Having issue getting id in url and login
Hi
I have built a sign up form which works perfect and a login form that works perfect but if I try to add the id number into the url using php, it makes the login form load the same page and not redirect to the profile page, below is the code I have on the login form processing page
I put error reporting in and is not displaying any errors so is one good thingPHP Code:<?php
ob_start();
session_start();
$username = $_POST['username'];
$password = $_POST['password'];
$_SESSION['username'] = $username;
$conn = mysqli_connect('localhost', 'xxxx', 'xxxx', 'xxxx');
$id=$_GET['id'];
$username = mysqli_real_escape_string($conn, $username);
$query = "SELECT password, salt
FROM recruiters
WHERE username = '$username' AND id=$id;";
$result = mysqli_query($conn, $query);
if(mysqli_num_rows($result) == 0) // User not found. So, redirect to login_form again.
{
header('Location: recruiter-login.php');
}
$userData = mysqli_fetch_array($result, MYSQL_ASSOC);
$hash = hash('sha256', $userData['salt'] . hash('sha256', $password) );
if($hash != $userData['password']) // Incorrect password. So, redirect to login_form again.
{
header('Location: recruiter-login.php');
}else{ // Redirect to home page after successful login.
header('Location: recruiter-profile.php?id=$id');
}
?>
If I take out AND id=$id from the sql query, the login works and logs me in
Hope someone can help
Thank you in advance
Ian
CSS Codes
Reply With Quote
Originally Posted by Beverleyh
Bookmarks