2

我想创建登录和注销会话

我在 MySQL 数据库中的表是这样的

CREATE TABLE `login` (
  `id` int(10) NOT NULL auto_increment,
  `username` varchar(20) NOT NULL,
  `password` varchar(20) NOT NULL,
  PRIMARY KEY  (`id`)
) ENGINE=InnoDB  DEFAULT CHARSET=utf8 AUTO_INCREMENT=3 ;

和 MySQL 连接命名为config.inc

<?php

 $hostname = 'localhost';        // Your MySQL hostname. Usualy named as 'localhost',     so you're NOT necessary to change this even this script has already     online on the internet.
$dbname   = ''; // Your database name.
$username = '';             // Your database username.
$password = '';                 // Your database password. If your database has no     password, leave it empty.

// Let's connect to host
mysql_connect($hostname, $username, $password) or DIE('Connection to host is failed,     perhaps the service is down!');
// Select the database
mysql_select_db($dbname) or DIE('Database name is not available!');

?>

我的index.php页面看起来像这样

<?php

// Inialize session
session_start();

// Check, if user is already login, then jump to secured page
if (isset($_SESSION['username'])) {
header('Location: securedpage.php');
}

?>
<html>

<head>
<title>PHPMySimpleLogin 0.3</title>
</head>

<body>

 <h3>User Login</h3>

<table border="0">
<form method="POST" action="loginproc.php">
<tr><td>Username</td><td>:</td><td><input type="text" name="username" size="20">        </td></tr>
<tr><td>Password</td><td>:</td><td><input type="password" name="password"     size="20">    </td></tr>
<tr><td>&nbsp;</td><td>&nbsp;</td><td><input type="submit" value="Login"></td></tr>
</form>
</table>

</body>

</html>

检查名为的用户名和密码文件loginproc.php

<?php

// Inialize session
session_start();

// Include database connection settings
include('config.inc');

// Retrieve username and password from database according to user's input
$login = mysql_query("SELECT * FROM user WHERE (username = '" .     mysql_real_escape_string($_POST['username']) . "') and (password = '" .     mysql_real_escape_string(md5($_POST['password'])) . "')");

// Check username and password match
 if (mysql_num_rows($login) == 1) {
// Set username session variable
$_SESSION['username'] = $_POST['username'];
// Jump to secured page
 header('Location: securedpage.php');
}
else {
// Jump to login page
header('Location: index.php');
}

?>

我的安全页面代码命名为securedpage.php

<?php

// Inialize session
session_start();

// Check, if username session is NOT set then this page will jump to login page
if (!isset($_SESSION['username'])) {
header('Location: index.php');
}

?>
<html>

<head>
<title>Secured Page</title>
</head>

<body>

<p>This is secured page with session: <b><?php echo $_SESSION['username']; ?></b>
<br>You can put your restricted information here.</p>
<p><a href="logout.php">Logout</a></p>

</body>

</html>

最后注销页面命名为logout.php 

<?php

// Inialize session
session_start();

// Delete certain session
unset($_SESSION['username']);
// Delete all session variables
// session_destroy();

// Jump to login page
header('Location: index.php');

?>

现在我的问题是当我输入用户名和密码时,它只会停留在index.php,它不会进入另一个页面。请查看此代码并在我做错时告诉我。

谢谢。

4

5 回答 5

4

首先常规的 mysql 函数将在 PHP 5.5.0 中被弃用。

其次,您在一个名为userwhile 您命名的表中进行搜索login

而且......您不需要过滤md5。

祝你好运。

于 2013-06-18T11:47:09.497 回答
0

根据 PHP 5.5,所有 mysql_ * 函数都已弃用。尝试使用抽象层或 mysqli。

在您的 loginproc.php 中,您应该在成功验证用户名和密码后开始会话,因此在 if 条件下使用 session_start()

        if (mysql_num_rows($login) == 1)
于 2013-06-18T11:53:18.967 回答
0

securedpage.php使用中:

...
if (!isset($_SESSION['username'])==null)
{
    header('Location: index.php');
}
...

代替:

...
if (!isset($_SESSION['username']))
{
    header('Location: index.php');
}
...

做同样的事情index.php

于 2014-03-31T06:14:08.487 回答
0

首先,您可能有多个具有相同凭据的用户。

其次,您可能没有输入用户名或密码的用户。

三、在SQL Query中password = '" . mysql_real_escape_string(md5($_POST['password']))

变成

password = '" .    md5(mysql_real_escape_string($_POST['password']))

并检查表名“登录”或“用户”??

尝试这个

于 2013-06-18T12:11:04.790 回答
0 
session_start();
error_reporting(E_ALL ^ (E_NOTICE | E_WARNING));
if(session_is_registered['username']){
        unset($_SESSION['username']);
        session_destroy($_SESSION['username']);
        print "<script>alert('Anda berhasil logout'); location = '/'; </script>";
}
于 2018-03-27T00:36:36.613 回答