Security Assist issues

Hello,

I'm having some issues with Security Assist.

The first problem is when I add :
<?php
if (!isset($_SESSION)) {
session_start();
}
?>
on top of my page, I get the following warning message :

Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /public_html/gainde/welcome.php:1) in /public_html/gainde/welcome.php on line 3

The second issue is that, if the page's name is index.php and I add a dynamic text (i.e: {WAATKmembre.MemPseudo}) on it, I cannot see it even if I'm logged in. But if I change the page name to something else (i.e: welcome.php, home.php...), I can see the dynamic text.

I have attached the security assist and the index.php files for your references.

Thanks in advance for your help.

the WAATKmembre recordset relies on the session variable, so you will need to session start code for it ot work


the headers already sent error occurs if there is balnk space between code tags.

My gues is that when you past the session start code in, you are leaving a blank line at the top or after the closing php tag ?>. any blank lines lines or space between the php blocks will cause this error.

Hi Jason,

Thanks for your reply.
I already put the session_start code and that's after that I'm seeing the error message. I have checked again and again before that there is no blank space before opening this thread.

I have even deleted my cache but nothing has changed.

The second thing is the fact the WAATK recordset elements are not displaying when the page name is index.php.

That error at line one can also be caused if you enable the Univ=code Signature on the page.

In Dreamweaver, go to Modify -> Page Properties. Select the Title / Encoding section and un-check the "Include Unicode Signature (BOM)" Option.


for the dynamic test, can you send a copy of one of the pages where the dynamic text does work so it can compare it to the page you sent previously.

Hi Jason,

Great! The session error is now gone after I followed your instructions.

Regarding the other issue, I have attached another file in this message for the comparison.

Thanks in advance.

your welcome page includes the code to initialize the session:
<?php
if (!isset($_SESSION)) {
session_start();
}
?>

the index page does not

since the recordset relies on the session, this code must be added to the index page to initialize the session.

Hi Jason,

I actually sent and old index in which I deleted the session_start() code in order to take out the error. Now I just realize that the dynamic text is working if I put the "site_url/index.php". If I just put "site_url", the dynamic text will not show. Any method to show the dynamic text with the "site_url" only?

it sounds to me like you have an index.htm page and an index.php page.


when you use site_url/ it is loading the .htm page instead of the php page.

Jason,

There is no .htm or .html file. And the site_url/ is loading the index.php file with all the contents except the dynamic text when logged in.

The strange thing is this is the first time this happens to me.

try adding the following code at line 1 of the page:

<?php

if((substr($_SERVER['REQUEST_URI'],-1,1) == "/")  && (substr($_SERVER['SCRIPT_NAME'],-9,9) == "index.php")) {

    header("Location: ".$_SERVER['SCRIPT_NAME']);

}

?>