![](/img/trans.png)
[英]Creating a PHP session variable based on one value pulled from MySQL
[英]Creating session on login and creating variable from MySQL
我正在努力从数据库中进行选择,并将其添加到$_SESSION
以继续进入个人资料页面。
请注意,“ $_SESSION['user'] = $email;
”可以在配置文件上显示并打印,但是我敢肯定是因为它已经提出了我的表格。
Connect.php
<?php
session_start();
$required = array('email', 'password');
// Loop over field names, make sure each one exists and is not empty
$error = false;
foreach($required as $field) {
if (empty($_POST[$field])) {
$error = true;
}
}
if ($error) {
die("All fields are required.");
} else {
//CHECK POINT 1
$con = mysql_connect("**HOST**", "**DB**", "**PASSWORD**");
mysql_select_db("**DB**")or die("cannot select DB");
// username and password sent from form
$email=$_POST['email'];
$psswrd=$_POST['password'];
// To protect MySQL injection (more detail about MySQL injection)
$email = stripslashes($email);
$psswrd = stripslashes($psswrd);
$email = mysql_real_escape_string($email);
$psswrd = mysql_real_escape_string($psswrd);
$sql="SELECT * FROM **Table WHERE email='$email' and password='$psswrd'";
$result=mysql_query($sql);
// Mysql_num_row is counting table row
$count=mysql_num_rows($result);
//fetch info & create session
$id="SELECT 'id' FROM **table**";
$_SESSION['user'] = $email;
$_SESSION['uid'] = $id;
$_SESSION['name1'] = $fname;
Profile.php
<?php
session_start();
$email = $_SESSION["user"];
$id = $_SESSION["uid"];
$fname = $_SESSION["name1"];
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>...</head>
<body>
<div align=center><font color="#000000" face="Bodoni MT" class="ws12"><?php echo "I am ". $id. ". Contact me at ". $email ?></font></div>
</body>
</html>
mysql_query将返回一个结果集。 您可以使用mysql_fetch_assoc将返回的数据放入数组中。 正如solymosi建议。
因此将是:
$user_data_array = mysql_fetch_assoc($result);
然后,您可以将值关联到会话数据:
$_SESSION['user'] = $user_data_array["email"];
$_SESSION['uid'] = $user_data_array["id"];
$_SESSION['name1'] = $user_data_array["fname"];
如果这些列是正确的。
您必须从数据库中获取数据(“ $ result”变量)。 尝试这个:
<?php
session_start();
$required = array('email', 'password');
foreach ($required as $field) {
if (empty($_POST[$field])) {
$error = true;
} else {
$error = false;
}
}
if (true === $error) {
die("All fields are required.");
} else {
$con = mysql_connect("**HOST**", "**DB**", "**PASSWORD**");
mysql_select_db("**DB**") or die ("cannot select DB");
$email = $_POST['email'];
$psswrd = $_POST['password'];
$email = stripslashes($email);
$psswrd = stripslashes($psswrd);
$email = mysql_real_escape_string($email);
$psswrd = mysql_real_escape_string($psswrd);
$result = mysql_fetch_assoc(mysql_query("SELECT * FROM **Table WHERE email='$email' and password='$psswrd'"));
if (!empty($result)) {
$_SESSION['user'] = $result['email'];
$_SESSION['uid'] = $result['id']; // id column name in your database
$_SESSION['name1'] = $result['name']; // name column name in your database
}
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.