Jump to content

Recommended Posts

Hello all

New at this and it's driving me nuts.

What I have is a table that contains id,username, and password. I have managed to get the form that inserts the data into the table but can't seem to get the code right to verify that the username and password are in fact there and then redirect the user to the correct page.

 

I have a database named k_falls and the table named login that contains id username (unique field) and password.

 

Here is what I am trying to use to verify and redirect the user.

 

<?

include("k_falls_dbinfo2.inc.php");

mysql_connect(mysql,$username,$password);

@mysql_select_db($database) or die( "Unable to select database");

$query="SELECT * FROM login WHERE bname='$bname' AND psword='$psword'";

$result=mysql_query($query);

$num=mysql_numrows($result);

mysql_close();

 

if (bname==$bname)

{

echo "<b><center>$bname</center></b><br><br>";

}

else

{

Header("Location: register.php");

}

?>

 

Can someone please help

First thing, remove @ in front of your query(s), when you're new you want to see errors

Second, you dont set your variables for

 

$query="SELECT * FROM login WHERE bname='$bname' AND psword='$psword'";

 

What does $bname and $psword equal?

 

Third, what do you want from this line?

 

if (bname==$bname)

 

I understand what you are using them for, but you don't tell the code what they mean.

 

You need to do something like:

 

$bname = "Fred";

$psword = "mypassword";

 

Sorry about that

bname is the username

psword is the password

 

This is what someone else told me to try

if (bname==$bname)

 

very basic login script

 

Adjust the post name fields the fields taken from mysql and the header redirect and its all set.

 

<?php
//Open SQL connection
$username = mysql_real_escape_string(trim($_POST['Username']));
$password = mysql_real_escape_string(trim($_POST['password']));
$fields = array(
"UserId",
"Username",
"LastLogin"
);
$fields = implode($fields);
$q = "Select ".$fields." from `".$user_table."` Where Username = '".$username."', and Password = '".$password."'";
$r = mysql_query($q) or die(mysql_error()."<br /><br />".$q);
if(mysql_num_rows($r) >0){
//Valid User
while($row = mysql_fetch_assoc($r)){
foreach($row as $key=> $value){
$_SESSION['UserData'][$key] = $value;
}
}
die(header("location: topsecretpage.php"));
}
else{
//Invalid Login
echo "Invalid Login.";
}
?>

Bname and psword are set in a form on a previous page my problem is I am not sure how to verify that bname and psword are present in the login table if they are they need to go one place if not they need to go to the register page or back to login page.

 

Thanks for your help

Then you are not using them because you have no $_POST arrays in your code.

 

Bname and psword are set in a form on a previous page my problem is I am not sure how to verify that bname and psword are present in the login table if they are they need to go one place if not they need to go to the register page or back to login page.

 

Thanks for your help

This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.