php - Using isset with mysql_real_escape_string -


i'm new php , trying build log in system. aware it's insecure, college project in understanding basics of php, that's not problem.

i have usernames , passwords in table , trying store cookie if user types in correct username , password combination. want have pages can accessed if user logged in.

i keep getting undefined index notice. aware article http://notesofgenius.com/how-fix-php-notice-undefined-index/ need add isset somewhere, can't work out put in code. using isset mysql_real_escape_string confusing me.

i've connected database , started session in config.php. here code:

<?php  require("config.php"); $username = mysql_real_escape_string($_post['username']); $password = mysql_real_escape_string($_post['password']);    $result = mysqli_query($con,"select * users username='$username' , password='$password' "     ); if($row = mysqli_fetch_array($result)) { $_session['user'] = 'person'; header('location: postarticle.php'); } else{ echo "<p>incorrect password</p>"; } ?>

thanks. apologies if has been asked before, did check couldn't find anything.

actually isset() has nothing escaping. there no connection between these 2 facilities.

also, isset() won't make code working if doesn't. can save error message in case calling page regular way, without sending form it. if keep getting message form sent - check form method , input name attributes.

anyway, don't need isset() here

<?php  if ($_server['request_method'] == 'post') {     require("config.php");     $username = mysqli_real_escape_string($con, $_post['username']);     $password = mysqli_real_escape_string($con, $_post['password']);        $sql = "select * users username='$username' , password='$password'";     $result = mysqli_query($con,$sql);     if($row = mysqli_fetch_array($result))     {         $_session['user'] = 'person';         header('location: postarticle.php');         exit;      } else {          echo "<p>incorrect password</p>";         exit;     } }

Comments

Post a Comment

Popular posts from this blog

blackberry 10 - how to add multiple markers on the google map just by url? -

i have android application, want convert blackberry 10 , google map needed in app,but blackberry 10 not support googlemap , blackberry developer web site supply way replace it.the sample below: @override public void oncreate(bundle savedinstancestate) { super.oncreate(savedinstancestate); setcontentview(r.layout.main); webview webview = (webview) findviewbyid(r.id.mywebview); webview.getsettings().setjavascriptenabled(true); webview.loadurl("http://maps.google.com/?ll=36.97, -122&lci=bike&z=13&t=p"); } i cannot understand it,i not know how add multiple markers on googlemap via url? can me? this worked me map shown in webview.
Read more

php - guestbook returning database data to flash -

i've been struggling problem long , unable make work, hope can me it. first, know php files correct , mysql database works fine. in flash, able submit comment database comments not display. did many tests such making returned_database flash separately , worked fine - can see old comments. long combine submitting 1 , returning 1 together, flash doesn't show comments more. put lower version flash effects on frame thinking doesn't collaborate returning flash, submitting flash works fine. since pretty complex problem hard me copy actionscript code because on different frames in flash. if has ideas fixing maybe can send file you?
Read more

delphi - Dynamic file type icon -

i want register file type in windows , make program delphi draw icon of file according contents (something custom icon format). how can this? thanks nortd , user539484 comments, searched internet "shell icon handler delphi" , found sample here , , shell+ components has component this.
Read more