我正在尝试使用PHP创建一个MySQLi登录脚本,该脚本将连接到我的SQL数据库,并在提供用户名/电子邮件和密码后使用会话变量对用户进行身份验证。我正在使用以下脚本,但它每次尝试都会提示失败。
<!DOCTYPE html>
<html>
<head>
<title>Logging you in... | Project Club</title>
</head>
<body>
<?php
if (session_status() == PHP_SESSION_NONE) {
session_start();
}
$servername = "censored";
$serverusername = "censored";
$serverpassword = "censored";
$serverdbname = "censored";
$usernamemail = $_POST["usernamemail"];
$password = $_POST["password"];
$conn = new mysqli($servername, $serverusername, $serverpassword, $serverdbname);
if (isset($_POST["username"]) and isset($_POST["password"])) {
$sql = "SELECT * FROM login WHERE username='$usernamemail' OR email='$usernamemail';";
$result = mysqli_query($conn, $sql);
if ($row = mysqli_fetch_assoc($result)) {
$hashpwdcheck = password_verify($password, $row["password"]);
echo $hashpwdcheck;
if ($hashpwdcheck == true) {
$_SESSION["username"] = $row["username"];
echo "<p>You are successfully logged in.</p>";
} else {
echo "<p>Invalid login credentials.</p>";
}
}
mysqli_close($conn);
} else {
echo "<p>Invalid login credentials.</p>";
}
?>
</body>
</html>
编辑
尝试更改此内容
if (!empty($_POST['username']) && !empty($_POST['password'])) {
对此
if (!empty($_POST['usernamemail']) && !empty($_POST['password'])) {