Jump to content

cant get the authentication to work anymore..

alexandre

By alexandre
in PHP Coding Help

 Share
Go to solution Solved by alexandre,

Recommended Posts

alexandre Advanced Member

alexandre

Posted
Posted

since i had to redo my database everything is messed up.. now i cant get to login to my website anymore but my file didnt changed from the time it was working fine , except for the database credentials.

if anyone could take a look at this very small code i would appreciate, no matter what i do it keeps returning that i entered a incorrect password or username, it wont succeed to make the match with the data pulled from the database. heres the authenticate.php: 

<?php
session_start();
include 'connect_db2.php';
if (!isset($_POST['username'], $_POST['password'])) {
	// Could not get the data that should have been sent.
	exit('Please fill both the username and password fields!');
}
// Prepare our SQL, preparing the SQL statement will prevent SQL injection.
if ($stmt = $con->prepare('SELECT id, username, password FROM accounts WHERE username = ?')) {
	// Bind parameters (s = string, i = int, b = blob, etc), in our case the username is a string so we use "s"
	$stmt->bind_param('s', $_POST['username']);
	$stmt->execute();
	// Store the result so we can check if the account exists in the database.
	$stmt->store_result();
	if ($stmt->num_rows > 0) {
		$stmt->bind_result($id, $username, $password);
		$stmt->fetch();
		// Account exists, now we verify the password.
		// Note: remember to use password_hash in your registration file to store the hashed passwords.
		if (password_verify($_POST['password'], $password)) {
			// Verification success! User has logged-in!
			// Create sessions, so we know the user is logged in, they basically act like cookies but remember the data on the server.
			session_regenerate_id();
			$_SESSION['loggedin'] = TRUE;
			$_SESSION['name'] = $username;
			$_SESSION['id'] = $id;
			header('location: home.php');
			exit;
		} else {
			// Incorrect password
			echo 'Incorrect username and/or password!';
		}
	}
	 else {
		// Incorrect username
		echo 'Incorrect username and/or password!';
	}
	$stmt->close();
}
?>

 

This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.