Can';t使用php登录;总是移动到其他部分
问题是,每当我尝试登录时,它都会生成以下错误: 错误!有些事情是不对的 每次它移动到其他部分时。下面是我的代码Can';t使用php登录;总是移动到其他部分,php,Php,问题是,每当我尝试登录时,它都会生成以下错误: 错误!有些事情是不对的 每次它移动到其他部分时。下面是我的代码 <?php include_once 'session.php'; include 'database.php'; ?> <?php class user{ private $db; public function __cons
<?php
include_once 'session.php';
include 'database.php';
?>
<?php
class user{
private $db;
public function __construct(){
$this->db = new database();
}
public function userRegister($data){
$name = $data['name'];
$email = $data['email'];
$password = md5($data['password']);
$chk_email = $this->emailCheck($email);
if($name=="" or $email == "" or $password == "" ) {
echo "Field must not be empty . ";
}
else if(filter_var($email,FILTER_VALIDATE_EMAIL)=== false){
$msg = "<div class ='alert alert-danger'><strong>Error ! </strong>Email address is not valid</div>";
return $msg;
}
if ($chk_email==true){
$msg = "<div class ='alert alert-danger'><strong>Error ! </strong>This email is already exist</div>";
return $msg;
}
$sql= "INSERT INTO info_tbl(name,email,password)VALUES(:name,:email,:password)";
$query = $this->db->pdo->prepare($sql);
$query -> bindValue(':name',$name);
$query -> bindValue(':email',$email);
$query -> bindValue(':password',$password);
$result=$query->execute();
if($result) {
$msg = "<div class = 'alert alert-success'><strong>Success !</strong> Registration have been successfully.</div>";
return $msg;
}
}
public function emailCheck($email){
$sql = "SELECT email FROM info_tbl WHERE email = :email ";
$query = $this->db->pdo->prepare($sql ); // prepare() is the method of PDO class;
$query->bindValue(':email',$email); //bindValue() is the method of PDO class;
$query->execute();
if($query->rowCount()>0){
return true;
}else{
return false;
}
}
public function getLoginuser($email, $password){
$sql = "SELECT * FROM info_tbl WHERE email = :email AND password = :password LIMIT 1";
$query = $this->db->pdo->prepare($sql);
$query -> bindValue(':email',$email);
$query -> bindValue(':password',$password);
$query -> execute();
$result = $query->fetch(PDO::FETCH_OBJ);
}
public function userLogin($data){
$email = $data['email'];
$password = md5($data['password']);
$chk_email = $this->emailCheck($email);
if($email == "" or $password == "" ) {
echo "Field must not be empty . ";
}
else if(filter_var($email,FILTER_VALIDATE_EMAIL)=== false){ // email validate
$msg = "<div class ='alert alert-danger'><strong>Error ! </strong>Email address is not valid</div>";
return $msg;
}
if ($chk_email==false){
$msg = "<div class ='alert alert-danger'><strong>Error ! </strong>This email is not valid</div>";
return $msg;
}
$res = $this->getLoginuser($email,$password);
if($res){
session::init();
session::set("login",true);
session::set("id",$result->id);
session::set("name",$result->name);
//session::set("email",$result->email);
session::set("loginmsg","<div class = 'alert alert-success'><strong>success ! </strong> you are successfully login </div>");
return "user login success";
header(" Location :index.php");
}
else{
$msg = "<div class = 'alert alert-danger'><strong>Error ! </strong> Some thing is not right </div>";
return $msg;
}
}
}
?>
您的问题的答案很简单:您没有从getLoginuser()
方法返回任何内容,因此$res
将始终计算为false
但是您不应该使用未加盐的md5哈希作为密码,因此您应该更改您的逻辑,以使用更新的方法来存储和检查密码。你可以从这里开始:努力,你的代码是无法理解的。我完全同意@Yoleth的说法,你需要清理代码。如果我没有误读,您不会从getLoginuser()函数返回任何内容。请不要使用MD5散列密码,而是使用