Jump to content

Prepared Statement Not Getting Set

Joseph Witchard

By Joseph Witchard
in PHP Coding Help

Recommended Posts

Joseph Witchard Newbie

Joseph Witchard

Posted
Posted 

<?php

  // start the session
  
  session_name('uhoh');
  session_set_cookie_params(900);
  session_start();
  
  // require the connection and salt settings
  
  require_once("path_to_connection");
  
  require_once("path_to_salt");
  
  $conn = my_access;
  
  // process the form
  
  if (array_key_exists('submit', $_POST) && !empty($_POST['submit']))
  {
  
    // begin check to see if the fields are set
    
    $fields = array
    (
    
      // true = required, false = expected
      
      'user' => true,
      'pwd' => true
      
    );
    
    function trim_value(&$value) // function from php.net
    {
    
      $value = trim($value);
      
    }
    
    // create an empty array for missing elements
    
    $missing = array();
    
    foreach ($fields as $field => $expected)
    {
    
      if (!isset($_POST[$field]) && $expected)
      {
      
        $missing[] = $field;
        
      }
      
      else // clean up
      {
      
        if (is_array($_POST[$field]))
        {
        
          array_walk($_POST[$field], 'trim_value');
          
        }
        
        else
        {
        
          $_POST[$field] = trim($_POST[$field]);
          
        }
        
       }
       
     }
     
     if (empty($missing))
     {
     
       $username = $_POST['user'];
       $password = $_POST['pwd'];
       $password = md5($salt. md5($password . $salt));
       
       $query = "SELECT `user_id`, `admin`, `username`, `pwd` FROM `users` WHERE `username` = ? AND `pwd` = ? LIMIT 1";
       
       
       
       
       if ($stmt = $conn->prepare($query))
       {
       
         // bind the parameters
         
         $stmt->bind_param('ss', $newUser, $newPwd);
         
         $newUser = $username;
         $newPwd = $password;
         
         
         
         if ($stmt->execute())
         {
         
           // bind the results
           
          $stmt->bind_result($jID, $jAdmin, $jName, $jPwd);
           
           if ($stmt->fetch())
           {
           
             // check to see if he's an Admin
             
             if ($jAdmin != 1)
             {
             
               $notJonathan = true;
               
               exit;
               
             }
             
             else
             {
             
               $_SESSION['jonathan'] = true;
               $_SESSION['id'] = $jID;
               $_SESSION['name'] = $jName;
               
               // redirect him
               
               header("Location: https://uhrebirth.com/staff/death.php");
               
             }
             
           }
           
           else
           {
           
             // could find the data
             
             $noExistence = true;
             
           }
           
         }
         
         else
         {
         
           $noExecution = true;
           
         }
         
         $stmt->close();
         
       }
       
     }
     
     $conn->close();
     
   }
   
?>

       

 

For some reason, the $stmt variable keeps returning false, And I don't know why. Any ideas?

Link to comment
https://forums.phpfreaks.com/topic/134832-prepared-statement-not-getting-set/
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.