我试图检查密码是否在登录表单中错误,但电子邮件确实显示在数据库中。这是我的ajax/js代码:
$.post('li-check-email.php', {'liEmail' : $liEmail, 'liPassword' : $liPassword}, function(liData) {
if (liData.trim() == 'existspwno')
{
liValidForm = false;
$logInSubmit.css('top', '72px');
$liBox.css('height', '235px');
$liBox.css('top', '36%');
$liErrorText.text('The password entered is incorrect.');
}
elseif (liData.trim() == 'existsno')
{
liValidForm = false;
$logInSubmit.css('top', '72px');
$liBox.css('height', '235px');
$liBox.css('top', '36%');
$liErrorText.text('The email entered is not currently registered.');
};
});
<?php include("dbconnect.php") ?>
<?php
$liEmail = mysqli_real_escape_string ($_POST['liEmail'])
$liPassword = mysqli_real_escape_string ($_POST['liPassword'])
$sqlEmail = "SELECT email FROM users WHERE email = '$liEmail'";
$sqlPassword = "SELECT * FROM users WHERE email = '$liEmail' AND password = '$liPassword'";
$selectEmail = mysqli_query($connection, $sqlEmail);
$selectPassword = mysqli_query($connection, $sqlPassword);
if (mysqli_num_rows($selectPassword) = 0)
{
echo "existspwno";
}
else if (mysqli_num_rows($selectEmail) = 0)
{
echo "existsno";
}
?>
我正在输入数据库中的电子邮件和不正确的密码,但js错误消息没有显示。
试试这个,这是我的Jquery Ajax代码
$("#login").click(function()
{
var username = $("#username").val();
var password = $("#password").val();
$("#login").html("Authenticating...").attr("disabled", true);
if(username == "")
{
$("#username").addClass("error").focus();
$("#login").html("Start Managing").attr("disabled", false);
$("#error-message").html("Username Cannot Be Left Blank...").addClass("error-message");
}
if(password == "")
{
$("#password").addClass("error").focus();
$("#login").html("Start Managing").attr("disabled", false);
$("#error-message").html("Password Cannot Be Left Blank...").addClass("error-message");
}
if(username == "" && password == "")
{
$("#username").addClass("error").focus();
$("#password").addClass("error");
$("#login").html("Start Managing").attr("disabled", false);
$("#error-message").html("Please Enter Username & Password...").addClass("error-message");
}
if(username != "" && password != "")
{
$.ajax({
url: 'check.php',
type: 'POST',
dataType: 'html',
data: {username: username, password: password},
})
.done(function(resp)
{
if(resp == 0)
{
$("#password").addClass("error").focus();
$("#error-message").html("Wrong Password For Username : "+username).addClass("warning-message");
$("#login").html("Start Managing").attr("disabled", false);
}
else if(resp == "other")
{
$("#error-message").html("Please Contact The Admin!").addClass("error-message");
$("#login").html("Start Managing").attr("disabled", false);
}
else if(resp == 1)
{
$("#username").addClass("success");
$("#password").addClass("success");
$("#error-message").text("Redirecting To Dashboard Now..").addClass("success-flash");
$("#login").html("Authorized Successfully...").attr("disabled", true);
location.replace("dashboard.php");
}
else
{
console.log(resp);
}
})
.fail(function()
{
console.log("error");
});
}
});
在PHP端这是我的代码:
$query = "SELECT password FROM site_handlers WHERE username = '".$username."' OR email = '".$username."' OR mobile = '".$username."' AND password = '".$password."' ";
$connection = $this->establish_connection();
$result = $connection->query($query);
$connection->close();
if($result->num_rows > 0)
{
$pass = $result->fetch_object()->password;
if($password === $pass)
{
return 1;
}
else
{
return 0;
}
}
else
{
return "other";
}
username: demoadmin
password: password