PHP&;MySQL-脚本赢得';我不允许mysql工作
我是php的初学者。但我以前有几个网站 我有一个login.php文件,我认为错误可能在该文件中。但当用户首次登录时,将显示更改密码文件 我没有遇到mysql或php错误,这对我来说非常困难 如果需要帮助的话,我早些时候就遇到了这个错误,但我已经解决了: 警告:未知:您的脚本可能依赖于会话的副作用 它一直存在到PHP4.2.3。请注意,会议 扩展不考虑全局变量作为数据源, 除非已启用register_globals。您可以禁用此功能 通过设置session.bug\u compat\u 42或 session.bug\u compat\u警告关闭,分别位于第0行的未知位置 问题是:当尝试登录change_password.php文件(包括在内)时会显示,但当更改密码时,mysql查询将无法工作。我有一个名为login\u log的表,它很有用。我看到了登录日期、ip、用户名、密码和访问权限 但我的脚本有问题,用户名不会被注册到登录日志中 “访问”部分中的数字为0、1、2和3 0:无法访问(登录失败)PHP&;MySQL-脚本赢得';我不允许mysql工作,php,mysql,session,Php,Mysql,Session,我是php的初学者。但我以前有几个网站 我有一个login.php文件,我认为错误可能在该文件中。但当用户首次登录时,将显示更改密码文件 我没有遇到mysql或php错误,这对我来说非常困难 如果需要帮助的话,我早些时候就遇到了这个错误,但我已经解决了: 警告:未知:您的脚本可能依赖于会话的副作用 它一直存在到PHP4.2.3。请注意,会议 扩展不考虑全局变量作为数据源, 除非已启用register_globals。您可以禁用此功能 通过设置session.bug\u compat\u 42或
1:访问
2:用户已停用
3:首次登录 这些mysql查询可以工作,但其他的却不行,这就是奇怪的地方。 我会把我的文件寄到这里,你可以看看 login.php
<?php
session_start();
$user_ip = $_SERVER["REMOTE_ADDR"];
include("mysql.php");
include("rank.php");
$onlineusername = $_SESSION['username'];
$datoenidag = date("H:i");
$dates = time();
$quu = mysql_query("SELECT * FROM users WHERE user_username='".$_SESSION['username']."'");
while ($log = mysql_fetch_array($quu)){
$cash = $log["user_cash"];
$user_rank = $log["user_rank"];
}
/*
$msg_query = mysql_query("SELECT * FROM meldinger WHERE sett='nei' AND til='".$_SESSION['username']."'");
$get_ant_msg = mysql_num_rows($msg_query);
if($get_ant_msg <= "0"){
$message_img_link = "http://taghabbo.tk/v2/img/icon/new_02.gif";
$message_ant = "0";
} else {
$message_img_link = "http://taghabbo.tk/v2/img/icon/new_01.gif";
$message_ant = $get_ant_msg;
}
*/
if(!empty($_SESSION['innlogget']) && !empty($_SESSION['username']))
{
?>
Logget inn
<?php
// if($user_rank == "Administrator"){
// echo ('<div id="volter" style="margin: 3px;"><img src="/v2/img/icon/icon_82.png" style="width:20px;height:17px;vertical-align:middle;margin-right:6px;" /><a href="/v2/admin/kontrollpanel">Kontrollpanel</a></div>');
//}
}
elseif(!empty($_POST['post_username']) && !empty($_POST['post_passord']))
{
$post_username = htmlspecialchars(mysql_real_escape_string($_POST['post_username']));
$post_password = htmlspecialchars(mysql_real_escape_string($_POST['post_passord']));
$checklogin = mysql_query("SELECT * FROM users WHERE user_username = '".$post_username."' AND user_password = '".$post_password."'") or die(mysql_error());
while($if_hidden = mysql_fetch_array($checklogin)){
$hidden = $if_hidden["user_hidden"];
$first_login = $if_hidden["last_time_online"];
}
if($hidden == FALSE)
{
if(mysql_num_rows($checklogin) == 1)
{
$row = mysql_fetch_array($checklogin);
$session_email = $row["user_email"];
$b_navn = $row["user_username"];
$_SESSION['username'] = $b_navn;
$_SESSION['email'] = $session_email;
if($first_login == TRUE)
{
$_SESSION['innlogget'] = 1;
mysql_query("UPDATE users SET user_online_status = '1' WHERE user_username = '".$_SESSION['username']."'") or die(mysql_error());
mysql_query("UPDATE users SET last_time_user_ip = '".$_SERVER['REMOTE_ADDR']."' WHERE user_username = '".$_SESSION['username']."'") or die(mysql_error());
mysql_query("UPDATE users SET last_time_online = '".$dates."' WHERE user_username = '".$_SESSION['username']."'") or die(mysql_error());
echo("Velkommen ".$b_navn.",<br />vennligst trykk<br />");
echo ("<h3><a href='/'>HER</a></h3>");
mysql_query("INSERT INTO login_log VALUES ('','".$_SESSION['username']."','$post_password','$user_ip','$dates','1')");
}
else
{
echo '<p style="color:whitesmoke;">Du har aldri logget inn før, for sikkerhetens skyld må du bytte passord.</p>';
include("change_password.php");
mysql_query("INSERT INTO login_log VALUES ('','$b_navn','$post_password','$user_ip','$dates','3')") or die(mysql_error());
mysql_query("UPDATE users SET last_time_online='$dates',last_time_user_ip='$user_ip',user_online_status='1' WHERE user_username = '$b_navn'") or die(mysql_error());
}
}
else
{
mysql_query("INSERT INTO login_log VALUES ('','$b_navn','$post_password','$user_ip','$dates','0')") or die(mysql_error());
echo '<b>Ukorrekt info</b><br /><a href="/">« Jeg har en bruker, prøv igjen</a><br /><a href="/registrer">« Jeg vil gjerne registrere meg</a>';
}
}
else
{
echo '<p style="color:whitesmoke;">Denne brukeren er deaktivert og kan ikke brukes.</p>';
mysql_query("INSERT INTO login_log VALUES ('','$b_navn','$post_password','$user_ip','$dates','2')") or die(mysql_error());
}
}
else
{
if($page_login_error == true)
{
echo ('<p id="advarsel">'.$page_login_error.'</p>');
}
?>
Logg inn med brukernavn og passord. Hvis du ikke har en bruker, så kan du registrere deg her.
<form method="post" action="" name="loginform" id="loginform" autocomplete="off">
<table>
<tr>
<input type="text" name="post_username" class="loginandregister" placeholder="Brukernavn" autocomplete="off" />
<input type="password" name="post_passord" class="loginandregister" placeholder="Passord" autocomplete="off" />
<input type="submit" name="login" class="login" value="LOGG INN" /> eller <input type="button" class="register" value="REGISTRER DEG" onclick="location.href='/registrer'" />
</tr></table>
</form>
<?php
}
?>
<?php
$newpass = $_POST["newpassword"];
$confirmnewpass = $_POST["confirmnewpassword"];
$pw_username = $_SESSION["username"];
if(isset($_POST['postPass']))
{
if($newpass != $confirmnewpass)
{
echo '<p id="advarsel">Passordene er ikke like.</p>';
}
else
{
$pw_query = mysql_query("UPDATE `users` SET user_password='".$newpass."' WHERE user_username='".$pw_username."'");
if($pw_query){
$_SESSION['innlogget'] = 1;
echo '<p id="godta">Passordet ditt er endret!</p>';
}
}
}
?>
<form method="post" action="">
<input type="password" name="newpassword" class="changepw" placeholder="Nytt passord" />
<input type="password" name="confirmnewpassword" class="changepw" placeholder="Gjenta nytt passord" />
<input type="submit" name="postPass" class="changepw" value="Fortsett" />
</form>
梅德布鲁克纳夫诺格帕索德洛格酒店。så公司气候变化研究所;看你给她打电话。
埃勒
更改密码.php
<?php
session_start();
$user_ip = $_SERVER["REMOTE_ADDR"];
include("mysql.php");
include("rank.php");
$onlineusername = $_SESSION['username'];
$datoenidag = date("H:i");
$dates = time();
$quu = mysql_query("SELECT * FROM users WHERE user_username='".$_SESSION['username']."'");
while ($log = mysql_fetch_array($quu)){
$cash = $log["user_cash"];
$user_rank = $log["user_rank"];
}
/*
$msg_query = mysql_query("SELECT * FROM meldinger WHERE sett='nei' AND til='".$_SESSION['username']."'");
$get_ant_msg = mysql_num_rows($msg_query);
if($get_ant_msg <= "0"){
$message_img_link = "http://taghabbo.tk/v2/img/icon/new_02.gif";
$message_ant = "0";
} else {
$message_img_link = "http://taghabbo.tk/v2/img/icon/new_01.gif";
$message_ant = $get_ant_msg;
}
*/
if(!empty($_SESSION['innlogget']) && !empty($_SESSION['username']))
{
?>
Logget inn
<?php
// if($user_rank == "Administrator"){
// echo ('<div id="volter" style="margin: 3px;"><img src="/v2/img/icon/icon_82.png" style="width:20px;height:17px;vertical-align:middle;margin-right:6px;" /><a href="/v2/admin/kontrollpanel">Kontrollpanel</a></div>');
//}
}
elseif(!empty($_POST['post_username']) && !empty($_POST['post_passord']))
{
$post_username = htmlspecialchars(mysql_real_escape_string($_POST['post_username']));
$post_password = htmlspecialchars(mysql_real_escape_string($_POST['post_passord']));
$checklogin = mysql_query("SELECT * FROM users WHERE user_username = '".$post_username."' AND user_password = '".$post_password."'") or die(mysql_error());
while($if_hidden = mysql_fetch_array($checklogin)){
$hidden = $if_hidden["user_hidden"];
$first_login = $if_hidden["last_time_online"];
}
if($hidden == FALSE)
{
if(mysql_num_rows($checklogin) == 1)
{
$row = mysql_fetch_array($checklogin);
$session_email = $row["user_email"];
$b_navn = $row["user_username"];
$_SESSION['username'] = $b_navn;
$_SESSION['email'] = $session_email;
if($first_login == TRUE)
{
$_SESSION['innlogget'] = 1;
mysql_query("UPDATE users SET user_online_status = '1' WHERE user_username = '".$_SESSION['username']."'") or die(mysql_error());
mysql_query("UPDATE users SET last_time_user_ip = '".$_SERVER['REMOTE_ADDR']."' WHERE user_username = '".$_SESSION['username']."'") or die(mysql_error());
mysql_query("UPDATE users SET last_time_online = '".$dates."' WHERE user_username = '".$_SESSION['username']."'") or die(mysql_error());
echo("Velkommen ".$b_navn.",<br />vennligst trykk<br />");
echo ("<h3><a href='/'>HER</a></h3>");
mysql_query("INSERT INTO login_log VALUES ('','".$_SESSION['username']."','$post_password','$user_ip','$dates','1')");
}
else
{
echo '<p style="color:whitesmoke;">Du har aldri logget inn før, for sikkerhetens skyld må du bytte passord.</p>';
include("change_password.php");
mysql_query("INSERT INTO login_log VALUES ('','$b_navn','$post_password','$user_ip','$dates','3')") or die(mysql_error());
mysql_query("UPDATE users SET last_time_online='$dates',last_time_user_ip='$user_ip',user_online_status='1' WHERE user_username = '$b_navn'") or die(mysql_error());
}
}
else
{
mysql_query("INSERT INTO login_log VALUES ('','$b_navn','$post_password','$user_ip','$dates','0')") or die(mysql_error());
echo '<b>Ukorrekt info</b><br /><a href="/">« Jeg har en bruker, prøv igjen</a><br /><a href="/registrer">« Jeg vil gjerne registrere meg</a>';
}
}
else
{
echo '<p style="color:whitesmoke;">Denne brukeren er deaktivert og kan ikke brukes.</p>';
mysql_query("INSERT INTO login_log VALUES ('','$b_navn','$post_password','$user_ip','$dates','2')") or die(mysql_error());
}
}
else
{
if($page_login_error == true)
{
echo ('<p id="advarsel">'.$page_login_error.'</p>');
}
?>
Logg inn med brukernavn og passord. Hvis du ikke har en bruker, så kan du registrere deg her.
<form method="post" action="" name="loginform" id="loginform" autocomplete="off">
<table>
<tr>
<input type="text" name="post_username" class="loginandregister" placeholder="Brukernavn" autocomplete="off" />
<input type="password" name="post_passord" class="loginandregister" placeholder="Passord" autocomplete="off" />
<input type="submit" name="login" class="login" value="LOGG INN" /> eller <input type="button" class="register" value="REGISTRER DEG" onclick="location.href='/registrer'" />
</tr></table>
</form>
<?php
}
?>
<?php
$newpass = $_POST["newpassword"];
$confirmnewpass = $_POST["confirmnewpassword"];
$pw_username = $_SESSION["username"];
if(isset($_POST['postPass']))
{
if($newpass != $confirmnewpass)
{
echo '<p id="advarsel">Passordene er ikke like.</p>';
}
else
{
$pw_query = mysql_query("UPDATE `users` SET user_password='".$newpass."' WHERE user_username='".$pw_username."'");
if($pw_query){
$_SESSION['innlogget'] = 1;
echo '<p id="godta">Passordet ditt er endret!</p>';
}
}
}
?>
<form method="post" action="">
<input type="password" name="newpassword" class="changepw" placeholder="Nytt passord" />
<input type="password" name="confirmnewpassword" class="changepw" placeholder="Gjenta nytt passord" />
<input type="submit" name="postPass" class="changepw" value="Fortsett" />
</form>
我希望你能明白出了什么问题。我感谢你的回答
附言:如果你想看看这个页面;登录凭据为:用户名:Simen
密码:VWbdc8NFby 或者您可以创建自己的用户
你开始上课了吗?(change_password.php)查询是否抛出任何错误?顺便说一句,确保不要以明文形式存储密码。如果用户第一次登录,然后提交更改密码表单,那么会发生什么?什么是控制流和变量状态?我想可能有点乱?我已经开始了会话();在change_password.php中是的。但是没有发生其他事情。
用户密码
文本不为空,