php 读mysql
我比着葫芦画瓢弄了这么一段,现在是想,当我用(test.php?user=admin&pass=123)连接时怎么判断是否密码是否正确?
<?php
$user = $_GET['user'];
$pass = $_GET['pass'];
$pass = md5($pass);
$connect=mysql_connect("localhost","user","pass");
mysql_query("SET NAMES 'GBK'");
mysql_select_db('test');
$query = "SELECT * FROM `pw_members`";
$result = mysql_query($query);
$num = mysql_num_rows($result);
while($row = mysql_fetch_array($result))
mysql_close();
if
?>
数据库结构:
uid username password
1 admin 21232f297a57a5a743894a0e4a801fc3
2 guest d41d8cd98f00b204e9800998ecf8427e
<?php
$user = $_GET['user'];
$pass = $_GET['pass'];
$pass = md5($pass);
$connect=mysql_connect("localhost","user","pass");
mysql_query("SET NAMES 'GBK'");
mysql_select_db('test');
$query = "SELECT * FROM `pw_members`";
$result = mysql_query($query);
$num = mysql_num_rows($result);
while($row = mysql_fetch_array($result))
mysql_close();
if
?>
数据库结构:
uid username password
1 admin 21232f297a57a5a743894a0e4a801fc3
2 guest d41d8cd98f00b204e9800998ecf8427e
满意答案
<?php
if($_GET['user']&&$_GET['pass'])
{
$user = $_GET['user'];
$pass = $_GET['pass'];
$pass = md5($pass);
$connect=mysql_connect("localhost","user","pass");
mysql_query("SET NAMES 'GBK'");
mysql_select_db('test');
$query = "SELECT * FROM `pw_members` Where username = '".$user."'";
$result = mysql_query($query);
if($row = mysql_fetch_array($result))
{
if( $row['password'] != $pass)
{
echo '密码错误!';
}
else
{
echo 'pass';
}
}
else
{
echo '用户名错了,没这名字';
}
mysql_close();
}
else
{
echo '没有参数';
}
?>
这样标准一点
评价答案
- 是否解决问题(参与评价0次)
-
0次
-
0次
-
0次
- 是否原创答案(参与评价0次)
-
0次
-
0次
独轩的感言:
嗯,很好啊~~~感谢你哦~~其他答案
<?php
$user = $_GET['user'];
$pass = $_GET['pass'];
$pass = md5($pass);
$connect=mysql_connect("localhost","user","pass");
mysql_query("SET NAMES 'GBK'");
mysql_select_db('test');
$query = "SELECT * FROM `pw_members` Where username = '".$user."' And password = '".$pass."'";
$result = mysql_query($query);
$num = mysql_num_rows($result);
mysql_free_result($result);
mysql_close();
if($num==0)
{
echo "用户名或密码输入不正确!";
}
else
{
echo "输入正确!";
}
?>
为什么你一定要用get方法?还是用post吧..安全点..
小相如 说的差不多..
就是把你的密码捞过来.MD5一下..
然后把这个秘密到数据库里进行比较..注意sql语句的条件..
蛮简单的哦..
<?php
$user = $_GET['user'];
$pass = $_GET['pass'];
$pass = md5($pass);
$connect=mysql_connect("localhost","user","pass");
mysql_query("SET NAMES 'GBK'");
mysql_select_db('test');
$query = "SELECT * FROM `pw_members` Where username = '".$user."'";
$result = mysql_query($query);
if($row = mysql_fetch_array($result))
{
if( $row['password'] != $pass)
{
echo '密码错误!';
}else{
echo 'pass';
}
}else{
echo '用户名错了,没这名字';
}
mysql_close();
?>
