1. 首頁
  2. 問答
  3. 如何使用PDO從數據庫獲取信息?

如何使用PDO從數據庫獲取信息?

2014-05-01 70 views
0

我想創建一個登錄函數,該函數根據我存儲在數據庫中的密碼來檢查密碼。如果相關,我已經使用phpass在密碼輸入前散列密碼。這是我迄今爲止的代碼;顯然支票將無法工作,因爲我沒有拉從數據庫中$ stored_hash:如何使用PDO從數據庫獲取信息?

<?php 
ini_set('display_errors', 1); 
error_reporting(E_ALL); ini_set('display_errors', 1); 

require "/home/carlton/public_html/PHPproject/includes/PasswordHash.php"; 

if ($_POST){ 
$form = $_POST; 
$username = $form['username']; 
$password = $form['password']; 
$hash_obj = new PasswordHash(8, false); 
$passwordhash = $hash_obj->HashPassword($password); 
$storedhash = this is where i need the code to pull the hashed password from the db; 
try{ 
    $db = new PDO('mysql:host=localhost;dbname=phpproject', 'carl', 'pdt1848?'); 
    $db->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); 
} 
    catch(PODException $e){ 
     echo "Can't connect to the database"; 
    } 
$query=$db->prepare("SELECT password FROM users WHERE username=$username"); 



$check = CheckPassword($password, $stored_hash); 
if($check){ 
    print_r("Registered user"); 
} 
else{ 
    print_r("Not a registered user"); 
} 


//login here 
} 
else{ 
?> 
<form name="login" action="login.php" method="POST"> 
<label for "username">Username: </label> 
<input type="text" name="username"/><br /> 
<label for "password">Password: </label> 
<input type="password" name="password"/><br /> 
<button type="submit">Submit</button> 
<button type="reset">Reset Form</button> 
</form> 
<?php 
} 
?>

來源

2014-05-01 carlgoodtoseeyou

+0

難道我們假定'新PasswordHash(8,FALSE); '會生成一個非唯一的8位字符串,它將隨機地匹配先前生成的'PasswordHash(8,false)'? – Ohgodwhy

+0

@Ohgodwhy輸入他們的登錄表單中的密碼。它是PHPass的一部分。 – carlgoodtoseeyou

+1

將'WHERE username = $ username「)'更改爲'WHERE username ='$ username'」)'該變量需要用引號括起來。 @carlgoodtoseeyou –

回答

1

試試這個快速解決:

<?php 
ini_set('display_errors', 1); 
error_reporting(E_ALL); ini_set('display_errors', 1); 

require "/home/carlton/public_html/PHPproject/includes/PasswordHash.php"; 

if ($_POST){ 
$form = $_POST; 
$username = $form['username']; 
$password = $form['password']; 
$hash_obj = new PasswordHash(8, false); 
$passwordhash = $hash_obj->HashPassword($password); 

$db = new PDO('mysql:host=localhost;dbname=phpproject', 'carl', 'pdt1848?'); 
$db->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); 

$response = $bdd->query("SELECT password FROM users WHERE username='".$username."'"); 
$data=$response->fetch(); 
$stored_hash = $data['password']; 

echo '<br>the password stored in the database is :'. $stored_hash.'<br>'; 

$check = CheckPassword($password, $stored_hash); 
if($check){ 
    print_r("Registered user"); 
} 
else{ 
    print_r("Not a registered user"); 
} 


//login here 
} 
else{ 
?> 
<form name="login" action="login.php" method="POST"> 
<label for "username">Username: </label> 
<input type="text" name="username"/><br /> 
<label for "password">Password: </label> 
<input type="password" name="password"/><br /> 
<button type="submit">Submit</button> 
<button type="reset">Reset Form</button> 
</form> 
<?php 
} 
?>

來源

2014-05-01 21:05:43 Mimouni

+0

輸入登錄信息後,出現此錯誤: 致命錯誤:帶有消息'SQLSTATE [42S22]的未捕獲異常'PDOException':未找到列:1054未知列'在/home/carlton/public_html/PHPproject/forms/login.php:38堆棧軌跡:#0 /home/carlton/public_html/PHPproject/forms/login.php(38):PDO->中的'where子句'中的carlgoodtoseeyou' > query('SELECT password ...')#1 {main}在第38行拋出/home/carlton/public_html/PHPproject/forms/login.php – carlgoodtoseeyou

+0

我在代碼中更改了請嘗試新版本。 – Mimouni

相關問題

 相關問題