sql綁定值不發送任何東西

Question

爲什麼不做這項工作，我一直在努力尋找好幾天以下的答案。

我試圖硬編碼的密碼到聲明和工作，但是當我使用該密碼的變量它什麼都沒有返回。

我也有回聲和打印到處看看有什麼變量是，他們是正確的，因爲在密碼確實被返回PW串密碼

<?php 
    include_once "db.php"; 
     $username = $_POST['user']; 
     $password = $_POST['pass']; 

    echo "Username: "; 

    echo $username; 
    echo "<br>"; 
    echo "Password: ";echo $password; 
    echo "<br>"; 

    function GetPassword() { 

     $db = getDataBase(); 
     $stmt = $db->prepare('SELECT username,password FROM userinfo WHERE username = :user AND password = :pass'); 
     $stmt->bindParam(':user',$username, PDO::PARAM_STR); 
     $stmt->bindParam(':pass', $password, PDO::PARAM_STR); 
     $stmt->execute(); 
     $results = $stmt->fetch(PDO::FETCH_ASSOC); 
     foreach($results as $row){ 
      print_r($row); 
     } 
     return $results; 
    } 

    $realpw = GetPassword(); 

    if($password == $realpw[0]) 
    { 
     echo "Logged in"; 
     json_encode($usernameInput); 
     echo $realpw[0]; 
    }else 
    { 
     echo "invalid username or password"; 
    } 
    ?> 

Answer 1

$ username和$ password超出範圍的功能。您需要將其添加爲參數，這個工作：

function GetPassword($username, $password) { 

    $db = getDataBase(); 
    $stmt = $db->prepare('SELECT username,password FROM userinfo WHERE username = :user AND password = :pass'); 
    $stmt->bindParam(':user',$username, PDO::PARAM_STR); 
    $stmt->bindParam(':pass', $password, PDO::PARAM_STR); 
    $stmt->execute(); 
    $results = $stmt->fetch(PDO::FETCH_ASSOC); 
    foreach($results as $row){ 
     print_r($row); 
    } 
    return $results; 
} 

$realpw = GetPassword($username, $password); 

參考： http://php.net/manual/en/language.variables.scope.php