PHP，MySQL使用电子邮件验证和登录系统（历史记录）进行用户注册，插入日期为最近一次

Question

I wish to create a log in system where every time a user logs in, this activity is logged in another table. How is this possible?

I am using PHP and MySQL, I have an ok knowledge of the two and currently have a system that I have designed using various tutorials.

It is very simple as that is all I require at the moment however I may look to streamline the code at a later date by making it object oriented however this is above my skill level at this time.

The user registers with their name, username, password and email. The user is then emailed their log in details - what I would like is for the user to have to click a link in within the email lot activate their account.*1

Once the user has activated their account the user logs in with a username and password - I would like their 'activity' to be stored, ie the date/time that they log in.*2

*1: Currently, when the user registers, they receive an email with their log in details, I would like the email to contain a link so that they can 'activate' their account. How can I implement this. I know that I should store a unique code in the database but I do not know how to send that information to the user and to check it against the database.

*2: I would like the date and time stored in a table when the user logs in, so that their 'activity history' can be checked. How do I go about this. I know that I need to create a new table called something like 'log' which merely stores the username and date, but I do not know how to populate it when the user logs in.

If anyone can help that's be more than appreciated.

Answer 1

here i have explained earlier how to create a login system. check this post. this might help you.

Open-source rich HTML editor

and regarding sending mails for activation. you need to append the following to the above explained code.

add an extra column activation_string to the table users. now your final table should look like.

CREATE TABLE `users` (
  `id` int(11) NOT NULL AUTO_INCREMENT,
  `email` varchar(50) NOT NULL,
  `password` varchar(50) NOT NULL,
  `activation_string` varchar(50) NOT NULL,
  `status` tinyint(1) NOT NULL DEFAULT '0',
  PRIMARY KEY (`id`),
);

The activation_string column will hold our activation string that is to be sent to the user's email. so that when user click on it, users account get activated. now to generate an activation string use the below function.

function generateActivationString() {
    $randomSalt = '*&(*(JHjhkjnkjn9898';
    $uniqId = uniqid(mt_rand(), true);
    return md5($randomSalt.$uniqId);
}

Now represent the user with the registration form. and while submitting the form you have to do the following.

$email = mysql_real_escape_string($_POST['email']);
$password = mysql_real_escape_string(sha1($_POST['password']));
$activationString = generateActivationString();
mysql_query("INSERT INTO users (email,password, activation_string) VALUES('$name','$password','$activationString')");

and at the same time send an email to the user with the activation string represented as a URI. check the below code on how to do it.

$email = $_POST['email'];
$message = 'http://mysite.com/activate.php?confirm='.$activationString;
$to = $email;
$subject = 'User Account Confirmation';
$body =     $message . PHP_EOL;
mail($to, $subject, $body);

and then write another script to verify the string and update the value in status to 1 if the activation string is verified.

hope this helps you in understanding what you should be doing.

Answer 2

If you want to log the user activity (ie their last login date), you can just make another field in the users table and name it something like last_login or last_activity (whichever suits you). And then when they're logging in, after checking the password they entered, update the field with the current date.

if ($password === $storedpassword)
{

  // Password correct.
  $currentDate = date('Y-m-d g:i:s a');
  mysql_query('UPDATE `users` SET `last_login` = "' . $currentDate . '"');

}