Jump to content

Login Error

ecabrera

By ecabrera
in PHP Coding Help

 Share

Recommended Posts

ecabrera Advanced Member

ecabrera

Posted
Posted

ok so when user get there email or password wrong are they just submit with filling anything out they go to login.php?login_failed

but it gives me

 

This webpage has a redirect loop

Error 310 (net::ERR_TOO_MANY_REDIRECTS): There were too many redirects.

 

<?php
session_start();
$email = $_SESSION['email'];
?>
<?php

$email = mysql_real_escape_string($_POST['email']);
$password = mysql_real_escape_string($_POST['password']);

if(!empty($email) && isset($email) &&!empty($password) && isset($password)){
$password = md5("$password");

require "includes/init/db_con.php"; 
$query = mysql_query("SELECT * FROM users WHERE email = '$email'");
$numrows = mysql_num_rows($query);

if($numrows != 0){

                $row = mysql_fetch_assoc($query);

	$dbemail = $row ['email'];
	$dbpassword = $row ['password'];

	if($dbemail === $email && $dbpassword === $password){
		$_SESSION['email'] = $dbemail;
		header("location: http://localhost/control/home.php");
	}else {
    header('Location: login.php?login_failed');
}
}else {
    header('Location: login.php?login_failed');
}
}else {
    header('Location: login.php?login_failed');
}
?>
<?php require "includes/overall/header.php";?>

<?php
if($_GET['login_failed']){
echo "Login Box will appear with messages";
}
?>


<?php require "includes/overall/footer.php";?>

Link to comment
Share on other sites
creata.physics Member

creata.physics

Posted
Posted

well, your php's logic is kind of weird on one spot. i removed an unnecessary redirect. i also cleaned up your code a bit so it can be read a bit easier.

i commented out the redirect that doesn't make sense. if you don't understand it, feel free to ask what you don't understand.

<?php
session_start();
$email = $_SESSION['email'];

$email = mysql_real_escape_string($_POST['email']);
$password = mysql_real_escape_string($_POST['password']);

if(!empty($email) && isset($email) &&!empty($password) && isset($password))
{
    $password = md5("$password");

    require "includes/init/db_con.php"; 
    $query = mysql_query("SELECT * FROM users WHERE email = '$email'");
    $numrows = mysql_num_rows($query);

    if($numrows != 0)
    {
        $row = mysql_fetch_assoc($query);

        $dbemail = $row ['email'];
        $dbpassword = $row ['password'];

        if($dbemail === $email && $dbpassword === $password)
        {
            $_SESSION['email'] = $dbemail;
            header("location: http://localhost/control/home.php");
        }
        else 
        {
            // Login failed because email or password did not match
            header('Location: login.php?login_failed');
        }
    }
    else 
    {
        // Log in failed because the sessions email did not match a user record?
        #header('Location: login.php?login_failed');
    }
}

require "includes/overall/header.php";

if($_GET['login_failed']){
echo "Login Box will appear with messages";
}

require "includes/overall/footer.php";

Link to comment
Share on other sites
princeofpersia Regular Member

princeofpersia

Posted
Posted

try this,

 

<?php
session_start();
$email = $_SESSION['email'];

$email = mysql_real_escape_string($_POST['email']);
$password = mysql_real_escape_string($_POST['password']);

if(!empty($email) && isset($email) &&!empty($password) && isset($password))
{
    $password = md5($password);

    require "includes/init/db_con.php"; 
    $query = mysql_query("SELECT * FROM users WHERE email = '$email'");
    $numrows = mysql_num_rows($query);

    if($numrows != 0)
    {
        $row = mysql_fetch_assoc($query);

        $dbemail = $row ['email'];
        $dbpassword = $row ['password'];

        if($dbemail === $email && $dbpassword === $password)
        {
            $_SESSION['email'] = $dbemail;
            header("location: http://localhost/control/home.php");
        }
        else 
        {
            // Login failed because email or password did not match
            header('Location: login.php?login_failed');
        }
    }
    else 
    {
        // Log in failed because the sessions email did not match a user record?
        #header('Location: login.php?login_failed');
    }
}

require "includes/overall/header.php";

if($_GET['login_failed']){
echo "Login Box will appear with messages";
}

require "includes/overall/footer.php";

 

 

The problem was with md5 conversion, this should work

 

Password should be $password = md5($password); and not $password = md5("$password");

 

I couldnt see anything else wrong, if problem still exist change

 

if($dbemail === $email && $dbpassword === $password)

 

to

 

if($dbemail == $email && $dbpassword == $password)

Link to comment
Share on other sites
This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.