How to use PHP and email verification to implement a secure login and registration system?-PHP Tutorial-php.cn

Home

Backend Development

PHP Tutorial

How to use PHP and email verification to implement a secure login and registration system?

WBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWB

Aug 18, 2023 pm 05:45 PM

phpE-mail verificationLog in to the registration system

How to use PHP and email verification to implement a secure login and registration system?

With the development of the Internet, more and more information and services require users to log in to access. In order to ensure user security, we can implement a secure login and registration system through email verification. This article will introduce how to implement such a system using PHP and email verification.

1. Implementation of registration function

Create database and tables

First, we need to create a database named "users" and add it in Create a table named "users". The structure of the table is as follows:

CREATE TABLE users (
id int(11) UNSIGNED AUTO_INCREMENT PRIMARY KEY,
username varchar(255) NOT NULL,
email varchar(255) NOT NULL,
password varchar(255) NOT NULL,
code varchar(255) NOT NULL,
active tinyint(1) NOT NULL DEFAULT '0'
);

Registration page

Create a page named "register.php", which is used to display the registration form for users to fill in.

<form method="post" action="">
  <input type="text" name="username" placeholder="用户名" required><br>
  <input type="email" name="email" placeholder="邮箱" required><br>
  <input type="password" name="password" placeholder="密码" required><br>
  <input type="submit" name="register" value="注册">
</form>

Registration logic

Add the following PHP code in the "register.php" page to handle the user's registration request.

if (isset($_POST['register'])) {
  $username = $_POST['username'];
  $email = $_POST['email'];
  $password = $_POST['password'];
  $code = md5(uniqid(rand()));

  $insert_query = "INSERT INTO users (username, email, password, code) 
                   VALUES ('$username', '$email', '$password', '$code')";
  mysqli_query($connection, $insert_query);

  $to = $email;
  $subject = "验证您的邮箱";
  $message = "点击以下链接验证您的邮箱：

";
  $message .= "https://example.com/verify.php?email=$email&code=$code";
  $headers = "From: example@example.com";

  mail($to, $subject, $message, $headers);

  echo "请检查您的邮箱以完成注册。";
}

The above code will insert the registration information filled in by the user into the database, generate a unique verification code, and send it to the user via email for verification.

2. Implementation of the login function

Create a page named "login.php", which is used to display the login The form is filled out by the user.

<form method="post" action="">
  <input type="email" name="email" placeholder="邮箱" required><br>
  <input type="password" name="password" placeholder="密码" required><br>
  <input type="submit" name="login" value="登录">
</form>

Add the following PHP code in the "login.php" page to handle the user's login request.

if (isset($_POST['login'])) {
  $email = $_POST['email'];
  $password = $_POST['password'];

  $login_query = "SELECT * FROM users WHERE email='$email' AND password='$password' AND active='1'";
  $result = mysqli_query($connection, $login_query);

  if (mysqli_num_rows($result) == 1) {
    echo "登录成功！";
  } else {
    echo "登录失败，请检查您的邮箱和密码。";
  }
}

The above code will query the database to see if there is a user matching the email address and password filled in by the user, and the user's account has been verified by email.

3. Implementation of email verification function

Verification page

Create a page named "verify.php", which is used for verification The user's email address.

<?php
$email = $_GET['email'];
$code = $_GET['code'];

$update_query = "UPDATE users SET active='1' WHERE email='$email' AND code='$code'";
mysqli_query($connection, $update_query);

echo "您的邮箱已通过验证，现在可以登录了！";
?>

The above code will update the "active" field of the corresponding user column in the database to 1, indicating that the email has been verified.

Through the above steps, we have implemented a safe and reliable login and registration system. Users need to fill in the correct email address when registering, and verify by clicking on the link in the email to complete the registration. When logging in, it will also be checked whether the user's email has been verified. This method can effectively prevent malicious registration and login operations and improve system security.

The above is the method and sample code introduced in this article to implement a secure login and registration system using PHP and email verification. Hope this helps!

The above is the detailed content of How to use PHP and email verification to implement a secure login and registration system?. For more information, please follow other related articles on the PHP Chinese website!

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

php怎么把负数转为正整数Apr 19, 2022 pm 08:59 PM

php把负数转为正整数的方法：1、使用abs()函数将负数转为正数，使用intval()函数对正数取整，转为正整数，语法“intval(abs($number))”；2、利用“~”位运算符将负数取反加一，语法“~$number + 1”。

php怎么除以100保留两位小数Apr 22, 2022 pm 06:23 PM

php除以100保留两位小数的方法：1、利用“/”运算符进行除法运算，语法“数值 / 100”；2、使用“number_format(除法结果, 2)”或“sprintf("%.2f",除法结果)”语句进行四舍五入的处理值，并保留两位小数。

php怎么根据年月日判断是一年的第几天Apr 22, 2022 pm 05:02 PM

判断方法：1、使用“strtotime("年-月-日")”语句将给定的年月日转换为时间戳格式；2、用“date("z",时间戳)+1”语句计算指定时间戳是一年的第几天。date()返回的天数是从0开始计算的，因此真实天数需要在此基础上加1。

在golang中使用正则表达式验证邮箱地址的方法Jun 24, 2023 am 09:16 AM

在golang中使用正则表达式验证邮箱地址的方法Golang是一门功能强大、易学易用的编程语言，它支持内置的正则表达式库，可以轻松实现对邮箱地址的验证。本文将介绍如何使用golang内置的正则表达式库进行邮箱地址的验证。正则表达式验证邮箱地址的基本思路如下：邮箱地址由用户名和域名组成用户名可以包含字母、数字、下划线、点，但是不能以点或下划线结尾，且连续的点不

PHP中实现邮箱验证登录注册功能的详细步骤解析Aug 27, 2023 am 08:21 AM

PHP中实现邮箱验证登录注册功能的详细步骤解析在现代互联网应用中，邮箱验证成为了常见的注册和登录方式之一。PHP作为一种广泛应用的编程语言，为我们提供了许多方便实现邮箱验证功能的工具和方法。本文将为您详细介绍在PHP中实现邮箱验证登录注册功能的步骤，并附上相应的代码示例。一、注册模块创建数据库表首先，我们需要在数据库中创建一个用户表，用于存储用户的注册信息。