Jump to content

Recommended Posts

OK I'm a noob at this, but I recently got a website. The SQL tables are in PHPadmin. I've been trying to use a php variable that I get with a POST from a form on a different htm page called login.htm. The php variable I use in a page called settings.php to check wether the person has entered the correct password.

 

I know the php part is correct in such a way that it doesn't cause syntax error or what else and I also know that I do connect to the sql table.

 

Somehow though I am doing something wrong and I'm too much of a noob to figure out what I'm doing wrong, so please help me if you can.

 

-> The WHERE clause for some reason doesn't do anything with my php variable. <-

 

I know the connector is right, I know the table is right, I know the password is right, yet I still get the wrong echo i.e. it echoes I put incorrect password, when infact I have used the correct one. I also checked wether I've mistakenly misplaced the if-else, but that's not it either.

Link to comment
https://forums.phpfreaks.com/topic/97238-problem-php-variable-to-search-sql-table/
Share on other sites

Here is what the files and my table look like:

 

LOGIN.HTM

 

<HTML>

<HEAD>

<TITLE>SHUGO</TITLE>

<META NAME="keywords" CONTENT="login">

<link rel="stylesheet" type="text/css" href="shugostyle.css"/>

</HEAD>

<BODY><H1>LOGIN</H1>

<div align="center"><FORM method="Post" action="settings.php">

<P>Enter your password <INPUT type="userpass" size=8 maxlength="8" name="password">

Choose your clan <SELECT size=1 name="player">

<OPTION value="Akita">Akita</OPTION>

<OPTION value="Amako">Amako</OPTION>

<OPTION value="Arima">Arima</OPTION>

<OPTION value="Asakura">Asakura</OPTION>

<OPTION value="Chiba">Chiba</OPTION>

<OPTION value="Chosokabe">Chosokabe</OPTION>

<OPTION value="Hatakeyama">Hatakeyama</OPTION>

<OPTION value="Hatano">Hatano</OPTION>

<OPTION value="Hojo">Hojo</OPTION>

<OPTION value="Hosokawa">Hosokawa</OPTION>

<OPTION value="Imagawa">Imagawa</OPTION>

<OPTION value="Ishida">Ishida</OPTION>

<OPTION value="Isshiki">Isshiki</OPTION>

<OPTION value="Ito">Ito</OPTION>

<OPTION value="Jinbo">Jinbo</OPTION>

<OPTION value="Kikkawa">Kikkawa</OPTION>

<OPTION value="Kikuchi">Kikuchi</OPTION>

<OPTION value="Kono">Kono</OPTION>

<OPTION value="Maeda">Maeda</OPTION>

<OPTION value="Matsudaira">Matsudaira</OPTION>

<OPTION value="Miyoshi">Miyoshi</OPTION>

<OPTION value="Mori">Mori</OPTION>

<OPTION value="Nagao">Nagao</OPTION>

<OPTION value="Oda">Oda</OPTION>

<OPTION value="Otomo">Otomo</OPTION>

<OPTION value="Ouchi">Ouchi</OPTION>

<OPTION value="Shimazu">Shimazu</OPTION>

<OPTION value="Shoni">Shoni</OPTION>

<OPTION value="Takeda">Takeda</OPTION>

<OPTION value="Uesugi">Uesugi</OPTION>

<OPTION value="Urakami">Urakami</OPTION>

<OPTION value="Yamana">Yamana</OPTION>

</SELECT>

<INPUT type="Submit" value="Login" name="login">

</form></div>

</BODY>

</HTML>

SETTINGS.PHP

 

<?php

$pass = $_POST["userpass"];

$group = $_POST["player"];

 

if ($con = @mysql_connect('localhost', 'shugonl', 'password')) {

mysql_select_db('shugonl', $con);

 

$tabpass = mysql_query ("SELECT Password FROM persons WHERE Clan='$group';");

 

if ($pass == $tabpass) {

$Allowlogin = 1;

setcookie("person", $_POST['clan'], time()+7200);

}

else {

$Allowlogin = 0;

}

?>

<HTML>

<HEAD>

<TITLE>shugo</TITLE>

<META NAME="keywords" CONTENT="settings">

<style type="text/css">

h1,h2,h3,p {font-family: verdana;}

h1,h2,h3,p {text-align: center}

body {background-color: #2F7B3A;}

a:link {color: #80FFFF}   

a:visited {color: #FF80C0}

a:hover {color: #FFFF80} 

a:active {color: #80FFFF}

</style>

</HEAD>

<BODY><H1>Welcome</H1>

<P>

<?php

if ($Allowlogin == 1) {

echo "<a href='daimyo.htm'>Continue</A>";

}

else {

echo "incorrect password please try again";

echo "<BR><a href='index.htm'>back</A>";

}

 

} else {

echo 'connection failed';

}

?>

</BODY>

</HTML>

<?php

 

if ($con = @mysql_connect('localhost', 'shugonl', 'password')) {

mysql_select_db('shugonl', $con);

echo 'connected to the database';

} else {

echo 'connection failed';

}

 

mysql_select_db("shugonl", $con);

$sqlpersons = "CREATE TABLE persons

(

Password varchar(8),

Clan varchar(10),

Username varchar(20),

Coffer int(8),

Taxheight int(1),

Yari int(6),

Dachi int(5),

Yumi int(5),

Daisho int(5),

Honjin int(2),

Taxyear int(2),

Attackp int(1),

Lastyear int(2)

)";

mysql_query($sqlpersons,$con);

 

$startday = idate("d");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Akita', 'unused', '0', '2', '0', '0', '0', '0', '2', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Amako', 'unused', '0', '2', '0', '0', '0', '0', '44', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Arima', 'unused', '0', '2', '0', '0', '0', '0', '59', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Asakura', 'unused', '0', '2', '0', '0', '0', '0', '18', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Chiba', 'unused', '0', '2', '0', '0', '0', '0', '14', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Chosokabe', 'unused', '0', '2', '0', '0', '0', '0', '56', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Hatakeyama', 'unused', '0', '2', '0', '0', '0', '0', '32', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Hatano', 'unused', '0', '2', '0', '0', '0', '0', '49', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Hojo', 'unused', '0', '2', '0', '0', '0', '0', '13', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Hosokawa', 'unused', '0', '2', '0', '0', '0', '0', '33', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Imagawa', 'unused', '0', '2', '0', '0', '0', '0', '17', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Ishida', 'unused', '0', '2', '0', '27', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Isshiki', 'unused', '0', '2', '0', '0', '0', '0', '50', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Ito', 'unused', '0', '2', '0', '0', '0', '0', '63', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Jinbo', 'unused', '0', '2', '0', '0', '0', '0', '19', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Kikkawa', 'unused', '0', '2', '0', '0', '0', '0', '43', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Kikuchi', 'unused', '0', '2', '0', '0', '0', '0', '61', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Kono', 'unused', '0', '2', '0', '0', '0', '0', '54', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Maeda', 'unused', '0', '2', '0', '0', '0', '0', '22', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Matsudaira', 'unused', '0', '2', '0', '0', '0', '0', '25', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Miyoshi', 'unused', '0', '2', '0', '0', '0', '0', '53', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Mori', 'unused', '0', '2', '0', '0', '0', '0', '37', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Nagao', 'unused', '0', '2', '0', '0', '0', '0', '3', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Oda', 'unused', '0', '2', '0', '0', '0', '0', '28', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Otomo', 'unused', '0', '2', '0', '0', '0', '0', '57', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Ouchi', 'unused', '0', '2', '0', '0', '0', '0', '46', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Shimazu', 'unused', '0', '2', '0', '0', '0', '0', '65', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Shoni', 'unused', '0', '2', '0', '0', '0', '0', '62', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Takeda', 'unused', '0', '2', '0', '0', '0', '0', '9', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp)

VALUES ('demo', 'Uesugi', 'unused', '0', '2', '0', '0', '0', '0', '11', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Urakami', 'unused', '0', '2', '0', '0', '0', '0', '39', '$startday', '0', '$startday')");

 

mysql_query("INSERT INTO persons (Password, Clan, Username, Coffer, Taxheight, Yari, Dachi, Yumi, Daisho, Honjin, Taxyear, Attackp, Lastyear)

VALUES ('demo', 'Yamana', 'unused', '0', '2', '0', '0', '0', '0', '42', '$startday', '0', '$startday')");

 

First, a couple things....

1) When posting code, please use the code button on the toolbar (it's the one with a # sign)

2) You shouldn't post usernames/passwords that are in your code. Replace them with *s

3) You posted this in the MSSQL area, but you are looking for PHP/MySQL

 

Nonetheless, I have 2 recommendations. First, remove the semicolon in this line:

$tabpass = mysql_query ("SELECT Password FROM persons WHERE Clan='$group';");

should be:

$tabpass = mysql_query ("SELECT Password FROM persons WHERE Clan='$group'");

 

You are using the return value from mysql_query incorrectly. You need to use a mysql_fetch_* function to get data from the query. The updated settings.php file should look like:

 

<?php
$pass = $_POST["userpass"];
$group = $_POST["player"];

if ($con = @mysql_connect('localhost', 'shugonl', 'password')) {
mysql_select_db('shugonl', $con);

$result = mysql_query ("SELECT Password FROM persons WHERE Clan='$group'");
$row = mysql_fetch_assoc($result);
$tabpass = $row['Password'];

if ($pass == $tabpass) {
$Allowlogin = 1;
setcookie("person", $_POST['clan'], time()+7200);
}
else {
$Allowlogin = 0;
}
?>
<HTML>
<HEAD>
<TITLE>shugo</TITLE>
<META NAME="keywords" CONTENT="settings">
<style type="text/css">
h1,h2,h3,p {font-family: verdana;}
h1,h2,h3,p {text-align: center}
body {background-color: #2F7B3A;}
a:link {color: #80FFFF}   
a:visited {color: #FF80C0}
a:hover {color: #FFFF80} 
a:active {color: #80FFFF}
</style>
</HEAD>
<BODY><H1>Welcome</H1>
<P>
<?php
if ($Allowlogin == 1) {
echo "<a href='daimyo.htm'>Continue[/url]";
}
else {
echo "incorrect password please try again";
echo "<BR><a href='index.htm'>back[/url]";
}

} else {
echo 'connection failed';
}
?>
</BODY>
</HTML>

3) You posted this in the MSSQL area, but you are looking for PHP/MySQL

 

yeah but that's non-posting. That's why I said, that I'm sorry that I did it here, but I couldn't do it there.

 

Anyway thanks for the help. I'll look into it and hopefully it will work now. :)

Use this for your settings.php and let me know what the output is:

 

<?php
$pass = $_POST["userpass"];
$group = $_POST["player"];

if ($con = @mysql_connect('localhost', 'shugonl', 'password')) {
mysql_select_db('shugonl', $con);

$result = mysql_query ("SELECT Password FROM persons WHERE Clan='$group'")
  or die("Query failed");
$row = mysql_fetch_assoc($result);
print_r($row);
$tabpass = $row['Password'];
print "Entered pass: {$pass}<br>Table pass: {$row['Password']}";
exit;

if ($pass == $tabpass) {
$Allowlogin = 1;
setcookie("person", $_POST['clan'], time()+7200);
}
else {
$Allowlogin = 0;
}
?>
<HTML>
<HEAD>
<TITLE>shugo</TITLE>
<META NAME="keywords" CONTENT="settings">
<style type="text/css">
h1,h2,h3,p {font-family: verdana;}
h1,h2,h3,p {text-align: center}
body {background-color: #2F7B3A;}
a:link {color: #80FFFF}   
a:visited {color: #FF80C0}
a:hover {color: #FFFF80} 
a:active {color: #80FFFF}
</style>
</HEAD>
<BODY><H1>Welcome</H1>
<P>
<?php
if ($Allowlogin == 1) {
echo "<a href='daimyo.htm'>Continue[/url]";
}
else {
echo "incorrect password please try again";
echo "<BR><a href='index.htm'>back[/url]";
}

} else {
echo 'connection failed';
}
?>
</BODY>
</HTML>

This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.