stackoom
  简体   繁体   中英

My login function is unable to match username and password stored in the database

 原文  2018-09-13 13:26:59       php/ password-hash

Question

This code always returns wrong username and password though its right and same function works for my admin login system. It worked some time ago, and now it won't. 

function login($user,$pass,$accountType){
require('connection.php');

$result=mysqli_query($con,"select * From $accountType");
    $regex="/^([a-zA-Z0-9])+([a-zA-Z0-9\._-])*@([a-zA-Z0-9_-])+([a-zA-Z0-9\._-]+)+$/";
    if(preg_match($regex, $user)){
        if(mysqli_num_rows($result)>0){
            while($row=mysqli_fetch_assoc($result)){
                $username=$row['username'];
                $password=$row['password'];
                if($user==$username){   
                        if (password_verify($pass,$password)){                               
                            if($accountType=='student'){
                                $_SESSION['student']='$user';
                                header('Location:studentprofile.php');

                                exit();
                            }
                            elseif($accountType=='teacher'){
                                $_SESSION['student']='$user';
                                header('Location:teacherprofile.php');
                                exit();
                                }
                            elseif($accountType=='admin'){
                                header('Location:admin.html');
                                exit();
                            }
                        }
                        else
                        {
                            $_SESSION['error']="wrong password"."<br>";
                        }
                }
                else{
                    $_SESSION['error']="Wrong username "."<br>";
                }   
            }

        }
        else{
            $_SESSION['error']="No data found";
        }
    }
    else{
        $_SESSION['error']="not a valid email,";
    }

}

1 answers

solution1
 2 ACCPTED  2018-09-13 14:06:44

From comments "i have specified varchar(20) for storing password in the database"

The password field should be large. The password_hash() can generate some very lengthy text ( the current default is 60 characters ), so making the field larger, such as varchar(254) or text will allow for the length needed. The PHP team is adding more algorithms to the method which means the hash can and will grow. We also do not want to limit our user's ability to use the password or passphrase of their choice. It's best to leave room for the change

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Android Login- checking if username and password match with MySQL database Laravel login, check if username and pwd are a match in my database Unable to login with correct username and password php and myql I am Login my Backend page he is getting error Username and password does not match, But my email id and password are correct in MySQL Server PHP login function not finding correct username and password Do i use my login username and password when trying to connect to a somee.com database? How can I fix my php being unable to fetch a username and password from a mySQL database? Codeigniter Login System Error when match with username and password How to match password username with php mysql with login form Password match error in my php login system
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM