Mysql query and case distinguish

Question

Mysql query and case distinguish

Asked 8 years, 1 month ago

Viewed 2,538 times

2

I wish my login.php check if the password has uppercase, because when it exists, it recognizes, because I have my database with the collation utf8_general_ci. I already tried to put the collation on utf8_bin and latin1_general_cs but recognize capital letters as lowercase. Query in php:

$id = $_POST['id'];
$password = $_POST['pw'];

$consulta = mysql_query("SELECT id,password,tipo_ut FROM utilizador WHERE id ='".mysql_real_escape_string($id)."' AND password = '".mysql_real_escape_string($password)."' LIMIT 1");

Does anyone have another suggestion? And will there be any problem changing an entire database of utf8_general_ci to some other?

I edited the question because "phpmyadmin" is not a "database", read this to understand the differences: What is the difference between mysql and phpmyadmin?

– Guilherme Nascimento

2016/07/01 at 12:18
Perfect but to differentiate minusculas of upper case puts also in login if the entry contains login and password.

– Eduardo Boas

2019/02/12 at 21:36

3 answers

3

You can do this check in php before. To compare strings in DB Mysql here’s this simple way:

EX:

select 'Miguel' LIKE BINARY 'miguel'; // diferente
select 'Miguel' LIKE 'miguel'; // igual

That is to say:

mysql_query("SELECT id,password,tipo_ut FROM utilizador WHERE id ='".mysql_real_escape_string($id)."' AND BINARY password = '".mysql_real_escape_string($password)."' LIMIT 1");

But in its context and if I understood correctly my advice is to do login.php:

$temMaiusculas = preg_match('/[A-Z]/', $password); // 1 (true, tem maiusculas) ou 0 (false, não tem)

Browser other questions tagged php mysql

You are not signed in. Login or sign up in order to post.

by Wellington Telles Cunha • **379** points · Answer 1 · 2021-01-19T20:38:54+00:00

For the sake of performance put BINARY after the same, example:

SELECT * FROM temp1 WHERE col1 = BINARY "ABC" AND col2 = "DEF" ;

For your code:

$consulta = mysql_query("SELECT id,password,tipo_ut FROM utilizador WHERE id ='".mysql_real_escape_string($id)."' AND password = BINARY '".mysql_real_escape_string($password)."' LIMIT 1");

by programmer2016 • **545** points · Answer 2 · 2016-05-20T15:56:36+00:00

I added BINARY in the query, and it worked. Upshot:

$id = $_POST['id'];
$password = $_POST['pw'];

$consulta = mysql_query("SELECT id,password,tipo_ut FROM utilizador WHERE id ='".mysql_real_escape_string($id)."' AND BINARY password = '".mysql_real_escape_string($password)."' LIMIT 1");

Thanks for the vlw tip.