[eluser]Unknown[/eluser]
I just made a small simple edition of the problem where I still can access protected page even though I have logged out:
Code:
<?php if (!defined('BASEPATH')) exit('No direct script access allowed');
class Site extends CI_Controller
{
public function index()
{
$this->load->library(array('session'));
$this->load->helper(array('url'));
switch($this->uri->segment(1))
{
case'login':
if(isset($_POST['submit_login']))
{
$this->session->set_userdata(array('user_id' => 1));
redirect(base_url(''));
}
$data = array();
$this->load->view('test/login', $data);
break;
case'logout':
$this->session->unset_userdata('user_id');
redirect('login');
break;
default:
if(!$this->session->userdata('user_id')) { redirect('login'); }
$data = array(
'meta' => '',
'styles' => '',
'scripts' => '',
'content' => '<h1>SESSION</h1><pre>'. var_export($this->session->all_userdata(), true) .'</pre>',
);
$this->load->view('test/front', $data);
break;
}
echo'<pre>';
print_r($this->session->all_userdata());
echo'</pre><hr />';
}
}