maideen Posted March 22, 2014 Share Posted March 22, 2014 HiI am new in php. Below code works fine. But If I change Select Command Like this:$sql = "SELECT login_id,password FROM user_right WHERE login_id = '$username' and password = '$password'"; It shows error recorde not found. Also I need to show the role of select user. Pls Help me <?php include_once'../inc/header.php'; if (isset($_POST['submit']) && $_POST['submit'] != "" ) { if(empty($_POST['username'])) { $handleError = "User is empty!"; $_SESSION["errormsg"] = $handleError; header("Location:../notification/errormsg.php"); //echo $handleError; return false; } if(empty($_POST['password'])) { $handleError = "Password is empty!"; $_SESSION["errormsg"] = $handleError; header("Location:../notification/errormsg.php"); //echo $handleError; return false; } $username = trim($_POST['username']); $password = trim($_POST['password']); try { $sql = "SELECT * FROM user_right WHERE login_id = '$username' and password = '$password'"; $stmt = $dbh->prepare($sql); $stmt->setFetchMode(PDO::FETCH_ASSOC); if ($stmt = $dbh->query($sql)) { if ($stmt->fetchColumn() > 0) { $_SESSION["username"] = $username; $_SESSION["password"] = $password; header("Location:../admin/"); exit(); } else { $handleError="user name or password is wrong"; $_SESSION["errormsg"] = $handleError; header("Location:../notification/errormsg.php"); exit(); }; } } catch (PDOException $e) { echo $e->getMessage() . "\n"; file_put_contents('PDOErrors.txt', $e->getMessage(), FILE_APPEND); } } include '../inc/footer.php'; Quote Link to comment Share on other sites More sharing options...
ginerjm Posted March 22, 2014 Share Posted March 22, 2014 Are you hashing your password into the db and forgetting that when you try and find it again? Can you show us the error message you are getting? Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.