Php mysql if/else速记
有人能看出与下面的问题相关的速记有什么问题吗Php mysql if/else速记,php,mysql,security,if-statement,shorthand,Php,Mysql,Security,If Statement,Shorthand,有人能看出与下面的问题相关的速记有什么问题吗 echo "<td><font size=1 color=#e4d6b5>" . ($row['tier']<$_SESSIONS['tier'] ? "ACCESS DENIED" : $row['contents']) . "</font></td>"; 下面是整个表构建php。当前,任何层的用户都可能错误地查看任何seclevel内容,而他们的层应该对其进行限制 <?php in
echo "<td><font size=1 color=#e4d6b5>" . ($row['tier']<$_SESSIONS['tier'] ? "ACCESS DENIED" : $row['contents']) . "</font></td>";
下面是整个表构建php。当前,任何层的用户都可能错误地查看任何seclevel内容,而他们的层应该对其进行限制
<?php
include_once 'functions.php';
include_once 'db_connect.php';
sec_session_start();
if(login_check($mysqli) == true) {
$con=mysqli_connect("localhost","mylogin","mypassword","mysqldatabase");
// Check connection
if (mysqli_connect_errno())
{
echo "Failed to connect to MySQL: " . mysqli_connect_error();
}
function getColor($strOption)
{
switch ($strOption)
{
case "Case 1":
return "#cbae80";
case "Case 2":
return "#e59350";
case "Case 3":
return "#b7aaa4";
}
}
$result = mysqli_query($con,"SELECT opwire.*,members.username FROM opwire
LEFT JOIN members on opwire.userid=members.id order by date DESC");
echo "<table border='1'>
<tr>
<th>Category</th>
<th>Contents</th>
<th>Date/Time</th>
<th>Operative</th>
</tr>";
while($row = mysqli_fetch_array($result))
{
echo "<tr>";
echo "<td><font size=1 color='".getColor($row['category'])."'> " . $row['category'] . "</font></td>";
echo "<td><font size=1 color=#e4d6b5>" . ($row['tier']<$_SESSIONS['tier'] ? "ACCESS DENIED" : $row['contents']) . "</font></td>";
echo "<td><font size=1 color=silver>" . $row['date'] . "</font></td>";
echo "<td><font size=1 color=gold>" . $row['username'] . "</font></td>";
echo "</tr>";
}
echo "</table>";
mysqli_close($con);
} else {
echo 'Access to this area requires security clearance. <br/>';
}
?>
我相信每个案例的结尾都需要“BREAK”,否则它会一直掉到“#b7aaa4”
我相信你需要在每一个案例的结尾都有一个“BREAK”,否则它会一直掉到“#b7aaa4”
那么到底是什么不起作用呢?第一个出现的问题是什么?粗略地看一看,这里有一大堆错误,所以一次从一个问题开始。($row['tier']当tier 2的用户登录时,他们会看到表中与“内容”相关的所有内容。他们应该只看到设置为seclevel 2或更低级别的每一个内容行。我使用开关的部分中的返回,我使用,中断
可能是不必要的。一旦遇到返回
,控件在到达中断
之前退出函数。考虑到开关
的每个案例
部分中的返回
,它是一个函数。一旦遇到返回
,控件在到达中断
之前退出函数。
<?php
include_once 'functions.php';
include_once 'db_connect.php';
sec_session_start();
if(login_check($mysqli) == true) {
$con=mysqli_connect("localhost","mylogin","mypassword","mysqldatabase");
// Check connection
if (mysqli_connect_errno())
{
echo "Failed to connect to MySQL: " . mysqli_connect_error();
}
function getColor($strOption)
{
switch ($strOption)
{
case "Case 1":
return "#cbae80";
case "Case 2":
return "#e59350";
case "Case 3":
return "#b7aaa4";
}
}
$result = mysqli_query($con,"SELECT opwire.*,members.username FROM opwire
LEFT JOIN members on opwire.userid=members.id order by date DESC");
echo "<table border='1'>
<tr>
<th>Category</th>
<th>Contents</th>
<th>Date/Time</th>
<th>Operative</th>
</tr>";
while($row = mysqli_fetch_array($result))
{
echo "<tr>";
echo "<td><font size=1 color='".getColor($row['category'])."'> " . $row['category'] . "</font></td>";
echo "<td><font size=1 color=#e4d6b5>" . ($row['tier']<$_SESSIONS['tier'] ? "ACCESS DENIED" : $row['contents']) . "</font></td>";
echo "<td><font size=1 color=silver>" . $row['date'] . "</font></td>";
echo "<td><font size=1 color=gold>" . $row['username'] . "</font></td>";
echo "</tr>";
}
echo "</table>";
mysqli_close($con);
} else {
echo 'Access to this area requires security clearance. <br/>';
}
?>
function getColor($strOption)
{
switch ($strOption)
{
case "Case 1":
return "#cbae80";
break;
case "Case 2":
return "#e59350";
break;
case "Case 3":
return "#b7aaa4";
break;
}
}