<分区>
所以我试图让用户输入的密码在存储在我的数据库中时被加密。使用 BCRYPT 我可以做到这一点,但是现在加密存储在数据库中,用户无法使用他们选择的密码登录。 有没有人有任何建议我将如何继续这件事?
感谢任何形式的帮助!
提前致谢!
Register.php page below
<?php
require 'C:\wamp\www/projekt/connections.php';
if(isset($_POST['submit'])) {
session_start();
$fname = $_POST['firstname'];
$lname = $_POST['lastname'];
$uname = $_POST['username'];
$pwd = $_POST['password'];
$hashedpassword = password_hash($pwd, PASSWORD_DEFAULT);
$sql = $con->query("INSERT INTO users (FirstName, LastName, UserName, Password)VALUES('{$fname}', '{$lname}', '{$uname}', '{$hashedpassword}')");
if (password_verify($pwd, $hashedpassword)) {
header('Location: login.php');
}
}
?>
----------------------------------------------------------
login.php page below
<?php
$con = mysqli_connect("localhost","root","","userreg");
if(isset($_POST['login'])){
$uname = mysqli_real_escape_string($con,$_POST['Username']);
$pwd = mysqli_real_escape_string($con,$_POST['Password']);
$sel_user = "select * from users where UserName='$uname' AND Password='$pwd'";
$run_user = mysqli_query($con, $sel_user);
$check_user = mysqli_num_rows($run_user);
if($check_user>0){
$_SESSION['UserName']=$uname;
echo "<script>window.open('startpage.php','_self')</script>";
}
else {
echo "<script>alert('Username or password is not correct, try again!')</script>";
}
}
?>