0

我得到的错误:无论我尝试使用有效的用户名还是密码,它总是说 "Sorry, username already exists" 。我的逻辑有问题,特别是这个代码块:

 $q = $conn->query("SELECT uname FROM Student WHERE uname= $aRegUsr ");
    $stmt = $conn->prepare($q);
    $stmt->fetch($q);
    if($stmt > 0){ #if there are 1 or more users with enter username, deny.

dbcred.php

<?php
$host = 'localhost';
$user = 'root';
$pass = '';
$db = 'databasename';

?>

PHP:

<?php
#Login Details
require_once('dbcred.php');
$conn = new PDO("mysql:host=$host;dbname=$db", $user, $pass);

$aRegUsr = $_POST['regduser']; 

#Check for Existing User
$q = $conn->query("SELECT uname FROM Student WHERE uname= $aRegUsr ");
$stmt = $conn->prepare($q);
$stmt->fetch($q);
if($stmt > 0){ #if find that username in use, deny ability to register, else{ALLOW}
echo "Sorry, username already exists";
}
else{
echo "Success";
}

?>

HTML

<form action="inc/check_regUsr.php" method="post" id="userLogon">
    <div class="field required">
        Username: <input type="text" name="regduser" tabindex="1" /><br />
        </div>
        <div class="field required">
        Password: <input type="password" name="regdpass" tabindex="2" /><br />
        </div>
        <input type="submit" name="submitUser" />
</form>

数据库表:Student 图像1

4

3 回答 3

2

您是否尝试创建用户注册或用户身份验证脚本?我不相信您的实际目的被明确概述以帮助提供有效的解决方案。

“是否尝试有效的用户名或密码”表示用户身份验证,而“if($stmt > 0){ #如果有1个或多个用户输入用户名,则拒绝。” 表示用户注册。

编辑:根据您更新的要求,根据您部署的安全性,用户身份验证可能会变得有点复杂。下面包括基于您的基本代码的示例代码。请注意,您可能希望找到一个预先构建的脚本并根据您的需要对其进行修改,因为这可能更好地满足您的目的。

<?php #Login Details 
require_once('dbcred.php'); 

#Variables
$error = '';
$auth = 0;
$aRegUsr = $_POST['regduser'];   #Check for Existing User 
$aRegPass = $_POST['regdpass'];   #Check for Existing User 

#DB stuff
$conn = new PDO("mysql:host=$host;dbname=$db", $user, $pass); 
$sql = "SELECT uname,password FROM Student WHERE uname= $aRegUsr ";

#Dataset stuff
foreach($conn->query($sql) as $row){ 
    if($row['password'] != $aRegPass){
        $error = 'Invalid Password';
        $auth = 0; #If $auth = 0 then user is logged in
    }else{
        $auth = 1; #If $auth = 1 then user is logged in
    }
}
$conn = null;
?>
于 2011-08-04T21:37:16.147 回答
0

我不确定,因为我从未使用过此功能,但根据我从这里的理解:http: //php.net/manual/en/pdostatement.fetch.php fetch 返回结果,因此您实际上必须检查计数是否结果大于 0。检查 fetchAll http://php.net/manual/en/pdostatement.fetchall.php它应该是这样的:

$results = $stmt->fetchAll();
if(count($results)>0)
{
...
于 2011-08-04T21:43:48.663 回答
0

您的代码不正确。我假设您的逻辑if ($stmt > 0)是测试是否已经存在具有该名称的用户。

改用这个 -

<?php 

#Check for Existing User
$q = $conn->query("SELECT uname FROM Student WHERE uname= $aRegUsr ");
$stmt = $conn->prepare($q);
$rows = $stmt->fetchAll();
if ($rows > 1) { # The username already exists
    #... rest  of your code
于 2011-08-04T21:45:50.180 回答