我有一个简单的登录页面,使用if和elseif命令进行顶级简单表单验证。 我想写一个(elseif)语句作为验证代码下面的mysql select where语句。如果电子邮件和密码=数据库表记录上的电子邮件和密码,则会将使用重定向到受保护的页面,如果电子邮件或密码不存在或匹配,则最后(else)将显示错误数据库。使用mysql登录页面select where statment
我真的不知道如何做到这一点的正确方法,这是我的尝试,但它不工作:
<?php require_once("includes/connection.php"); ?>
<?php require_once("includes/functions.php"); ?>
<?php
$email = $_POST['Email'];
$hashed_password = md5($_POST['password']);
if (isset($_POST['submit'])) { // Form has been submitted.
if ($_POST['Email'] == "") {
$error = "Email address is required";
}
elseif (!(filter_var($_POST['Email'], FILTER_VALIDATE_EMAIL))) {
$error = "Invalid email address";
}
elseif ($_POST['password'] == "") {
$error = "Type in your password";
}
elseif (strlen($_POST['password']) < 8) {
$error = "Minimum password length is 8";
}
elseif {
$query = "SELECT id, email ";
$query .= "FROM customers ";
$query .= "WHERE email = '{$email}' ";
$query .= "AND hashed_password = '{$hashed_password}' ";
$query .= "LIMIT 1";
$result_set = mysql_query($query);
redirect_to("account.php");
}
else {
echo "error";
}
}
?>
<!-- signup box -->
<div id="box_sign">
<div class="container">
<div class="span12 box_wrapper">
<div class="span12 box">
<div>
<div class="head">
<h4>Sign In</h4><br />
<div class="text-error">
<?php echo $error; ?><br />
<p class="text-success"><strong><?php echo $success; ?></strong></p>
</div>
</div>
<div class="form">
<form action="sign-in.php" method="POST">
<input type="text" id="Email" name="Email" placeholder="Email"/>
<input type="password" id="password" name="password" placeholder="Password"/>
<div class="right">
<a href="reset.html">Forgot password?</a>
</div>
<input type="submit" name="submit" class="btn" value="Sign In"/>
</form>
</div>
</div>
</div>
<p class="already">Don't have an account?
<a href="signin.html">Sign up</a></p>
</div>
</div>
</div>
redirect_to的()函数我有它在functions.php文件和工作。 – 2013-05-04 13:39:19
'这不起作用?'什么不起作用?你将不得不更具体些。 – Cyclonecode 2013-05-04 13:40:30
您最终的'elseif'没有条件。您需要检查MySQL结果集以查看它是否返回结果。如果是,则重定向。 – Hope4You 2013-05-04 13:41:44