我正在尝试用php和mysql建立一个注册系统。我正在尝试将数据库连接到系统,并且遇到了我不理解的错误。
我对php和我的sql都比较新,所以任何建议都会很棒。
例如:
generatealt.php(可选,为安全起见)
function generateSalt()
{
$salt = '';
$saltLength = 8;
for($i=0; $i<$saltLength; $i++) {
$salt .= chr(mt_rand(33,126)); //character from ASCII-table
}
return $salt;
}
db.php中
$dbname = 'test';
$localhost = 'localhost';
$login = 'root';
$pass = '';
$link = @mysqli_connect($localhost, $login, $pass, $dbname);
if (!$link) {
echo "Problem, error code: " . mysqli_connect_errno();
exit;
}
reg.php(这个例子不太安全。我建议你使用PDO。这是一个很容易理解的例子。)
require_once 'db.php';
require_once 'generateSalt.php';
if ( !empty($_POST['login']) and !empty($_POST['password']) and !empty($_POST['password_confirm']) ) {
$login = $_POST['login'];
$password = $_POST['password'];
$password_confirm = $_POST['password_confirm'];
if ($password == $password_confirm) {
$query = 'SELECT*FROM user WHERE login="'.$login.'"';
$is_login_free = mysqli_query($link, $query);
$login_free = mysqli_fetch_assoc($is_login_free);
if (empty( $login_free)) {
$salt = generateSalt();
$saltedpassword = md5($password.$salt);
$query = "INSERT INTO `user` (`login`, `password`, `salt`) VALUES ('$login', '$saltedpassword', '$salt')";
$result = mysqli_query($link, $query);
echo 'You have successfully registered';
echo '<br>';
echo 'Sign in: <a href="/login.php">Click</a>';
echo '<br>';
echo 'Home: <a href="/">Click</a>';
} else {
echo 'The login is busy';
}
} else {
echo 'Passwords do not match';
}
} else {
header("Location: /");
exit();
}
形成
<h1>Sign up</h1>
<form action="/reg.php" method="post">
<input type="text" name="login" required><br>
<input type="password" name="password" required><br>
<input type="password" name="password_confirm" required><br><br>
<input type="submit" value="Create an account">
</form>