Sessions not creating correctly in custom function

If I remember, when a user is logged in using wp-loing.php, it is redirected. So, the correct flow should be:

  1. User log in
  2. In next page load (when user is redirected), hook on init and check if the user is correctly logged in, if so, start session and populate $_SESSION.
  3. Hook on wp_login and wp_logout to destroy session (also in wp_login, if user log in another account it will destroy previous session and start new one on next init).

So, I think this should work:

//Start session and populated variables for logged-in users
add_action('init', 'StartSession', 1);
function StartSession() {

    //Check if current user is logged in WordPress
    if( is_user_logged_in() ) {

        if(!session_id()) {
            session_start();
        }

        //You may need some check here of inside tngwp_processlogin() to avoid running
        //the same process over and over again if it is not needed
        tngwp_processlogin();

    }
}


//Destroy session if user logout or login in another account
add_action( 'wp_login', 'tngwp_session_destroy' );
add_action( 'wp_logout', 'tngwp_session_destroy' );
function tngwp_session_destroy() {
    // destroy the session 
    session_destroy();
}

function tngwp_processlogin() {
    global $wpdb, $current_user;
    define('PATH', $_SERVER['DOCUMENT_ROOT']);
    get_currentuserinfo();
    $username = $current_user->user_login;
    $tng_folder = $_SERVER['DOCUMENT_ROOT'] . '/genealogy/';
    include($tng_folder.'config.php');
    include($tng_folder."subroot.php");
    $session_language = $_SESSION['session_language'];
    $session_charset = $_SESSION['session_charset'];
    $languages_path = "languages/";
    include($tng_folder.'getlang.php');

    $tng_user = $wpdb->get_row("
                SELECT * 
                FROM tng_users 
                WHERE username="$username"", 
                ARRAY_A
            );
    $newdate = date ("Y-m-d H:i:s", time() + ( 3600 * $time_offset ) );
    $userid = $tng_user['userID'];
    $wpdb->update( 
        'tng_users', 
        array( 'lastlogin' => $newdate ), 
        array( 'userID' => $userid ), 
        array( '%s' ), 
        array( '%d' )
    );

    $newroot = ereg_replace( "https://wordpress.stackexchange.com/", "", $rootpath );
    $newroot = ereg_replace( " ", "", $newroot );
    $newroot = ereg_replace( "\.", "", $newroot );
    setcookie("tnguser_$newroot", $tng_user['username'], time()+31536000, "https://wordpress.stackexchange.com/");
    setcookie("tngpass_$newroot", $tng_user['password'], time()+31536000, "https://wordpress.stackexchange.com/");
    setcookie("tngpasstype_$newroot", $tng_user['password_type'], time()+31536000, "https://wordpress.stackexchange.com/");

    $_SESSION['currentuser'] = $tng_user['username'];
    if ( $tng_user['role']=='admin' ) { 
        $_SESSION['allow_admin'] = 1;
        setcookie("tngloggedin_$newroot", "1", 0, "https://wordpress.stackexchange.com/");
    }
    else { $_SESSION['allow_admin'] = 0; }
    $logged_in = $_SESSION['logged_in'] = 1;
    $allow_edit = $_SESSION['allow_edit'] = ($tng_user['allow_add'] == 1 ? 1 : 0);
    $allow_add = $_SESSION['allow_add'] = ($tng_user['allow_add'] == 1 ? 1 : 0);
    $tentative_edit = $_SESSION['tentative_edit'] = $tng_user['tentative_edit'];
    $allow_delete = $_SESSION['allow_delete'] = ($tng_user['allow_delete'] == 1 ? 1 : 0);

    $allow_media_edit = $_SESSION['allow_media_edit'] = ($tng_user['allow_edit'] ? 1 : 0);
    $allow_media_add = $_SESSION['allow_media_add'] = ($tng_user['allow_add'] ? 1 : 0);
    $allow_media_delete = $_SESSION['allow_media_delete'] = ($tng_user['allow_delete'] ? 1 : 0);

    $_SESSION['mygedcom'] = $tng_user['mygedcom'];
    $_SESSION['mypersonID'] = $tng_user['personID'];

    $allow_living = $_SESSION['allow_living'] = $tng_user['allow_living'];
    $allow_private = $_SESSION['allow_private'] = $tng_user['allow_private'];

    $allow_ged = $_SESSION['allow_ged'] = $tng_user['allow_ged'];
    $allow_pdf = $_SESSION['allow_pdf'] = $tng_user['allow_pdf'];
    $allow_profile = $_SESSION['allow_profile'] = $tng_user['allow_profile'];

    $allow_lds = $_SESSION['allow_lds'] = $tng_user['allow_lds'];

    $assignedtree = $_SESSION['assignedtree'] = $tng_user['gedcom'];
    $assignedbranch = $_SESSION['assignedbranch'] = $tng_user['branch'];
    $currentuser = $tng_user['username'];
    $_SESSION['currentuser'] = $currentuser;
    $currentuserdesc = $_SESSION['currentuserdesc'] = $tng_user['description'];
    $session_rp = $_SESSION['session_rp'] = $rootpath;

    $wpdb->flush();
    return $tngusername;
 }

Related Posts:

  1. Objective Best Practices for Plugin Development? [closed]
  2. How do i best handle custom plugin page actions?
  3. How to create an API for my plugin?
  4. Plugins in symlinked directories?
  5. In Which Contexts are Plugins Responsible for Data Validation/Sanitization?
  6. Plugin Form Submission Best Practice
  7. Best way to abort plugin in case of insufficient PHP version?
  8. What do you think about custom designed plugin/theme options UIs?
  9. Where to put third party PHP library?
  10. How to use PanelColorSettings in custom Gutenberg block?
  11. Optimize shortcode callbacks
  12. How to integrate a PHP webmail script into the backend of WordPress?
  13. Is There A Hook To Process The Content Of The Text Widget?
  14. How should you hook a session_start() when authoring a plugin?
  15. Does using set_transient() function can lead to MySQL problems?
  16. How to log plugin errors to plugin error_log file
  17. Which to use to execute code during the saving of a plugin settings page?
  18. Allowing for multiple template views on the Gallery Settings page when using the Visual Editor
  19. Using Primary Color in Plugin Block
  20. When is it appropriate to put functions on page template vs. functions.php?
  21. Custom theme sufficient or custom plugin neccessary for this feature set?
  22. When to check if a function exists
  23. How to create custom home page via plugin?
  24. Adding callback function for wp_ajax_ has no effect
  25. Featured Image not showing in admin
  26. Nuance in adding CPT and TAX to a submenu
  27. Can I differentiate between “Delete Post Permanently” and “Empty Trash” and do something for each accordingly?
  28. Delete a specific item menu when I deactivate my plugin
  29. Get the password key when using the wp_new_user_notification_email filter
  30. Order properties should not be accessed directly
  31. How to deal with equal & similar arguments for a function?
  32. Executing a function upon webhook calling wordpress
  33. Customizer: widget-synced triggers twice
  34. how to use hook deleted_user into custom function to delete user from custom table
  35. Disable The Events Calendar plugin from loading its scripts
  36. Where to store the name of a custom table?
  37. Applying OO patterns and principles to plugin development
  38. WordPress is automatically linking plain text email addresses
  39. Is Using WordPress Supplied WYSIWYG Advisable?
  40. ServerSideRender and Media Object: attributes passing image data object to php renderer even though it’s not set
  41. Is it possible to change a term slug before being saved to the database?
  42. Maximum lifetime for nonce
  43. Clearing caches on plugin uninstall
  44. How to use a hook to override an update_post_meta call in a plugin?
  45. External Authentication, session_tokens not destroyed on logout
  46. Custom Taxonomy to dropdown box on adminside wordpress
  47. Create a free scripts and styles template within a plugin
  48. How to modify the comments to be displayed in a post?
  49. How can I turn a custom wordpress page into a product page?
  50. Incorporate small angular feature in my wordpress site
  51. How to Bind one post object Type with other postobject Type in Advanced Custom field [closed]
  52. captcha not working in my custom plugin
  53. How to modify files inside wp-includes directory in wordpress
  54. How should I go about registering JavaScript that isn’t a file? [duplicate]
  55. How to set a cookie for logged in users to md5($user->ID . “my_secret”)?
  56. Show message from backend
  57. Displaying “One Time” Notification in Plugins
  58. Why in this archive page that call query_posts() function show only the last 10 posts?
  59. Create Widget or Enable Shortcodes in Sidebar
  60. Updating transient value frequently
  61. how to save wp_editor html content in options table
  62. Converting core modification to a plugin
  63. How to use a WP_Customize_Control outside of the Customizer?
  64. How to replace settings in WordPress plugin from a theme
  65. How to remove/replace current page template?
  66. How to determine which capability to use?
  67. Serial Number from custom table not appear in woocommerce_email_before_order_table action
  68. Custom Endpoint – Does it possible to use PUT method with WP API Rest?
  69. Why won’t this submenu page show? – My First WordPress Plugin
  70. How to create a custom post-new.php page for plugin , no wp menu
  71. Want to know how to reveal a WordPress theme, considering the theme name is hidden?
  72. Save meta box data from selected dropdown list in bbpress reply form
  73. Does hooking into a plugin action / filter override the plugin’s function for that hook?
  74. $_SESSION inside php function executed by AJAX
  75. Create Customization panel for Plugins not for theme
  76. Determine if the current page, is being edited
  77. WordPress delete mysql rows with string
  78. external Integration with wordpress timeout error
  79. Making adding info to an overlay bio easy for average user?
  80. Implementing Select2 plugin into WordPress
  81. How to create session for user which is not an admin user
  82. Associating special meaning with user id 0
  83. Managing Custom Designed Content
  84. Can I access WordPress API’s from within plugin scripts?
  85. Theming Custom Plugin Page
  86. Sessions in plugin development?
  87. Link to a admin submenu item using a custom link
  88. Adding class to the parent of current-post-ancestor / current-menu-parent / current-post-parent
  89. Change the search results header from plugin
  90. Dynamic banner for use on external sites
  91. How do I store a custom dataset in WordPress to best take advantage of API?
  92. Client Profiles
  93. Developing Themes on WordPress, Looking for Excellent Tutorials [closed]
  94. Create a Custom Login System in WordPress [closed]
  95. How to Implement SAM Broadcaster with WordPress? [closed]
  96. Custom plugin not appearing
  97. Extend WP_List_Table class – Edit wp_usermeta – WPPB.me Boilerplate – Action error
  98. Is there any other ways to replicating changes on live from staging without pushing from git
  99. Can I log the searches that are returning 404 in the DB?
  100. Developing an IP lookup function using an API

Leave a Comment