mysql - PHP Globally visible login -

-

i went through quite few articles , couldnt find looking for. have tried using $globals doesnt work when querying mysql.

the problem have here want username visible on entire page , php files included after username , password confirmed on login screen.

example of mean (password hashing removed simplification):

<?php include('config.php');  global $logged;  $email = $_post["email"]; $globals['email'] = $email;  $password = $_post["password"];  $results = sqlquery("select upassword usertable useremail='$email' limit 1");  foreach ($results $result) {     $cpassword = $result[0][0]; }  if($cpassword === $password) {     echo "login succesful";     $logged = 0;     redirect('index.php', false); } else {     $logged = 1;     echo "incorrect username or password"; } ?>

==============================

function sqlquery($sql) { global $db_conn; // execute query     $db_result = mysql_query($sql, $db_conn); // if db_result null trigger error if ($db_result === null) {     trigger_error(mysql_errno() . ": " . mysql_error() . "\n");     exit(); } // prepare result array $resultset = array(); // if resulted array isn't true , in case of select statement open loop // (insert / delete / update statement return true on success)  if ($db_result !== true) {     // loop through fetched rows , prepare result set     while ($row = mysql_fetch_array($db_result, mysql_num)) {         // first column of fetched row $row[0] used array key         // more elements in 1 table cell         $resultset[$row[0]][] = $row;     } } // return result set return $resultset; }

==================

<?php // include config database definition include('config.php');  // start transaction sqlquery('start transaction');  // delete sqlquery('delete sometable');  // accept parameters - p array (suppress errors adding "@" sign) $arr = @$_request['p'];  // if input array exists (in cases except deleting last element) if (is_array($arr)) { // open loop through each array element foreach ($arr $p) {     // detach values combined parameters     // $tbl parameter ignored because saving goes table 1     list($sub_id, $row, $col) = explode('_', $p);     // discard clone id part sub_id     $sub_id = substr($sub_id, 0, 2);     // insert database     sqlquery("insert sometable (sub_id, tbl_row, tbl_col) values      ('$sub_id', $row, $col)"); } }  // commit transaction (sqlcommit function config.php) sqlcommit();  // redirection index.php header('location: index.php'); ?>

now if use $globals['email'] seen in login name in query: sqlquery("insert sometable (sub_id, tbl_row, tbl_col) values ('$sub_id', $row, $col)"); fail, how can it?

the comment explains globals used for. though should never use globals.

now, question. put session_start() @ top of script. right, after <?php

then, modify block of code. 

if($cpassword === $password) {     echo "login succesful";     $logged = 0;     redirect('index.php', false);     $_session['user_email']= (isset($_post['email'])) ? $_post['email'] : false; }

now, need echo email, can use echo $_session['user_email'] @ time , place in script. long function session_start() available page.

your code , overall logic miss conventions , standards, suggest read php right way. learn stuff.


Comments

Post a Comment

Popular posts from this blog

windows - Single EXE to Install Python Standalone Executable for Easy Distribution -

-
i used pyinstaller create standalone exe file pyqt project. did not use single file option because exe created single file option takes long open. therefore, pyinstaller created dist folder contains bunch of files including program.exe file. create setup.exe file place contents of dist folder in program directory , create shortcut in start menu , on desktop. want super simple user. maybe setup.exe files when download program cnet. found inno-setup, looks promising. however, not know if there special considerations because program standalone program create python/pyqt program. thanks! have experience task? there program using task not know about? inno-setup or nsis easiest use. tell them files include , put them , create nice installer you. wrote short tutorial on experiences using innosetup might find helpful: http://www.blog.pythonlibrary.org/2008/08/27/packaging-wxpymail-for-distribution/ note tutorial based around wxpython app wrote, concepts same.
Read more

c# - Access objects in UserControl from MainWindow in WPF -

-
i have simple xaml, how can change text property of textblock in usercontrol1 mainwindow ? <window x:class="refactorxaml.mainwindow" xmlns="http://schemas.microsoft.com/winfx/2006/xaml/presentation" xmlns:x="http://schemas.microsoft.com/winfx/2006/xaml" xmlns:refactorxaml="clr-namespace:refactorxaml" title="mainwindow" height="350" width="525"> <grid> <grid.rowdefinitions> <rowdefinition height="100"></rowdefinition> <rowdefinition height="100"></rowdefinition> </grid.rowdefinitions> <grid> <refactorxaml:usercontrol1></refactorxaml:usercontrol1> </grid> <grid grid.row="1"> <button>change text</button> </grid> </grid> </window> <usercon...
Read more

javascript - How to name a jQuery function to make a browser's back button work? -

-
i'm trying write function ajaxyfy web site, works perfect, except function button. that's have now: function loading() { if (typeof history.pushstate !== "undefined") { var historycount = 0; $('.menu-item, .logo').on('click','a',function(e){ e.preventdefault(); $(this).data('clicked', true); if ($(this).is('.logo a')) { var homepage = $(this).attr('href'); function1(homepage); history.pushstate(null, null, homepage); } else if ($(this).is('.projects a')) { var projects = $(this).attr('href'); function2(projects); history.pushstate(null, null, projects); } else { var pages = $(this).attr('href'); function3(pages); history.pushstate(null, null, pages); ...
Read more