION['message'] = "recoard deleted success";
$_SESSION['msg_type'] = "danger";
header('location: user.php');
}
}
else
{
echo 'cant access this page you need to login first';
}
unset($_SESSION['name']);
session_destroy();