Do not receive the POST data

Question

Do not receive the POST data

Asked 10 years, 3 months ago

Viewed 823 times

1

I am trying to generate the login according to the database data and proceed to the page restricted to registered users, but there is incorrect password error.

Front-end:

<div class="login-form">    
        <form action="modulo.php" method="POST">
        <input type="email" placeholder="E-mail" value="email" >
        <input type="password" placeholder="Senha" value="password" >
        <input type="submit" class="btn-submit" value="Login"> 
    </div>

Back-end

 <?php

    session_start();
    // error_reporting('1');
    include 'config.php';

    // username and password sent from form
    $myusername=$_POST['email'];
    $mypassword=$_POST['password'];


    // To protect MySQL injection (more detail about MySQL injection)
    $myusername = stripslashes($myusername);
    $mypassword = stripslashes($mypassword);
    $myusername = mysql_real_escape_string($myusername);
    $mypassword = mysql_real_escape_string($mypassword);

    $sql="SELECT * FROM login WHERE email='$myusername' and password='$mypassword'";
    $result=mysql_query($sql);

    // Mysql_num_row is counting table row
    $count=mysql_num_rows($result);


    // If result matched $myusername and $mypassword, table row must be 1 row

    if($count==1){

    // Register $myusername, $mypassword and redirect to file "menu.php"
    $_SESSION['email']=$myusername;
    $_SESSION['password']=$mypassword;
    header("location:menu.php");
    }
    else {
    echo "<b class='error'>Wrong Username or Password</b>";
    }
    ?>

Give a print_r($_POST) in the file that receives the data and put here.

– touchmx

2014/06/30 at 16:17

3 answers

4

Is missing name="nomeDoCampo" in the inputs of your form...

Try it like this:

<div class="login-form">    
    <form action="modulo.php" method="POST">
    <input type="email" name="email" placeholder="E-mail" value="email" >
    <input type="password" name="password" placeholder="Senha" value="password" >
    <input type="submit" class="btn-submit" value="Login"> 
</div>

tried the way you reported, but still does not solve the problem. : ( ai goes an image with the error that is occurring: http://i.imgur.com/laPvt9y.png

– the flash

2014/06/29 at 18:12
@theflash, test this in your PHP: var_dump($_POST);, before SQL. Appears what you wrote in HTML?

– Sergio

2014/06/29 at 19:19
@theflash What happens if you use $result=mysql_query($sql) OR die(mysql_error());?

– bfavaretto

2014/06/29 at 20:22
@Segio I tried the suggested way but the error is occurring: array(2) { ["email"]=> string(13) "[email protected]" ["password"]=> string(6) "123456" } No database Selected

– the flash

2014/06/29 at 22:48
@bfavaretto only occurs an error.

– the flash

2014/06/29 at 22:49
@theflash, okay, this answer tells me that the error is on the server side. Next question: if you check the log in the database the password is hidden (encrypted with md5) or you can read the word?

– Sergio

2014/06/30 at 05:44
@Sergio The password is in varchar, it is not encrypted.

– the flash

2014/06/30 at 16:04
@theflash already got it to work? If not test this string in SQL: "SELECT * FROM login WHERE email='".$myusername."' and password='".$mypassword."'"

– Sergio

2014/06/30 at 16:11
@Sergio is currently error: No database Selected

– the flash

2014/06/30 at 16:18
@theflash add this line at the beginning of your PHP and tell us if an error appears. I don’t think config.php is being read...: error_reporting(E_ALL ^ E_NOTICE);
ini_set("display_errors", 1);

– Sergio

2014/06/30 at 16:21
The error you posted above says "No database Selected". That is, failed to use mysql_select_db in config.php.

– bfavaretto

2014/06/30 at 16:47
Really it was this @bfavaretto thanks. Thanks also Sergio.

– the flash

2014/06/30 at 17:26
@theflash, great. I wanted to get there but took shorter steps, wanted to make sure that the config.php was charging.

– Sergio

2014/06/30 at 17:41
Problem solved. ;)

– the flash

2014/06/30 at 20:24

Show 9 more comments

Browser other questions tagged php mysql

You are not signed in. Login or sign up in order to post.

by Lucas Olivier • 11 points · Answer 1 · 2014-06-30T16:31:28+00:00

The problem is the function mysql_* that Voce is using.

It is already obsolete and very vulnerable. use the mysqli_* library or learn PDO.

In case, your code will look like this.

$myusername=mysqli_real_escape_string(stripslashes($_POST['email']));
$mypassword=mysqli_real_escape_string(stripslashes($_POST['password']));

This giving error in mysql_num_rows, because as this function mysql_real_escape_string Easyphp is not processing, then it assigns nothing to its variable, passing no value to SQL.

NOTE: As Voce using the mysqli_* library in the above example, you will have to adapt all your code with this lib, in this case most functions, put the "i" at the end.

by Lauro Moraes • **3,871** points · Answer 2 · 2014-06-29T19:22:27+00:00

Try it like this:

<?php

session_start();
// error_reporting('1');
include 'config.php';

// username and password sent from form
$myusername=mysql_real_escape_string(stripslashes($_POST['email']));
$mypassword=mysql_real_escape_string(stripslashes($_POST['password']));


$sql="SELECT * FROM login WHERE email='$myusername' and password='$mypassword'";
$result=mysql_query($sql);

// Mysql_num_row is counting table row
$count=mysql_num_rows($result);


// If result matched $myusername and $mypassword, table row must be 1 row

if($count==1){

// Register $myusername, $mypassword and redirect to file "menu.php"
$_SESSION['email']=$myusername;
$_SESSION['password']=$mypassword;
header("location:menu.php");
}
else {
echo "<b class='error'>Wrong Username or Password</b>";
}
?>