[PHP] login check
I think this is the way I need to write my if statement. if ( $min $user[ min ] == $min $user[ pin ] == $pin || $pin == 'allow') $min login name entered by the customer at the form. $user[min] is the login name from my sql db that matches $min $user[pin] is the password from mysql db that matches $min $pin is the password that is entered by the user There's 4 checks 1) $min must have a value 2) $user[ min ] must equal $min 3) $user[ pin ] must equal $pin 4) $pin == 'allow' I want it so that both 1 and 2 must be true and either 3 or 4 must be true. Will this if statement work? Andrew Darrow Kronos1 Productions www.pudlz.com
Re: [PHP] login check
[EMAIL PROTECTED] wrote:
I think this is the way I need to write my if statement.
if ( $min $user[ min ] == $min $user[ pin ] == $pin || $pin ==
'allow')
try a couple paretheses to make your intension explicit. your if statement might
work the way you want it but I have no idea - and I'm way to lazy to go and look
up the operator precedence to work it out
if ($min $user[ min ] == $min ($user[ pin ] == $pin || $pin ==
'allow')) {
// you are okay to login
}
$min login name entered by the customer at the form.
$user[min] is the login name from my sql db that matches $min
$user[pin] is the password from mysql db that matches $min
$pin is the password that is entered by the user
There's 4 checks
1) $min must have a value
2) $user[ min ] must equal $min
3) $user[ pin ] must equal $pin
4) $pin == 'allow'
check 4 seems a little absurd - anyone who knows it will be able to login
as anyone on your app. also checking whether $user['min'] is equal to $min
_seems_ pointless because I assume that you had to extract the data from the
database somehow - usually this means using the login (i.e. $min) entered by
the user to do the look up.
lots of good reading here on security: http://www.phpsec.org/
I want it so that both 1 and 2 must be true and either 3 or 4 must be true.
Will this if statement work?
Andrew Darrow
Kronos1 Productions
www.pudlz.com
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] LogIn check within function within class :: HELP!
Im just about at wits end here Im trying to verify that a users ID and
Password exist in the MySQL Database and then if it does display certain
content and if it does not display login form content.
###At present here is the error I'm recieving:
Warning: Missing argument 3 for verifylogin() in
/home/www/websitename/admin/include/adminclass.inc on line 78
This stupid thing STILL Does NOT WORK!
Here is my class FILE
?
class ADMINPAGE
{
//class adminpage's attributes
var $title = 75;
var $content;
var $buttons = array([ admin ] = admin_root.php,
[ orders ] = orders_root.php,
[ customers ] = customers_root.php,
[ products ] = products_root.php,
[ categories ] = categories_root.php,
[ manufacturers ] = manufacturers_root.php,
[ vehicles ] = vehicles_root.php);
var $count;
function SetTitle($newTitle)
{
$this-title = $newTitle;
}
function SetContent($newContent)
{
$this-content = $newContent;
}
function SetButtons($newbuttons)
{
$this-buttons = $newbuttons;
}
function Display($employeeid,$password,$title,$count)
{
session_start();
session_register(employeeid);
$this - VerifyLogin($employeeid,$password);
switch($count)
{
case 1:
$this - DisplayHeader($title,$employeeid);
echo centerbr;
$this - DisplayMenu($this-buttons);
echo /centerbr;
$this - DisplayFooter();
break;
default:
echo This stupid thing STILL Does NOT WORK!;
break;
}
}
function DisplayHeader($title,$employeeid)
{
echo html\nhead\ntitle$title/title;
echo link href='/aistyles.css' rel='stylesheet' type='text/css';
echo /head\nbody leftmargin='0' topmargin='0' marginwidth='0'
marginheight='0' \n;
echo table width='100%' border='0' cellspacing='0'
cellpadding='0';
echo tr;
echo td bgcolor='#FF6600' div align='left'img
src='/images/designelements/logo.gif' width='348' height='35'/div/td;
echo /tr;
echo tr;
echo td bgcolor='#00';
echo table width='100%' border='0' cellspacing='0'
cellpadding='0';
echo tr;
echo tdimg src='/images/designelements/spacer.gif' width='5'
height='15'/span/td;
echo tdspan class='admin_header'ADMINISTRATOR LOGGED
IN:nbsp;nbsp;;
echo $employeeid;
echo /span/div;
echo /td;
echo /tr;
echo /table;
echo /td;
echo /tr;
echo /table;
}
function VerifyLogin($employeeid,$password,$count)
{
include('dbconnection.php');
$employeequery = Select count(*) from employees where employeeid =
'$employeeid' and password='$password';
$employeeresult = mysql_query($employeequery);
if(!$employeeresult)
{
echo 'Please Try Again Later.';
exit();
}
$count = mysql_result($employeeresult,0,0);
if($count0)
{
$count = 1;
}
else
{
$count = 0;
}
}
function DisplayMenu($buttons)
{
echo table width = \500\ bgcolor=\#00\ cellpadding=\1\
cellspacing=\0\trtd;
echo table width=\100%\ bgcolor=\#ff6600\ cellpadding=\1\
cellspacing=\0\trtd;
echodiv align=centertable width=\100%\ bgcolor=\#ff\
cellpadding=\5\ cellspacing=\0\trtd;
$width = 100/count($buttons);
while(list($name,$url) = each ($buttons))
{
$this -DisplayButton($width,$name,$url);
}
echo /td/tr/table/div;
echo /td/tr/table;
echo /td/tr/table;
}
function DisplayButton($width,$name,$url)
{
echo td width =\$width%\a href = \$url\span class =
small$name/span/a/td;
}
function DisplayFooter()
{
?
table width=100% height=100% border=0 cellpadding=0
cellspacing=0
tr
td valign=top bgcolor=#00img src=/images/spacer.gif
width=1 height=300/td
/tr
/table
/body/html
?
}
}
?
Here is sample page usage of class file
?
require (include/adminclass.inc);
$test = new adminpage();
$title = This is a Nice Page;
$content = Some Temporary Content;
$test -SetContent($content);
$test -Display($employeeid,$password,$title,$count);
?
_
MSN 8 with e-mail virus protection service: 2 months FREE*
http://join.msn.com/?page=features/virus
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] LogIn check within function within class :: HELP!
Hi,
Monday, December 9, 2002, 2:24:47 AM, you wrote:
SM Im just about at wits end here Im trying to verify that a users ID and
SM Password exist in the MySQL Database and then if it does display certain
SM content and if it does not display login form content.
SM ###At present here is the error I'm recieving:
SM Warning: Missing argument 3 for verifylogin() in
SM /home/www/websitename/admin/include/adminclass.inc on line 78
SM This stupid thing STILL Does NOT WORK!
SM Here is my class FILE
SM ?
SM class ADMINPAGE
SM {
SM //class adminpage's attributes
SM var $title = 75;
SM var $content;
SM var $buttons = array([ admin ] = admin_root.php,
SM [ orders ] = orders_root.php,
SM [ customers ] = customers_root.php,
SM [ products ] = products_root.php,
SM [ categories ] = categories_root.php,
SM [ manufacturers ] = manufacturers_root.php,
SM [ vehicles ] = vehicles_root.php);
SM var $count;
SM function SetTitle($newTitle)
SM {
SM $this-title = $newTitle;
SM }
SM function SetContent($newContent)
SM {
SM $this-content = $newContent;
SM }
SM function SetButtons($newbuttons)
SM {
SM $this-buttons = $newbuttons;
SM }
SM function Display($employeeid,$password,$title,$count)
SM {
SM session_start();
SM session_register(employeeid);
SM $this - VerifyLogin($employeeid,$password);
SM switch($count)
SM {
SM case 1:
SM $this - DisplayHeader($title,$employeeid);
SM echo centerbr;
SM $this - DisplayMenu($this-buttons);
SM echo /centerbr;
SM $this - DisplayFooter();
SM break;
SM default:
SM echo This stupid thing STILL Does NOT WORK!;
SM break;
SM }
SM }
SM function DisplayHeader($title,$employeeid)
SM {
SM echo html\nhead\ntitle$title/title;
SM echo link href='/aistyles.css' rel='stylesheet' type='text/css';
SM echo /head\nbody leftmargin='0' topmargin='0' marginwidth='0'
marginheight='0' \n;
SM echo table width='100%' border='0' cellspacing='0'
cellpadding='0';
SM echo tr;
SMecho td bgcolor='#FF6600' div align='left'img
SM src='/images/designelements/logo.gif' width='348' height='35'/div/td;
SM echo /tr;
SM echo tr;
SM echo td bgcolor='#00';
SM echo table width='100%' border='0' cellspacing='0'
cellpadding='0';
SM echo tr;
SM echo tdimg src='/images/designelements/spacer.gif' width='5'
height='15'/span/td;
SM echo tdspan class='admin_header'ADMINISTRATOR LOGGED
SM IN:nbsp;nbsp;;
SM echo $employeeid;
SM echo /span/div;
SM echo /td;
SM echo /tr;
SM echo /table;
SM echo /td;
SM echo /tr;
SM echo /table;
SM }
SM function VerifyLogin($employeeid,$password,$count)
SM {
SM include('dbconnection.php');
SM $employeequery = Select count(*) from employees where employeeid =
SM '$employeeid' and password='$password';
SM $employeeresult = mysql_query($employeequery);
SM if(!$employeeresult)
SM {
SM echo 'Please Try Again Later.';
SM exit();
SM }
SM $count = mysql_result($employeeresult,0,0);
SM if($count0)
SM {
SM $count = 1;
SM }
SM else
SM {
SM $count = 0;
SM }
SM }
SM function DisplayMenu($buttons)
SM {
SM echo table width = \500\ bgcolor=\#00\ cellpadding=\1\
cellspacing=\0\trtd;
SM echo table width=\100%\ bgcolor=\#ff6600\ cellpadding=\1\
cellspacing=\0\trtd;
SM echodiv align=centertable width=\100%\ bgcolor=\#ff\
SM cellpadding=\5\ cellspacing=\0\trtd;
SM $width = 100/count($buttons);
SM while(list($name,$url) = each ($buttons))
SM {
SM $this -DisplayButton($width,$name,$url);
SM }
SM echo /td/tr/table/div;
SM echo /td/tr/table;
SM echo /td/tr/table;
SM }
SM function DisplayButton($width,$name,$url)
SM {
SM echo td width =\$width%\a href = \$url\span class =
small$name/span/a/td;
SM }
SM function DisplayFooter()
SM {
SM ?
SM table width=100% height=100% border=0 cellpadding=0
cellspacing=0
SM tr
SM td valign=top bgcolor=#00img src=/images/spacer.gif
SM width=1 height=300/td
SM /tr
SM /table
SM /body/html
SM ?
SM }
SM }
?
SM Here is sample page usage of class file
SM ?
SM require (include/adminclass.inc);
SM $test = new adminpage();
SM $title = This is a Nice Page;
SM $content = Some Temporary Content;
$test -SetContent($content);
$test -Display($employeeid,$password,$title,$count);
?
SM _
SM MSN 8
