Technical Support Forums

Free, outstanding support from WebAssist and your colleagues

› WebAssist Forums › Data Bridge › SecurityAssist › How to set a Session Variable

How to set a Session Variable

Thread began 2/03/2010 7:32 pm by champcorp393068 | Last modified 2/04/2010 5:54 pm by champcorp393068 | 1535 views | 4 replies |

2/03/2010 7:32 pm | #1 champcorp393068

How to set a Session Variable

I am 3 days in to using Security Assist, so be easy on me. I would like to set a "Session Variable" when the user logs in. Then allow access to restricted pages when the session variable is true (or equal to "1").

Currently when the user logs in, they are redirected to the "success" page. But when attempting to access protected pages (while logged in), access is denied. (The Server Behavior is set to restrict access based on the "pivisitors" rule).

My WA Rule is below:

<?php

function WA_Auth_GetComparisonsForRule($ruleName){
$comparisons = array();

switch ($ruleName){
case "Logged in to pivisitors":
$comparisons[0] = array(TRUE, "".((isset($_SESSION['sess_var']))?$_SESSION['sess_var']:"") ."", 1, "1");
break;
}
return $comparisons;
}

function WA_Auth_GetGroup($groupName){
$group = Array();

switch($groupName){

}

return $group;
}

?>

PS. Also, please advise how/when I can access the Solution Recipes (swf's). The links appear to be broken.

Thanks

2/04/2010 10:31 am | #2 Jason ByrnesWebAssist

On the login page, double click the SecurityAssist authenticate user server behavior.

On the Third step of the Authenticate user wizard, you can select columns from the user table that will be stored in session variables once the user logs in.

The Solution recipe links should be fixed in the next hour or so. sorry for the inconmvinience.

2/04/2010 1:28 pm | #3 champcorp393068

Session Variable - Access Rules Manager

Thanks Jason for the reply.

I thought a session variable (and the solution recipes) would solve my problem, but no joy. Here's where I am. I have created an Access Rule and applied it to a page. The rule I need is simple. Only allow access to the page when logged in. However, the page can be accessed even when the user is not logged in.

I think my Access Rule is incorrect. I've attached a snapshot. Please help lead me in the right direction.

Thanks

2/04/2010 2:20 pm | #4 Jason ByrnesWebAssist

when the user is not logged in, the email session variable is = to unset

the criteria:
$_SESSION['email] == $_SESSION['email]

will evaluate to true because the session is unset, the equation becomes:
unset == unset

If the user is logged in, the session will NOT be equal to "" however. Leave the compare to field blank and set the criteria to "<>" or "!="

2/04/2010 5:54 pm | #5 champcorp393068

Session Variable - Access Rules Manager

Thank you Jason,

Worked perfectly!

Build websites with a little help from your friends

Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.

Build websites from already-built web applications

These out-of-the-box solutions provide you proven, tested applications that can be up and running now. Build a store, a gallery, or a web-based email solution.