check user and pass with mysql

Question

0.00/5 (No votes)

See more:

i give "0" for output
how i can understand the user o pass is correct or not?

C#

$user_name=$_POST['user_name'];
$password=md5($_POST['password']);
$con=mysql_connect("localhost","root","22646146");

mysql_select_db("bs",$con);
$query="select* from login  where user_name='$user_name' and password='$password'  LIMIT 1"; 
$result= mysql_query($query);

if($result)
{
     $num_rows=mysql_num_rows($result);
     echo $num_rows ;
}
else
{
     echo mysql_error();
}
?>

Posted 13-Aug-13 1:15am

mahla_rht

Updated 13-Aug-13 1:25am

Thanks7872

v3

Add a Solution

Comments

Jitendra Sabat 13-Aug-13 10:31am

What is your objective?Whether you are trying to verify password for a particular user or what?Please clarify your question.

thanh_bkhn 13-Aug-13 10:42am

Use echo to write down your SQL string, and paste into phpMyAdmin, then see the result, you can know if your log in information is correct or not.

2 solutions

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

max_nowak · Answer 1 · 2013-08-13T03:39:00

Well, if mysql_num_rows returns a value greater 0 then your sqlquery apparently has found a matching record in the database and therefore the password must be correct.

(btw. do NOT store any password in clear text in the database. Better solution is i.e. to store the md5 of it and then compare the md5 of the entered password with it).

Jitendra Sabat · Answer 2 · 2013-08-13T05:03:00

I guess, you are willing to check the encrypted password stored in database with md5 encryption is the one you are providing from user interface.I i am correct,then follow my code.

PHP

$user_name=$_POST['user_name'];
$rawpassword=$_POST['password'];
$password=md5($_POST['password']);
echo ("Entered password from user is:"+$rawpassword);
echo ("Entered password from user in encrypted form is:"+$password);
$con=mysql_connect("localhost","root","22646146");

mysql_select_db("bs",$con);
$query="select password from login  where user_name='$user_name' and password='$password'  LIMIT 1";
$result= mysql_query($query);
$finalObject=mysql_fetch_object($result);


if($finalObject.password == $password)
{
     echo "Password verified" ;
}
else
{
     echo "Password entered is wrong";
}
?>

check user and pass with mysql

2 solutions

Solution 1

Solution 2

Add your solution here

Preview 0