PHP and MySQLi

[magcr23]

Hi guys, i have this code:

 

$sql="SELECT * FROM admin";

$resultado = mysqli_query($con, $sql);

$row=mysqli_fetch_array($resultado,MYSQLI_NUM);

 

<?php echo $row[0] ?>

 

It returns the first user of the table, but i want the user who's loged, someone can help me with that?

[Ch0cu3r]

Apply a WHERE clause to your select query (I am guessing the username/userid field name and variable)

$sql="SELECT * FROM admin WHERE user = '$user'";

[magcr23]

I tried to do something like that:

 

$row=mysqli_fetch_array($resultado,MYSQLI_ASSOC);

$user = $row['user'];

echo $user;

 

But the result is the same.

Can you tell me what am i doing wrong? Or modify my code to do what i need? 

I need this problem solved to continue with my project, or i'll fail in my class xD

[magcr23]

I think that half of the problem is solved, with that i can see the right user who's logged.

 

$row=mysqli_fetch_array($resultado,MYSQLI_ASSOC);

$user2 = $_SESSION["user"];

echo $user2;

 

But how can i update an password?

 

I tryed with that:

 

$updatePW= "UPDATE admin SET password = sha1('$new') WHERE user = password = sha1('$old') ";

 

But it update all the equal passwords. So i tryed with that:

 

$updatePW= "UPDATE admin SET password = sha1('$new') WHERE user = $user2 && password = sha1('$old') ";

 

But it don't work... What can i do?

[Ch0cu3r]

$user2 needs to be wrapped in quotes in the query

$updatePW= "UPDATE admin SET password = sha1('$new') WHERE user = '$user2' AND password = sha1('$old') ";

[magcr23]

 

$user2 needs to be wrapped in quotes in the query

$updatePW= "UPDATE admin SET password = sha1('$new') WHERE user = '$user2' AND password = sha1('$old') ";

I miss that, thx xD