stackoom
  简体   繁体   中英

pdo echo error message when invalid username or password is entered

 原文  2013-05-30 11:36:56       php/ html/ pdo

Question

hello i am relatively new to pdo(php) and i created a basic login system i know it is not secure yet but i am just experimenting anyway i know in the old php you could echo out and error message within an if statement but it does not seem to work anymore here is my script is it that im doing something wrong or that you just cant do that in pdo anymore. 

if ($row == null){

            header( "location: login.html");
            echo "login failed";

        } else{

            header("location: homepage.php");
        }

i realize that this may not have enough code available so here is the rest of the script 

session_start();
    //connection String
    $connection = new PDO("sqlsrv:server=server;Database=database", "username", "password"); 

    //Seelcting function
    $smt = $connection->prepare("select user_id, username from account where username = :username and password =:password");

    //setting values to textboxes
    $username = $_POST["txt_username"];
    $password = $_POST["txt_password"];

    //binding values
    $smt->bindValue(':username', $username);
    $smt->bindValue(':password', $password);

    //execution
    $smt->execute();

    //fetching data
    $row = $smt->fetch( PDO::FETCH_ASSOC ) ;  
    echo "$row[user_id]\n\n";
    echo "$row[username]\n\n";
    $_SESSION{"user_id"} = $row["user_id"];

1 answers

solution1
 1 ACCPTED  2013-05-30 11:43:52

After you send the 

header( "location: login.html");

the browser will redirect to that new file ( login.html ) and ignore (almost) any further output.

Do display the message on login.html later on, you have to use some mechanism to transfer the message to that page, eg, by using a session variable.

EDIT

The header command send some kind of data to the browser before the actual content. If you make the browser redirect using a header, the user never gets to see the content.

So you need some way of bringing the content to the next page, you are redirecting to.

One possibility would be to use a session variable. 

if ($row == null){
  $_SESSION['errormsg'] = "login failed";
  header( "location: login.php");
} else{
  header("location: homepage.php");
}

In the login.php then you could react to this message if it is present: 

if( isset( $_SESSION['errormsg'] ) ) {
  // do the output
  echo $_SESSION['errormsg'];
  // delete the message from the session, so that we show it only once
  unset( $_SESSION['errormsg'] );
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question admin invalid username and password error adding username and password error message Wrong error message when login even username and password is correct Error message not shown when trying to login to an invalid username The error is incorrect username or password even I've entered the correct credentials PDO Invalid parameter number error message If username is set and password is not, display me an error message PDO on Windows ignores host name and username when password is empty Error when trying to update password for user PDO How to throw an error for Invalid username or password if the data is not matched with the DB?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM