用 php 及 SQL 实现简单的注册及登录效果-PHP Tutorial-php.cn

Home

Backend Development

PHP Tutorial

用 php 及 SQL 实现简单的注册及登录效果

WBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWB

Jun 20, 2016 pm 12:26 PM

说明：

本方法只是进行基本的原理讲解，并不可用做实际项目运用。
在阅读本方法前应阅读：PHP:注册信息存储/登录信息验证基本原理，一些重复操作将不再注明。
系统运行环境应已调试完毕，可进行数据库操作。

一. 注册功能

1. HTML（register.html）

<!DOCTYPE html><html> <head>  <meta charset="UTF-8">  <title>Register</title> </head> <body>  <form action="registerHandler.php" method="post">   注册用户：<input type="text" name="user"/><br>   注册密码：<input type="text" name="pass"/><br>   <input type="submit" value="注册"/>  </form> </body></html>

2. php（registerHandler.php）

首先应进行数据库的创建，下面代码在创建完成后删除即可，否则反复创建，会反复提示创建失败，影像使用效果。

<?php $result = mysql_query("create database `sqlTest` character set 'utf8' collate 'utf8_general_ci' "); if ($result) echo "创建成功"; else echo "创建失败" . $result;?>

<?php header("Content-type:text/html;charset=utf-8"); $user = $_POST["user"]; $pass = $_POST["pass"]; $link = mysql_connect("localhost", "root"); // 先选择了这个数据库进行操作 mysql_select_db("N_&_P", $link); // 创建表 $result = mysql_query("create table if not exists `N_&_P` (username  varchar(255) primary key, password text) default charset=utf8", $link); mysql_query("set names utf8", $link); if ($result) {  echo "成功";  $r = mysql_query("insert into `N_&_P` values ('{$user}', '{$pass}')");  if ($r) echo "成功" . "<hr>";  else echo "失败" . "<hr>"; }?>

通过以上代码，多次输入可在表单 N_&_Q 中创建如图的数据待登录时可做验证使用

二. 登录功能

<!DOCTYPE html><html> <head>  <meta charset="UTF-8">  <title>Register</title> </head> <body>  <form action="loginHandler.php" method="post">   登录用户：<input type="text" name="user"/><br>   登录密码：<input type="text" name="pass"/><br>   <input type="submit" value="登录"/>  </form> </body></html>

2. php（loginHandler.php）

<?php header("Content-type:text/html;charset=utf-8"); $user = $_POST["user"]; $pass = $_POST["pass"]; $link = mysql_connect("localhost", "root"); mysql_select_db("N_&_P", $link); $re = mysql_query("select * from `N_&_P` where username = '{$user}' and password = '{$pass}'"); $obj = mysql_fetch_object($re); if ($obj) echo "登录成功了！"; else echo "登录失败了！";?>

三. 代码解释

在这里放一整段 php 与 SQL 协同对数据库操作的代码，包含用到的代码解释。与上文无直接关系。

<?phpheader("Content-type:text/html;charset=utf-8");// 数据库操作// 1. 打开数据库，进行数据库链接// 参数1： 数据库的位置：localhost// 参数2：默认的用户名：root 还有密码，因为是默认的，所以没有密码$link = mysql_connect("localhost", "root");//// 2. 创建数据库// 使用 SQL 语句，进行创建数据库sqlTest，并且选取了不能出现乱码的字符集// 只有第一次创建是成功的，再刷新就是失败的，因为已经有重名数据库了// 已经创建完了，就给注了，不然来会提示创建失败也是很烦人的//$result = mysql_query("create database `sqlTest` character set 'utf8' collate 'utf8_general_ci' ");//if ($result) {// echo "创建成功";//} else {// echo "创建失败" . $result;//}////// 选择数据库// 不填也可以，语句会选最近的进行选择，但是不推荐mysql_select_db("sqlTest", $link);// 创建表 text不可以设置为主键// 在数据库中，执行 sql 语句，创建表$result = mysql_query("create table if not exists `AAA` (id integer primary key,name text) default charset=utf8", $link);// 将所有列和内容的字符集设置为 utf8mysql_query("set names utf8", $link);if ($result) { echo "成功"; $r = mysql_query("insert into `AAA` values (1, 'aa')"); if ($r) {  echo "成功" . "<hr>"; } else {  echo "失败" . "<hr>"; } // 查询语句(select) $re = mysql_query("select * from `AAA`"); // mysql_fetch_object($result); // 每次都从结果中取出一条数据（对象的形式） // mysql_fetch_array($result); // 以数组的形式（索引和关联） while ($obj = mysql_fetch_object($re)) {  // 每次取出一个对象  var_dump($obj);  echo '<hr>'; }} else { echo "失败";}// 如果要让文本类型当主键，必须要指定文本的长度// 推荐适用类型：vasrchar// sql 举例：// create table xxx(username varchar(255) primary key);?>

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

How can you protect against Cross-Site Scripting (XSS) attacks related to sessions?Apr 23, 2025 am 12:16 AM

To protect the application from session-related XSS attacks, the following measures are required: 1. Set the HttpOnly and Secure flags to protect the session cookies. 2. Export codes for all user inputs. 3. Implement content security policy (CSP) to limit script sources. Through these policies, session-related XSS attacks can be effectively protected and user data can be ensured.

How can you optimize PHP session performance?Apr 23, 2025 am 12:13 AM

Methods to optimize PHP session performance include: 1. Delay session start, 2. Use database to store sessions, 3. Compress session data, 4. Manage session life cycle, and 5. Implement session sharing. These strategies can significantly improve the efficiency of applications in high concurrency environments.

What is the session.gc_maxlifetime configuration setting?Apr 23, 2025 am 12:10 AM

Thesession.gc_maxlifetimesettinginPHPdeterminesthelifespanofsessiondata,setinseconds.1)It'sconfiguredinphp.iniorviaini_set().2)Abalanceisneededtoavoidperformanceissuesandunexpectedlogouts.3)PHP'sgarbagecollectionisprobabilistic,influencedbygc_probabi

How do you configure the session name in PHP?Apr 23, 2025 am 12:08 AM

In PHP, you can use the session_name() function to configure the session name. The specific steps are as follows: 1. Use the session_name() function to set the session name, such as session_name("my_session"). 2. After setting the session name, call session_start() to start the session. Configuring session names can avoid session data conflicts between multiple applications and enhance security, but pay attention to the uniqueness, security, length and setting timing of session names.

How often should you regenerate session IDs?Apr 23, 2025 am 12:03 AM

The session ID should be regenerated regularly at login, before sensitive operations, and every 30 minutes. 1. Regenerate the session ID when logging in to prevent session fixed attacks. 2. Regenerate before sensitive operations to improve safety. 3. Regular regeneration reduces long-term utilization risks, but the user experience needs to be weighed.

How do you set the session cookie parameters in PHP?Apr 22, 2025 pm 05:33 PM

Setting session cookie parameters in PHP can be achieved through the session_set_cookie_params() function. 1) Use this function to set parameters, such as expiration time, path, domain name, security flag, etc.; 2) Call session_start() to make the parameters take effect; 3) Dynamically adjust parameters according to needs, such as user login status; 4) Pay attention to setting secure and httponly flags to improve security.

What is the main purpose of using sessions in PHP?Apr 22, 2025 pm 05:25 PM

The main purpose of using sessions in PHP is to maintain the status of the user between different pages. 1) The session is started through the session_start() function, creating a unique session ID and storing it in the user cookie. 2) Session data is saved on the server, allowing data to be passed between different requests, such as login status and shopping cart content.

How can you share sessions across subdomains?Apr 22, 2025 pm 05:21 PM

How to share a session between subdomains? Implemented by setting session cookies for common domain names. 1. Set the domain of the session cookie to .example.com on the server side. 2. Choose the appropriate session storage method, such as memory, database or distributed cache. 3. Pass the session ID through cookies, and the server retrieves and updates the session data based on the ID.

See all articles