如果问题看起来很愚蠢,我真的很抱歉。但是,我一直试图几天来检查我username
和password
数据库匹配我在html
页我打字......这是我的登录表单...如何检查用户名和密码是否与数据库值匹配
<form method="POST" action="Dashboard/Dashboard.php">
<div class="form-group md-form">
<!--<input type="email" class="form-control" id="email" value="" placeholder="Enter email address">-->
<i class="fa fa-user prefix grey-text"></i>
<input name="username" id="username" type="text" class="form-control" required>
<label for="defaultForm-email">Username</label>
</div>
<div class="form-group md-form">
<!--<input type="password" class="form-control" id="password" value="" placeholder="Enter password">-->
<i class="fa fa-lock prefix grey-text"></i>
<input name="password" id="password" type="password" class="form-control" required>
<label for="defaultForm-pass">Your password</label>
</div>
<div class="text-center">
<button type="reset" class="btn btn-amber btn-sm"><strong>Reset</strong></button>
<input type="submit" name="submit" id="submit" class="btn btn-green btn-sm" value="Sign in">
</div>
</form>
这是代码(php
)我使用的Dashboard.php
<?php
$servername = "localhost";
$username = "root";
$password = "";
$databaseName = "test";
$conn = mysqli_connect($servername, $username, $password, $databaseName);
$un = $_POST['username'];
$pw = $_POST['password'];
print $pass . "_" . $email;
$query = mysqli_query($conn, "SELECT log_username,log_password FROM login WHERE log_username='$un' AND log_password='$pw'");
$result_can = mysqli_query($conn, $query);
while ($row = mysql_fetch_assoc($result_can)) {
$check_username = $row['username'];
$check_password = $row['password'];
}
if ($un == $check_username && $pw == $check_password) {
$message = "ok";
echo "<script type='text/javascript'>alert('$message');</script>";
header("Location: Doctors.php");
} else {
$message = "No";
echo "<script type='text/javascript'>alert('$message');</script>";
header("Location: Doctors.php");
}
?>
我真的试过像几千倍,但无法弄清楚我哪里错了...任何人都可以帮我吗?
我知道我的代码是开放给SQL注入的,但我不在乎它,因为这是我需要向我的朋友展示的一个示例因此忽视该部分。
“*我知道我的代码对SQL注入是开放的,但我不在乎*”。一些有史以来最危险的词:) –
为什么要向你的朋友展示一个没有人应该做的事情的例子?向他们展示如何从一开始就正确地做到这一点。另外,你还没有真正说明你实际上*有什么问题。 – Sammitch
https:// stackoverflow。com/help/mcve – Sammitch