Java Android:用户使用php登录时出错
我正在创建一个允许用户注册和登录的应用程序,它利用php连接到数据库,并使用mysql存储用户信息。 虽然我有一个问题,我似乎无法解决 这是php脚本DB_Functions.phpJava Android:用户使用php登录时出错,java,php,android,mysql,Java,Php,Android,Mysql,我正在创建一个允许用户注册和登录的应用程序,它利用php连接到数据库,并使用mysql存储用户信息。 虽然我有一个问题,我似乎无法解决 这是php脚本DB_Functions.php <?php class DB_Functions { private $db; //put your code here // constructor function __construct() { require_once 'DB_Connect.php'; // connect
<?php
class DB_Functions
{
private $db;
//put your code here
// constructor
function __construct()
{
require_once 'DB_Connect.php';
// connecting to database
$this->db = new DB_Connect();
$this->db->connect();
}
// destructor
function __destruct()
{
}
/**
* Storing new user
* returns user details
*/
public function storeUser($name, $email, $password)
{
$uuid = uniqid('', true);
$hash = $this->hashSSHA($password);
$encrypted_password = $hash["encrypted"]; // encrypted password
$salt = $hash["salt"]; // salt
$result = "INSERT INTO users(unique_id, name, email, encrypted_password, salt, created_at) VALUES('$uuid', '$name', '$email', '$encrypted_password', '$salt', NOW())";
// check for successful store
if ($result)
{
// get user details
$uid = mysqli_insert_id($result); // last inserted id
$result = ("SELECT * FROM users WHERE uid = $uid");
// return user details
return mysqli_fetch_array($result);
}
}
/**
* THE PROBLEM IS HERE!
* Get user by email and password
*/
public function getUserByEmailAndPassword($email, $password)
{
$result = ("SELECT * FROM users WHERE email = '$email'") or die(mysql_error());
// check for result
$no_of_rows = mysql_num_rows($result);
if ($no_of_rows > 0)
{
//user not found
return false;
}
else
{
$result = mysql_fetch_array($result);
$salt = $result['salt'];
$encrypted_password = $result['encrypted_password'];
$hash = $this->checkhashSSHA($salt, $password);
// check for password equality
if ($encrypted_password == $hash)
{
// user authentication details are correct
return $result;
}
}
}
/**
* Check user is existed or not
*/
public function isUserExisted($email)
{
$result = ("SELECT email from users WHERE email = '$email'");
$no_of_rows = mysql_num_rows($result);
if ($no_of_rows > 0)
{
// user existed
return true;
}
else
{
// user not existed
return false;
}
}
/**
* Encrypting password
* @param password
* returns salt and encrypted password
*/
public function hashSSHA($password)
{
$salt = sha1(rand());
$salt = substr($salt, 0, 10);
$encrypted = base64_encode(sha1($password . $salt, true) . $salt);
$hash = array("salt" => $salt, "encrypted" => $encrypted);
return $hash;
}
/**
* Decrypting password
* @param salt, password
* returns hash string
*/
public function checkhashSSHA($salt, $password)
{
$hash = base64_encode(sha1($password . $salt, true) . $salt);
return $hash;
}
}
?>
您实际上并不是在询问,也许:
$result = mysql_query("INSERT INTO users(unique_id, name, email, encrypted_password, salt, created_at) VALUES('$uuid', '$name', '$email', '$encrypted_password', '$salt', NOW())");
// check for successful store
if ($result)
请它们不再得到维护,而是在使用。相反,请了解并使用。您正在混合使用API(mysql.*
和mysqli.*
),这是一个坏主意,不会起作用。有关mysqli_num_行的文档:。有关mysqli_fetch_数组的文档:
$result = mysql_query("INSERT INTO users(unique_id, name, email, encrypted_password, salt, created_at) VALUES('$uuid', '$name', '$email', '$encrypted_password', '$salt', NOW())");
// check for successful store
if ($result)