在php

时间:2016-10-06 10:01:42

标签: php validation passwords password-confirmation

我们正在使用以下代码进行“注册”。我们只有密码字段,我们要添加确认密码字段。

signup.php 

if(isset($_POST['btn-signup']))
{
    $uname = trim($_POST['txtuname']);
    $email = trim($_POST['txtemail']);
    $upass = trim($_POST['txtpass']);
    $code = md5(uniqid(rand()));

    $stmt = $reg_user->runQuery("SELECT * FROM tbl_users WHERE userEmail=:email_id");
    $stmt->execute(array(":email_id"=>$email));
    $row = $stmt->fetch(PDO::FETCH_ASSOC);

    if($stmt->rowCount() > 0)
    {
        $msg = "
              email allready exists 
              ";
    }
    else
    {
        if($reg_user->register($uname,$email,$upass,$code))
        {           
            $id = $reg_user->lasdID();      
            $key = base64_encode($id);
            $id = $key;

            $message = "                    
                        some message";

            $subject = "Confirm Registration";

            $reg_user->send_mail($email,$message,$subject); 
            $msg = "
                    some message
                    ";
        }
        else
        {
            echo "sorry , Query could no execute...";
        }       
    }
}

class.usr.php 

public function register($uname,$email,$upass,$code)
    {
        try
        {                           
            $password = md5($upass);
            $stmt = $this->conn->prepare("INSERT INTO tbl_users(userName,userEmail,userPass,tokenCode) 
                                                         VALUES(:user_name, :user_mail, :user_pass, :active_code)");
            $stmt->bindparam(":user_name",$uname);
            $stmt->bindparam(":user_mail",$email);
            $stmt->bindparam(":user_pass",$password);
            $stmt->bindparam(":active_code",$code);
            $stmt->execute();   
            return $stmt;
        }
        catch(PDOException $ex)
        {
            echo $ex->getMessage();
        }
    }

我尝试添加以下代码,但它对我没用。

$cpass = trim($_POST['txtpass']);

/ *如果声明* / 

elseif($pass != $cpass){
             $msg = "passwords doesn't match";
        }

也试过class.usr.php档案,但没有运气.....

1 个答案:

答案 0 :(得分:1)

First of all you have not mentioned confirm password field. 
Lets assume your confirm password field is "txtConfirmPass"

Before redirect to register function need to check password and confirm password like

$upass = trim($_POST['txtpass']);
$uConfirmPass = trim($_POST['txtConfirmPass']);

if($upass != $uConfirmPass){

    // Password not match your code here
}else{
    if($reg_user->register($uname,$email,$upass,$code)){           
        $id = $reg_user->lasdID();      
        $key = base64_encode($id);
        $id = $key;

        $message = "some message";

        $subject = "Confirm Registration";

        $reg_user->send_mail($email,$message,$subject); 
        $msg = "some message";
    }
    else
    {
        echo "sorry , Query could no execute...";
    }
}

Hopefully it help you out.
相关问题
最新问题