php - How do I set whether a form redirects to a new page or not? -

-

so i'm trying create simple log in page php , html. it's pretty simple. first, user inputs username , password, clicks submit button.

if username/password combo invalid, "invalid log in." printed, , user redirected log in page.
if username/password combo valid, "logging in..." printed, , user redirected page. all post data must kept when redirecting.

i can't figure out how change form's action.

code snippet below. please past potential sql injections. deal them later.

<form action="<?php echo htmlspecialchars($_server['php_self']); ?>" method="post" id="form">  user name:<input type="text" name="username" id="username"> password:<input type="password" name="password" id="password"> <input type="submit" name="submit" id="submit" value="submit"> <input type="reset" name="reset" id="reset" value="reset">  <?php $username = $_post['username']; $password = $_post['password']; //(omitted) function checks whether credentials valid or not if (password_verify($password, $hash)) {     echo "logging in...";     //todo: function redirects user page } else {     echo "invalid log in."; } ?>

you can header function , choose redirect. per other's suggestion, nothing should echoed before calling header. can check if current request post or get. post, can authentication, , get, output form. can use $_session variable check if redirected successful or failed login attempt.

<?php  session_start();  if (isset($_post['username'])) {     $username = $_post['username'];     $password = $_post['password'];      if (password_verify($password, $hash)) {         $_session['login_success'] = true;         header('location: user.php?login_success=1');         } else {         $_session['login_success'] = false;         header('location: index.php');     } }  if (isset($_session['login_success']) && !$_session['login_success']) {     echo "invalid log in.";     unset($_session['login_success']); } ?>  <form action="<?php echo htmlspecialchars($_server['php_self']); ?>" method="post" id="form">  user name:<input type="text" name="username" id="username"> password:<input type="password" name="password" id="password"> <input type="submit" name="submit" id="submit" value="submit"> <input type="reset" name="reset" id="reset" value="reset">

in user.php, can check $_session variable well.

<?php session_start(); if (isset($_session['login_success']) && $_session['login_success']) {     echo "successful login.";     unset($_session['login_success']) }

Comments

Post a Comment

Popular posts from this blog

C# random value from dictionary and tuple -

-
i have following code, , need random item contains string "region_1" dictionary. public static dictionary<int, tuple<string, int, currencytype>> itemarray = new dictionary<int, tuple<string, int, currencytype>>() { { 0xb3e, new tuple<string, int, currencytype>("region_1", 1500, currencytype.fame) } }; public static int generateitemid(string shopid) { var generateditem = itemarray.elementat(new random().next(0, itemarray.count)).key; } how select this? it's not possible efficiently... first create static random @ class level... prevent non-random behaviour if run query on short period of time... (it's seeded discrete clock) static random rnd = new random(); then: var item = itemarray.values .where(t => t.item1 == shopid) .orderby(_ => rnd.next()) .firstordefault()
Read more

cgi - How do I interpret URLs without extension as files rather than missing directories in nginx? -

-
so i'm trying install zoneminder , have run under nginx, has few compiled files need run using fast-cgi. these files lack extension. if file has extension, there no issue , nginx interprets file , return 404 if can't find it. if has no extension, assume it's directory , return 404 when can't find sort of index page. here have now: # security camera domain. server { listen 888; server_name mydomain.com; root /srv/http/zm; # enable php support. include php.conf; location / { index index.html index.htm index.php; } # enable cgi support. location ~ ^/cgi-bin/(.+)$ { alias /srv/cgi-bin/zm/; fastcgi_pass unix:/run/fcgiwrap.sock; fastcgi_param script_filename $document_root/$1; include fastcgi.conf; } } the idea is, under cgi-bin directory goes through fastcgi pipe. any idea on howi can fix this? upon closer inspection, realized zoneminder has 2 cgi sc...
Read more

.htaccess - htaccess convert request to clean url and add slash at the end of the url -

-
ok , searched more 4 days , more 20 posts here in stach or in websites without kind of success first here htaccess file rewriteengine on rewriterule ^([a-za-z0-9_]+)/?$ index.php?page=$1 [nc] rewriterule ^([a-za-z0-9_]+)\/([a-za-z0-9_]+)\/?$ index.php?page=$1&action=$2 [nc] i tried many codes 1 worked me can call request , works me www.example.com/pagename => www.example.com/index.php?page=pagename here questions , please provide me information "in detail" understand code well 1- how convert request automatically www.example.com/index.php?page=pagename www.example.com/pagename 2- if tried add slash @ end shows me page without images or styling mean www.example.com/pagename => works www.example.com/pagename/ => doesn't work that's :) for first part need 301 rule this: rewritecond %{the_request} /index\.php\?page=([^\s&]+) [nc] rewriterule ^ /%1? [r=301,l] for second part use absolute path in css, js, images files r...
Read more