php - Login Script does not function -


I am having a minor problem with this login mechanism. This does not login to the user on most conditions if the user is newly registered So it works fine but then all other usernames are useless. The login.php page is as follows: 

    
 This is the script I use to see if the user is logged in or not. I paste it on all my pages.  
  & lt ;? Php $ username = $ _COOKIE ['username']; if ($ username == "") {echo '& lt; Form name = "login" action = "login.php" method = "post" & gt; & Lt; Label & gt; Login & lt; / Labels & gt; & Lt; Label = "username" & gt; Username: & lt; Input type = "text" name = "username" & gt; & Lt; / Label & gt; & Lt; Label = "password" & gt; Password: & lt; Input type = "password" name = "password" & gt; & Lt; / Label & gt; & Lt; Input type = "submit" & gt; & Lt; / Form & gt; '; } Else {echo '& lt; Form action = "logout.php" & gt; Logged in as: '. $ _COOKIE ["username"] '' '& Lt; Input type = "submit" value = "logout" & gt; & Lt; / form & gt; ' ; }? & Gt;   
 The problem I am facing is to echo out  
  $ line ['username'];; Echo ['password'] per line;   
 displays the user name and password of the line but this user does not log in.  
 Database structure is:  
 1 ID tinyint (4) 2 name short text 3 email short text 4 contact bine (20) 5 city tinyx 6 user name varchar (16) 7 password varchar (16) 8 ISDMNT tint (1)   
 
 
 You might want to say this  
  SELECT `username ', password to the customer   
 to say  
  select username,' password 'from customer WHERE User name =?   
 Or else it will give you to all the users in the database ... This is the reason why your form is giving you problems ... because it is checking the user first in the database. .  
 
 The following is how I will change my code ...  
  Change it:   
  $ Result = Mysqli_query ($ con, 'Select Username', 'Password From Customer'); While ($ line = mysqli_fetch_array ($ result)) {if ($ line ['username'] === $ user name & amp; $ line ['password'] === $ password) {$ _SESSION ['user Name '] = "$ username"; Setkey ('username', $ line ['user name']); Header ("Location: http: //localhost/loggedin.php"); } And {header ("location: http: //localhost/index.html"); }   
  at:   
  $ query = 'Select' user name, `password` from the customer where the user name =? '; If ($ stmt = $ mysqli- & gt; Ready ($ query)) {$ stmt- & gt; Bond_param ('s', $ username); $ Stmt- & gt; Executed (); $ Stmt-> Tie-break ($ ​​get_username, $ get_password); $ Stmt- & gt; Bring (); $ Stmt- & gt; Free_result (); $ Stmt- & gt; near (); } If ($ get_username === $ user name & amp; $ get_password === $ password) {$ _SESSION ['username'] = "$ username"; Setkey ('username', $ line ['user name']); Header ("Location: http: //localhost/loggedin.php"); Go out(); } Other {header ("location: http: //localhost/index.html"); Go out(); }   
 
 The way you are handling the password in the database is a big flaw ... they should not be a raw password ... please have them with salt, haveh and Maybe even a black pepper

Comments

Post a Comment

Popular posts from this blog

Verilog Error: output or inout port "Q" must be connected to a structural net expression -

I get the error every time, I try to compile. I'm not sure why anyone can help is? I'm new to verilog. Module D_FF (clerk, d, reset_n, q); Input D, Clack, reset_en; Output Q; reg Q; lab4_gdl f1 (.lk (~ clk), d (d), .q.m (qm)); lab4_GDL f2 (.Clk (Clk), D (QM), .Q (Q)); Always start at @ (posedge clk, neggeous reset_n) (Reset_n == 0) Q & lt; = 0; Other questions & lt; = D; Edit End: The problem is what we are asking to do: In this section, you apply the memory / registration circuit on the AlterEdie 2 board. will do. The circuit has the following specifications: The present value of swift SW15-0 on the D2 board should be shown in four hexadecimal four sections of HEX3-0. This part of the circuit will be combination logic. To use an active-less asynchronous reset and KEY1 to use KEY0 as the clock input, you must store SW15-0in in a 16-bit register in the value The register should be enabled to have a 16-bit positive edge, which uses the embedded D flip-flo
Read more

jasper reports - How to center align barcode using jasperreports and barcode4j -

I use iReport 5.5.0 . How to align a barcode component to the center The relevant piece of my jrxml is below & Lt; JR: Code 128 xmlns: JR = "http://jasperreports.sourceforge.net/jasperreports/components" xsi: schemaLocation = "http://jasperreports.sourceforge.net/jasperreports/components http: //jasperreports.sourceforge Purge / xsd / components.xsd "textPosition =" bottom "& gt; & Lt; Jr: codeExpression & gt; & Lt; [CDATA [$ F {number}]] & gt; & Lt; / Jr: codeExpression & gt; & Lt; / Jr: Code 128 & gt; & Lt; / componentElement & gt; "Text" itemprop = "text"> Create a style after this, it is called "barcode", like: & lt; Style name = "barcode" fontName = "Helvetica" fONTSIZE = "10" hAlign = "center" valign = "center" /> and set the property of your barcode element to "barcode".
Read more

c# - ASP.NET MVC - Attaching an entity of type 'MODELNAME' failed because another entity of the same type already has the same primary key value -

In brief, the wrapper module is inserted during posting and the status of an entry is changed to 'modified' . Before changing the state, the state is set to 'separate', but calling attachments () causes the same error to be thrown away. I am using EF 6. Model / wrapper class public class avi model {public A is a {get; Set; } Public listing & lt; B & gt; B {received; Set; } Public cc {receipt; Set; }} Administrator edit public functioning (int? id) {if (id == null) {new HttpStatusCodeResult (HttpStatusCode.BadRequest); } If (! Conveyor Access (id.Value)) new HTTPTitus code result (HTTP status code. Forbidden); Var aViewModel = new AViewModel (); aViewModel.A = db.As.Find (id); If (aViewModel.Receipt == zero) {return HttpNotFound (); } aViewModel.b = db.Bs.Where (x => x.aid == id.Value) .Oolist (); AViewModel.Vendor = db.Cs.Where (x => x.cid == aViewModel.a.cID) .FirstOrDefault (); See Return (aViewModel); } [HTPFost] [Valid AntitiferousTeacon
Read more