How to send email verification code when user logs in in PHP

How to send an email verification code when a user logs in in PHP

In web development, users usually need to authenticate when logging in. In order to improve security, you can Verify users using email verification codes. This article will introduce in detail how to send an email verification code when a user logs in in PHP, and provide specific code examples.

1. Preparation
   First, we need an available SMTP server for sending emails. You can choose to purchase or use an SMTP service provided by a third party, or you can use a local SMTP server. Next, you need to prepare the following files:

1.1. config.php: used to store email configuration information, including SMTP server, port, email account, password, etc.
1.2. login.php: User login page.
1.3. send_verification_code.php: Processing file used to send email verification codes.
1.4. verify_code.php: Processing file used to verify email verification codes.

2. Implement the function of sending email verification code
   Next, we need to write code to implement the function of sending email verification code. In the send_verification_code.php file, you can follow the following steps:

2.1. Introduce the config.php file to obtain configuration information such as SMTP server and email account.
2.2. Generate a random verification code based on the email address entered by the user and save it in the session for subsequent verification.
2.3. Use the PHPMailer library to connect to the SMTP server and set the email account and password.
2.4. Set the email title, content, sender, recipient and other information.
2.5. Send email.

The following is a code example of the send_verification_code.php file:

<?php
require_once 'config.php';
require_once 'vendor/autoload.php';

use PHPMailerPHPMailerPHPMailer;
use PHPMailerPHPMailerException;

// 设置SMTP服务器和邮箱账号等配置信息
$smtpServer = $config['smtp_server'];
$smtpPort = $config['smtp_port'];
$smtpUser = $config['smtp_user'];
$smtpPassword = $config['smtp_password'];

// 生成随机验证码并保存到session
$verificationCode = rand(100000, 999999);
session_start();
$_SESSION['verification_code'] = $verificationCode;

// 使用PHPMailer发送验证码邮件
$mail = new PHPMailer(true);
try {
    // 配置SMTP服务器和账号信息
    $mail->isSMTP();
    $mail->Host = $smtpServer;
    $mail->Port = $smtpPort;
    $mail->SMTPAuth = true;
    $mail->Username = $smtpUser;
    $mail->Password = $smtpPassword;
    
    // 设置邮件内容和标题
    $mail->setFrom($smtpUser, 'Your Website Name');
    $mail->addAddress($_POST['email']);
    $mail->Subject = '邮箱验证码';
    $mail->Body = '您的验证码是：' . $verificationCode;
    
    // 发送邮件
    $mail->send();
    
    echo '验证码已发送至您的邮箱，请查收！';
} catch (Exception $e) {
    echo '发送邮件失败，请重试：' . $mail->ErrorInfo;
}

3. Implementing the verification code verification function
   In the verify_code.php file, we can write code to implement verification code verification Function. The specific steps are as follows:

3.1. First, obtain the verification code entered by the user and compare it with the verification code saved in the session.
3.2. If the verification code matches successfully, perform the login operation; otherwise, return an error message.

The following is a code example for the verify_code.php file:

<?php
session_start();
$verificationCode = $_SESSION['verification_code'];
$userVerificationCode = $_POST['verification_code'];

if ($userVerificationCode == $verificationCode) {
    // 验证码匹配成功，执行登录操作
    // 你可以在此处添加自己的登录逻辑，例如跳转到用户主页、设置登录状态等
    echo '登录成功！';
} else {
    // 验证码匹配失败，返回错误提示信息
    echo '验证码错误，请检查输入！';
}

4. Perfect user login page
   Finally, in the login.php file, we can write code to implement a complete user log in page. On this page, users need to enter their email address and verification code, and then click the login button to verify.

The following is a code example of the login.php file:

<!DOCTYPE html>
<html>
<head>
    <title>用户登录</title>
</head>
<body>
    <h1>用户登录</h1>
    <form action="verify_code.php" method="post">
        <label for="email">邮箱地址：</label>
        <input type="email" name="email" id="email" required><br><br>
    
        <label for="verification_code">验证码：</label>
        <input type="text" name="verification_code" id="verification_code" maxlength="6" required><br><br>
    
        <input type="submit" value="登录">
    </form>
</body>
</html>

Through the above steps, you can implement the function of sending an email verification code when the user logs in in PHP. After the user enters their email address on the login page, the system will automatically send a verification code to the corresponding email address. After the user enters the verification code again, the system will verify it. After successful verification, the user can log in. This method can improve the security of user login and prevent malicious login behavior from occurring.

The above is the detailed content of How to send email verification code when user logs in in PHP. For more information, please follow other related articles on the PHP Chinese website!