Need help getting mysqli_fetch_array() expects parameter 1 to be mysqli_result, boolean given error.

[akhilkumar332]

<?php

//get values from form in login page

$username=$_POST['user'];

$password=$_POST['pass'];


//connect to the server and select the database

$dbserver="localhost";

$dbusername="root";

$dbpassword="";

$dbname="";


$conn=mysqli_connect($dbserver,$dbusername,$dbpassword,$dbname)or die("Connection to Database Server Failed");


//to prevent mysql injection

$username=stripcslashes($username);

$password=stripcslashes($password);

$username=mysqli_real_escape_string($conn, $username);

$password=mysqli_real_escape_string($conn, $password);



//query the database for user

$sql="select * from  student where username='$username' and password='$password'";

$result= mysqli_query($conn, $sql);

$row=mysqli_fetch_array($result);

if($row['username']==$username && $row['password']==$password){

echo "Login Successfull.. Welcome".$row['username'];

}

else{

echo "Failed to login";

}


?>

 

[akhilkumar332]

problem solved.

 

thank you.

[benanamen]

Problem is not solved. Where are you people constantly coming up with this same bad code over and over again? Pretty much everything you could do wrong here, you did.

 

Save yourself troubles and start using PDO. It's how we code in 2017. https://phpdelusions.net/pdo

[akhilkumar332]

https://phpdelusions.net/pdo

 

Thank you for the link and i'm already started using pdo. 

 

 

You can now close this thread.

[Jacques1]

You can now close this thread.

 

We don't do that, because sometimes there are additional comments from other users. But you can mark the topic as solved by choosing the best answer and then clicking the “Best Answer” button.

[benanamen]

Another thing, do not ever use plain text passwords. Not now, not ever. @Jaques1 has posts in this thread about how to properly use password_hash and password_verify. Search the forum.