Php 我想显示登录的用户名和密码
我试图使一个用户谁是登录的个人资料页,所以我想,如果用户谁是登录点击他的个人资料页,它会显示他的用户名和密码,但我不知道我做错了这里是代码 login.phpPhp 我想显示登录的用户名和密码,php,mysql,login,profile,Php,Mysql,Login,Profile,我试图使一个用户谁是登录的个人资料页,所以我想,如果用户谁是登录点击他的个人资料页,它会显示他的用户名和密码,但我不知道我做错了这里是代码 login.php <?php $username = "root"; $password = "123"; $hostname = "localhost"; $dbhandle = mysql_connect($hostname, $username, $password) or die("Could not con
<?php
$username = "root";
$password = "123";
$hostname = "localhost";
$dbhandle = mysql_connect($hostname, $username, $password) or die("Could not connect to database");
$selected = mysql_select_db("login", $dbhandle);
$myusername = $_POST['user'];
$mypassword = $_POST['pass'];
$myusername = stripslashes($myusername);
$mypassword = stripslashes($mypassword);
$query = "SELECT * FROM users WHERE Username='$myusername' and Password='$mypassword'";
$result = mysql_query($query);
$count = mysql_num_rows($result);
mysql_close();
if($count==1){
$seconds = 120 + time();
setcookie(loggedin, date("F jS - g:i a"), $seconds);
header("location:login_success.php");
}else{
echo 'Incorrect Username or Password';
}
?>
<?php
if(!isset($_COOKIE['loggedin'])){
header("location:index.php");
}
?>
<html>
<body>
<h1>Welcome!</h1>
<a href="profile.php">Profile</a>
<a href="logout.php">Logout</a>
</body>
</html>
<?php
session_start();
?>
<html>
<head><title>Profile</title></head>
<body>
<H2>User Profile</h2>
</body>
</html>
<?php
$link = mysql_connect('localhost', 'root', '123');
if (!$link) {
die('Could not connect: ' . mysql_error());
}
if (!mysql_select_db('login')) {
die('Could not select database: ' . mysql_error());
}
$result = mysql_query('SELECT * FROM users where username=$myusername');
if (!$result) {
die('Could not query:' . mysql_error());
}
echo mysql_result($result,0,0);
mysql_close($link);
?>
login\u success.php
<?php
$username = "root";
$password = "123";
$hostname = "localhost";
$dbhandle = mysql_connect($hostname, $username, $password) or die("Could not connect to database");
$selected = mysql_select_db("login", $dbhandle);
$myusername = $_POST['user'];
$mypassword = $_POST['pass'];
$myusername = stripslashes($myusername);
$mypassword = stripslashes($mypassword);
$query = "SELECT * FROM users WHERE Username='$myusername' and Password='$mypassword'";
$result = mysql_query($query);
$count = mysql_num_rows($result);
mysql_close();
if($count==1){
$seconds = 120 + time();
setcookie(loggedin, date("F jS - g:i a"), $seconds);
header("location:login_success.php");
}else{
echo 'Incorrect Username or Password';
}
?>
<?php
if(!isset($_COOKIE['loggedin'])){
header("location:index.php");
}
?>
<html>
<body>
<h1>Welcome!</h1>
<a href="profile.php">Profile</a>
<a href="logout.php">Logout</a>
</body>
</html>
<?php
session_start();
?>
<html>
<head><title>Profile</title></head>
<body>
<H2>User Profile</h2>
</body>
</html>
<?php
$link = mysql_connect('localhost', 'root', '123');
if (!$link) {
die('Could not connect: ' . mysql_error());
}
if (!mysql_select_db('login')) {
die('Could not select database: ' . mysql_error());
}
$result = mysql_query('SELECT * FROM users where username=$myusername');
if (!$result) {
die('Could not query:' . mysql_error());
}
echo mysql_result($result,0,0);
mysql_close($link);
?>
欢迎
profile.php
<?php
$username = "root";
$password = "123";
$hostname = "localhost";
$dbhandle = mysql_connect($hostname, $username, $password) or die("Could not connect to database");
$selected = mysql_select_db("login", $dbhandle);
$myusername = $_POST['user'];
$mypassword = $_POST['pass'];
$myusername = stripslashes($myusername);
$mypassword = stripslashes($mypassword);
$query = "SELECT * FROM users WHERE Username='$myusername' and Password='$mypassword'";
$result = mysql_query($query);
$count = mysql_num_rows($result);
mysql_close();
if($count==1){
$seconds = 120 + time();
setcookie(loggedin, date("F jS - g:i a"), $seconds);
header("location:login_success.php");
}else{
echo 'Incorrect Username or Password';
}
?>
<?php
if(!isset($_COOKIE['loggedin'])){
header("location:index.php");
}
?>
<html>
<body>
<h1>Welcome!</h1>
<a href="profile.php">Profile</a>
<a href="logout.php">Logout</a>
</body>
</html>
<?php
session_start();
?>
<html>
<head><title>Profile</title></head>
<body>
<H2>User Profile</h2>
</body>
</html>
<?php
$link = mysql_connect('localhost', 'root', '123');
if (!$link) {
die('Could not connect: ' . mysql_error());
}
if (!mysql_select_db('login')) {
die('Could not select database: ' . mysql_error());
}
$result = mysql_query('SELECT * FROM users where username=$myusername');
if (!$result) {
die('Could not query:' . mysql_error());
}
echo mysql_result($result,0,0);
mysql_close($link);
?>
轮廓
用户配置文件
login.php
if($count==1){
$_SESSION['username'] = $myusername;
}
profile.php
$myusername = $_SESSION['username'];
change query to
$query = "SELECT * FROM users WHERE Username='$myusername'";
添加这些行将解决您的问题这是因为profile.php中的查询中从未定义
$myusername
。在login.php中尝试以下操作:
if($count==1){
$seconds = 120 + time();
setcookie(loggedin, date("F jS - g:i a"), $seconds);
setcookie("username", $myusername, $seconds);
header("location:login_success.php");
} ...
在profile.php中:
$myusername = $_COOKIE["username"];
$result = mysql_query("SELECT * FROM users where username='$myusername'");
我同意Mark Baker的观点,所有这些代码都是非常不安全的。你真的不应该以明文形式存储密码,这样就可以显示密码了如果你只想显示他的用户名@MarkBaker这是一个错误
无法查询:“where子句”中的未知列“$myusername”
@MihaiYou没有在登录时创建会话,或者以任何形式的持久性存储来显示用户在查看配置文件页面时的身份您的脚本容易受到SQL注入的攻击。不要忘记启动会话_start();现在在第21行的C:\xampp\htdocs\mysql\u login\profile.php中出现了这个错误;在login.php和profile.php上添加这两行,在profile.php上检查(isset($\u SESSION['username')){}我在哪里添加这些行?仍然说无法查询:where子句中的未知列“$myusername”
执行此操作后,会出现以下错误警告:mysql\u result()希望参数1是资源,C:\xampp\htdocs\mysql\u login\profile.php第23行给出的布尔值
检查我的编辑,尝试在$myusername