This problem was not present for the initial install and configuration - but cropped up later. I am having dificulty pinpointing the change that effected the user login. I searched the forum and found similar problems were encountered with PHP 4.2 and "register_globals" set to off. I confirmed that it is set to ON for my server.

The problem is that when a user logs in - the username and password are accepted, but when following a link the user is no longer logged into the cart. This happens for any action beyond the initial login - including site administration.

The link for the site is Acesdiscs (http://www.acesdiscs.com/demo.php) and the phpinfo for the apache server is here (http://www.acesdiscs.com/test.php).

I verified that the sessions are being created by php and are also created in the database. The sessions are also showing as part of the URL when following links.

Can you help me figure out why the users are no longer remembered by the system while browsing the cart after logging in?

Thanks,
Ace

Problem solved.

Must have been a PHP patch I applied to my system. I installed another patch today for mod_php4 and got it working. Here is the description for the patch - it was definately related to the session:



(1) The update also includes a fix that prevents the PHP interpreter
from crashing when invoking a session function (e.g. session_decode())
without calling session_start() first.
(2) The second fix concerns session_encode. In some cases, session
variables unset trough "unset $_SESSION['some_var']" were saved to
the session file nevertheless. With this fix, sessions behave the same as
they behave in PHP 4.3.1 when setting session.bug_compat_warn = 1
in php.ini.


Regardless, we're a back online. This definately illustrated the need for a test system to verify patched prior to production use - that is the next project. :)

-Ace