Database 'Validation'
Posted on
16th Feb 2014 07:03 pm by
admin
Hi everyone,
I'm trying to validate the password entered by the user with the password in the database. I've worked out that it checks the username fine (if the username doesn't exist it displays an error), however when it tries to validate the password with the mysql password it never works. The working 'example' is at http://scapersclearing.com/fansite/login.php;and this is the PHP (note base.php contains the database information and header.php, navigation.php and footer.php and all front-end). I'm planning on adding html entities and preventing SQL injection once this works. Username: Test - Password: password89 (md5 c1c2434f064da663997b1a2a233bf9f6)
Code: <?php
include("base.php"); //Include MySQL connection
$username = $_POST['username']; //Connect form username with strings
$password = $_POST['password']; //Connect form password with strings
$salt = "xia8u28jd0ajgfa"; //Define the salt string
$salt2 = "oqipoaks42duaiu"; //Define the second salt string
$password = md5($salt.$password.$salt2); //Encrypt the password
$result = mysql_query("SELECT * FROM members WHERE username = '".$username."'"); //Open the members table
while($row = mysql_fetch_array( $result )) { //Convert the members table into an array
if ( $username != $row['username'] ) { //If user entered username doesn't equal the database username
include("header.php"); //Print the message
include("navigation.php");
echo "Invalid username or password!";
include("footer.php");
}
else {
$username = $username_new;
$password = $password_new;
if ( $row['password'] == $password_new ) { //Validate username and password
setcookie('c_username', $username_new, time()+6000); //Set the username cookie
setcookie('c_password', $password_new, time()+6000); //Set the cookie
header("Location:index.php"); //Redirect to home page
} else {
include("header.php"); //Print the message
include("navigation.php");
echo "<div class="content"><p>Invalid username or password!<p></div>";
include("footer.php");
} } }
?>
No comments posted yet
Your Answer:
Login to answer
72 
27 
Other forums
GET * FROM _____ Except?
I have a site that is for stock photography.
This section of the code calls images to display
CURL question
i am wondering if it's possible to use multi curl with login something like
login once to web
Inserting multiple records from single form
I've found a number of threads that deal with this issue, but I'm new to php and coding language so
How to clone an SAP ECC using bacup tape on z/os?
We want to clone our production to a different SID using backup tape.
problem with refreshing
in my site, i have an index page, it has a main div. this main div's content is changing according t
Formatting echo from database
So I have a database that stores First and last names, then echos them back to a website, as of now
Links not updating
I'm trying to fuel a simple navigation system for a news section. It works fine when it comes to ret
PHP and Javascript
Hi Guys,
Im trying to load the contents of an html file into a text area for editing, this is
Loosing changed contents when used FM REUSE_ALV_GRID_DISPLAY
Hi,
I have used FM REUSE_ALV_GRID_DISPLAY in my program as below.
CALL FUNCT
text box alphanumeric caracters only
hi all!
I have search on google on how to enter in a test box only caracters A-Z,a-z,0-9 usi
