PHP:非常基本的验证
因此,我试图将$\u POST值与我的数据库进行比较,如果匹配,则回显“已获取。输入另一个”。但它似乎不起作用..所以我尝试将$\u POST值与我的数据库进行比较,如果匹配,则回显“已获取。输入另一个”。但它似乎不起作用。。PHP:非常基本的验证,php,validation,mysqli,Php,Validation,Mysqli,因此,我试图将$\u POST值与我的数据库进行比较,如果匹配,则回显“已获取。输入另一个”。但它似乎不起作用..所以我尝试将$\u POST值与我的数据库进行比较,如果匹配,则回显“已获取。输入另一个”。但它似乎不起作用。。 //if form has been submitted process it if(isset($_POST['submit'])){ //collect form data extract($_POST); //very basic va
//if form has been submitted process it
if(isset($_POST['submit'])){
//collect form data
extract($_POST);
//very basic validation
if($idnumber ==''){
$error[] = 'Please enter the ID Number.';
}
if($password ==''){
$error[] = 'Please enter the password.';
}
if($passwordConfirm ==''){
$error[] = 'Please confirm the password.';
}
if($password != $passwordConfirm){
$error[] = 'Passwords do not match.';
}
if($fullname ==''){
$error[] = 'Please enter the Full Name.';
}
if($role ==''){
$error[] = 'Please select a role type.';
}
$idmatch=$mysqli->query('SELECT idNUMBER from members where idnumber=$idnumber');
if (mysqli_num_rows($idmatch)==1) {
echo'Id number already taken';
}?>
我从不使用extract,它不是真正推荐的,特别是对于POST值 我建议您直接使用post数组,并使用
isset()if(!isset($_POST['idnumber']){
$error[] = 'Please enter the ID Number.';
}
if(!isset($_POST['password']){
$error[] = 'Please enter the password.';
}
if(!isset($_POST['passwordConfirm']){
$error[] = 'Please confirm the password.';
}
if($_POST['password']!= $_POST['passwordConfirm']){
$error[] = 'Passwords do not match.';
}
if(!isset($_POST['fullname']){
$error[] = 'Please enter the Full Name.';
}
if(!isset($_POST['role']){
$error[] = 'Please select a role type.';
}
您还应该准备查询,或者至少对其进行转义。我相信sql是区分大小写的!
您使用的是“idNUMBER”,然后使用“idNUMBER”进行过滤
idNUMBERidNUMBER如果(!$result=$mysqli->query($idmatch)){die('running the query['.$mysqli->error.]');}