PHP+MySQL Login wont work -

-

i have been trying script go db , fetch data, login etc...

my php version 5.6. have included code in both index page [where form is] , problematic script in question.

login form code:

<form class="form" action="php-process/main_login-check.php" method="post">         <input type="text" placeholder="username"  name='username' id='username' maxlength="50" >         <input type="password" placeholder="password" name="password" id="password">         <button type="submit" id="login" name="login">go</button>          <button type="reset" id="reg-button"           onclick="mm_openbrwindow('app/register.php','register @ mysite.com','scrollbars=no,width=500,height=500');javascript:regprocess();">         register</button>          </form>

processing script [main_login-check.php]

<?php /*** begin our session ***/ session_start();  /*** check if users logged in ***/ if(isset( $_session['id'] )) { $message = 'users logged in'; } /*** check both username, password have been submitted ***/ if(!isset( $_post['username'], $_post['password'])) { $message = 'please enter valid username , password'; } /*** check username correct length ***/ elseif (strlen( $_post['username']) > 20 || strlen($_post['username']) < 4) { $message = 'incorrect length username'; } /*** check password correct length ***/ elseif (strlen( $_post['password']) > 20 || strlen($_post['password']) < 4) { $message = 'incorrect length password'; } /*** check username has alpha numeric characters ***/ elseif (ctype_alnum($_post['username']) != true) { /*** if there no match ***/ $message = "username must alpha numeric"; } /*** check password has alpha numeric characters ***/ elseif (ctype_alnum($_post['password']) != true) {     /*** if there no match ***/     $message = "password must alpha numeric"; } else { /*** if here data valid , can insert database     ***/ $phpro_username = filter_var($_post['username'], filter_sanitize_string); $phpro_password = filter_var($_post['password'], filter_sanitize_string);  /*** can encrypt password ***/ $phpro_password = sha1( $phpro_password );  /*** connect database ***/ /*** mysql hostname ***/ $mysql_hostname = 'localhost';  /*** mysql username ***/ $mysql_username = 'root';  /*** mysql password ***/ $mysql_password = 'thepass';  /*** database name ***/ $mysql_dbname = 'login_main';  try {     $dbh = new pdo("mysql:host=$mysql_hostname;dbname=$mysql_dbname", $mysql_username, $mysql_password);     /*** $message = message saying have connected ***/      /*** set error mode excptions ***/     $dbh->setattribute(pdo::attr_errmode, pdo::errmode_exception);      /*** prepare select statement ***/     $stmt = $dbh->prepare("select id, username, password user                 username = :username , password = :password");      /*** bind parameters ***/     $stmt->bindparam(':username', $phpro_username, pdo::param_str);     $stmt->bindparam(':password', $phpro_password, pdo::param_str, 40);      /*** execute prepared statement ***/     $stmt->execute();      /*** check result ***/     $user_id = $stmt->fetchcolumn();      /*** if have no result fail boat ***/     if($user_id == false)     {             $message = 'login failed';     }     /*** if have result, ***/     else     {             /*** set session user_id variable ***/             $_session['id'] = $user_id;              /*** tell user logged in ***/             $message = 'you logged in';     }   } catch(exception $e) {     /*** if here, has gone wrong database ***/     $message = 'we unable process request. please try again later'; } } ?>  <html> <head> <title>login</title> </head> <body> <p><?php echo $message; ?> </body>

the error flagging working ok, , database connection ok. regardless of whether use existing record in database login or not, still error 'login failed'.

thanks in advance.

solved - input, appreciate helpful. problem simple, storing password in plain text, , asking in sha1, wasn't there. resolved encrypting password before sent database in registration form. cheers engin hint! :)


Comments

Post a Comment

Popular posts from this blog

Fail to load namespace Spring Security http://www.springframework.org/security/tags -

-
i have problem namespace of spring security on xhtml page. don't understand why can't load uri, , have following issue: whitelabel error page application has no explicit mapping /error, seeing fallback. tue jul 21 16:58:12 utc 2015 there unexpected error (type=not found, status=404). please need help! possible uri has been changed? best regards you using incorrect namespace url. correct url http://www.springframework.org/schema/security the error page seeing spring source website since not recognize url. try visiting http://www.springsource.org/security/tags in browser update : spring security tags used in jsp page correct tag lib declaration is: <%@ taglib prefix="sec" uri="http://www.springframework.org/security/tags" %>
Read more

sql - MySQL query optimization using coalesce -

-
can explain me why second query faster first? (first 1 takes around 40 seconds, second 1 less 0.1) select releases.feature_code, releases.platform_id, version, release_date, general_available, uri, filesize, display_name, feature_name.full_name, if ((select exists(select 1 release_exceptions releases.feature_code = release_exceptions.feature_code , releases.platform_id = release_exceptions.platform_id , releases.version = release_exceptions.version) = 1), 1, 0) release_exceptions releases left outer join platform using(platform_id) left outer join feature_name using(feature_code) order version desc; ~~~ query 2 ------------------ ~~~ select feature_code, version, release_date, general_available, platform_id, uri, filesize, display_name, feature_name.full_name, coalesce(release_exceptions, 0) release_exceptions mus.releases left outer join ( select distinct feature_code, version, platform_id, 1 release_exceptions mus.release_exceptions ) release_exceptions using ...
Read more

unity3d - Unity local avoidance in user created world -

-
i'm using unity3d networked multiplayer online game have large complex 3d terrain scene forest, trees, cliff, hills, mountains, bounders, etc. players can build structures sort of minecraft, , put them anywhere in scene, or move them around anytime. aside human controlled players, there automated ai players , objects animals roaming around scene following path. the problem how make these automated ai players , animals, able navigate around static , dynamic player created structures, because path follow can blocked player created structures, or other players , other ai objects, cliffs etc. have find away around them or on track if tumble down off high cliff example. so made navmesh , used navagents, takes care of static, non moving objects, how make ai players navigate around each other , dynamic structures created players can number in hundreds? i thought of adding navmeshobstacle everything, result in being attached hundreds of objects since user created structures b...
Read more