1

我正在使用我在网上找到的登录脚本。( http://alias.io/2010/01/store-passwords-safely-with-php-and-mysql/ )

当我试图让它工作时,我偶然发现了这个错误:

bool(false) 致命错误:在第 25 行的 /srv/disk3/1446018/www/askmephilosophy.co.nf/session.php 中的非对象上调用成员函数 bindParam()

我的代码:

<?php

  include('config.php');

  //  Establishing the connection:
  $MyConnection = mysqli_connect('hostname', 'user', 'pass', 'database')
    or die('An error has occured when you were trying to login. You can return to the main page
      by clicking: <a href="index.php">here</a>. <br />
      If this error is consistent, please <a href="contact.php">contact us</a>.');

  //  Information provide by the user:
  $username = $_POST['username'];
  $password = $_POST['password']; // Text version.

  $StatementHandle = $MyConnection->prepare('
    SELECT
      hash
    FROM Users
    WHERE
      username = :username
    LIMIT 1
    ');

  var_dump($StatementHandle);
  $StatementHandle->bindParam(':username', $username);

  $StatementHandle->execute();

  $user = $StatementHandle->fetch(PDO::FETCH_OBJ);

  // Hashing the password with its hash as the salt returns the same hash:
  if(crypt($password, $user->hash) == $user->hash) {
    echo 'You are logged in. Well, not actually. We only just confirmed that
      our system works. This service\'ll cost you $1';
  }

?>
4

1 回答 1

1

你的连接对象是mysqli,你应该使用PDO来连接mysql

$dsn = 'mysql:dbname=testdb;host=127.0.0.1';
$user = 'dbuser';
$password = 'dbpass';

try {
    $dbh = new PDO($dsn, $user, $password);
} catch (PDOException $e) {
    echo 'Connection failed: ' . $e->getMessage();
}
于 2013-08-23T11:35:25.523 回答