如何检测PHP函数内的ajax调用
[英]How to detect ajax call inside php function
问题描述
I am trying to build a user authentication system. 
我正在尝试构建用户身份验证系统。 To protect a page I first check the login status using userIsLoggedIn() function if not logged in than show the login form. 为了保护页面,我首先使用userIsLoggedIn()函数检查登录状态(如果未登录),然后显示登录表单。 The log in form data is posted using ajax to the accessControl.php script. 使用ajax将登录表单数据发布到accessControl.php脚本。 The ajax request starts but never completes. ajax请求开始但从未完成。 In Chrome devtool the ajax request is shown as pending. 在Chrome devtool中,ajax请求显示为待处理。
What is wrong with this... 这是怎么了...
If I replace the ajax part with simple POST request the php scripts works fine with the necessary changes. 如果我用简单的POST请求替换ajax部分,则php脚本在进行必要的更改后可以正常工作。
(Please, recommend some good resource to learn Ajax from.) (请推荐一些好的资源来学习Ajax。)
On protected page: 在受保护的页面上:
if(!userIsLoggedIn()){
require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/loginForm.php';
exit();
}
The Form : 表格 :
<form class="form-signin" id="logInForm">
<p id="returnMsg"></p>
<input type="text" name="username" id="username" class="form-control" placeholder="Username" required autofocus>
<input type="password" name="password" id="password" class="form-control" placeholder="Password" required >
<input type="hidden" name="tokenLogInForm" id="tokenLogInForm" value="<?php if(isset($_SESSION['tokenLogInForm'])) { echo htmlout($_SESSION['tokenLogInForm']); } ?>">
</form>
<button class="btn btn-lg btn-primary btn-block" id="logInButton">
Log in</button>
The jQuery script: jQuery脚本:
$(document).ready(function(){
$("#logInButton").click(function(e){
var logInFormData = $("#logInForm").serialize();
$.ajax({
type: 'post',
data: logInFormData,
url: 'http://localhost/includes/accessControl.php',
beforeSend: function(){
$("#logInFromSpinner").show();
},
conplete: function(){
$("#logInFromSpinner").hide();
},
success: function(data, status) {
console.log(data);
},
error: function(jqXHR, textStatus){
console.log(textStatus);
}
});
});
});
The accessControl.php Script: accessControl.php脚本:
<?php
if(session_status() === PHP_SESSION_NONE) {
session_start();
}
if(!isset($_SESSION['tokenLogInForm']) && empty($_SESSION['tokenLogInForm'])) {
$_SESSION['tokenLogInForm'] = base64_encode(openssl_random_pseudo_bytes(32));
session_regenerate_id(TRUE);
}
function userIsLoggedIn()
{
if(isset($_SERVER['HTTP_X_REQUESTED_WITH']) && strtolower($_SERVER['HTTP_X_REQUESTED_WITH']) === 'xmlhttprequest')
{
$userName = filter_input(INPUT_POST, 'username', FILTER_SANITIZE_SPECIAL_CHARS);
$passWordRaw = filter_input(INPUT_POST, 'password', FILTER_SANITIZE_SPECIAL_CHARS);
$passWord = md5($passWordRaw . 'M@there__ing@<7^9>');
if(databaseContainsUser($userName, $passWord))
{
if(session_status() === PHP_SESSION_NONE) {
session_start();
}
session_regenerate_id(TRUE);
$_SESSION['loggedIn'] = TRUE;
$_SESSION['userName'] = $userName;
$_SESSION['passWord'] = $passWord;
$_SESSION['tokenLogInForm'] = base64_encode(openssl_random_pseudo_bytes(32));
return TRUE;
}
else
{
if(session_status() === PHP_SESSION_NONE) {
session_start();
}
session_regenerate_id(TRUE);
unset($_SESSION['loggedIn']);
unset($_SESSION['userName']);
unset($_SESSION['passWord']);
if(isset($_COOKIE[session_name()])) {
setcookie(session_name(), '', time()-86400, '/');
}
session_destroy();
echo 'The specified Username and Password was incorrect.';
$_SESSION['tokenLogInForm'] = base64_encode(openssl_random_pseudo_bytes(32));
return FALSE;
}
}
if(isset($_POST['actionLogOut']) && $_POST['actionLogOut'] == 'logOut')
{
if(session_status() === PHP_SESSION_NONE) {
session_start();
}
session_regenerate_id(TRUE);
unset($_SESSION['loggedIn']);
unset($_SESSION['userName']);
unset($_SESSION['passWord']);
$_SESSION = [];
if(isset($_COOKIE[session_name()])) {
setcookie(session_name(), '', time()-86400, '/');
}
session_destroy();
$_SESSION['tokenLogInForm'] = base64_encode(openssl_random_pseudo_bytes(32));
header('Location: ' . $_POST['goto']);
exit();
}
if(session_status() === PHP_SESSION_NONE) {
session_start();
}
session_regenerate_id(TRUE);
if(isset($_SESSION['loggedIn']))
{
return databaseContainsUser($_SESSION['userName'], $_SESSION['passWord']);
}
}
function databaseContainsUser($userName, $passWord)
{
include $_SERVER['DOCUMENT_ROOT'] . '/includes/dbCon.php';
try
{
$sql = 'SELECT COUNT(*) FROM admins WHERE username = :userName AND
password = :passWord';
$s = $dbConnect->prepare($sql);
$s->bindValue(':userName', $userName);
$s->bindValue(':passWord', $passWord);
$s->execute();
}
catch(PDOException $e)
{
$error = 'Error searching User.';
include $_SERVER['DOCUMENT_ROOT'] . '/includes/error.php';
exit();
}
$row = $s->fetch();
if($row[0] > 0)
{
return TRUE;
}
else
{
return FALSE;
}
}
1 个解决方案
解决方案1
0 2015-08-11 17:25:03
You have a mistake in your code. 您的代码有误。 Replace "conplete" with complete. 用完成替换“完成”。 Rest of the things look fine. 其余的一切看起来不错。
After the change your Javascript will look like this 更改后,您的Javascript将如下所示
$(document).ready(function(){
$("#logInButton").click(function(e){
var logInFormData = $("#logInForm").serialize();
$.ajax({
type: 'post',
data: logInFormData,
url: 'http://localhost/includes/accessControl.php',
beforeSend: function(){
$("#logInFromSpinner").show();
},
complete: function(){
$("#logInFromSpinner").hide();
},
success: function(data, status) {
console.log(data);
},
error: function(jqXHR, textStatus){
console.log(textStatus);
}
});
});
});
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.