如主题所示,我是编程初学者,但我最近创建了一些目前对我来说还不错的代码(是的,有些事情搞砸了,但我会继续努力),所以我有普通的注册表单如下所示:
include 'modules/translator.php';
include 'includes/database.php';
include 'includes/header.php';
echo '<div id="regbox">
<ul>
<li><a href="registration.php" class="rbutton" onclick="return regboxr();">'. $LANG['REGISTER'] .'</a></li>
<li><a href="login.php" class="sbutton" onclick="return regboxs();">'. $LANG['SIGNIN'] .'</a></li>
</ul>
<form action="registration_action.php" method="post" autocomplete="off">
<div class="input-w"><label for="name"><img src="theme/original/images/user.png"/></label><input type="text" name="regname" placeholder="'. $LANG['NAME'] .'"class="input"></div>
<div class="input-w"><label for="surname"><img src="theme/original/images/surname.png"/></label><input type="text" name="regsurname" placeholder="'. $LANG['SURNAME'] .'"class="input"></div>
<div class="input-w"><label for="nickname"><img src="theme/original/images/nick.png"/></label><input type="text" name="regnickname" placeholder="'. $LANG['NICKNAME'] .'"class="input"></div>
<div class="input-w"><label for="email"><img src="theme/original/images/email.png"/></label><input type="text" name="regemail" placeholder="'. $LANG['EMAIL'] .'"class="input"></div>
<div class="input-w"><label for="pass"><img src="theme/original/images/password.png"/></label><input type="password" name="regpass" placeholder="'. $LANG['PASSWORD'] .'"class="input"></div>
<div class="input-w"><label for="rpass"><img src="theme/original/images/rpassword.png"/></label><input type="password" name="regrpass" placeholder="'. $LANG['RPASSWORD'] .'"class="input"></div>
<div class="registerholder"><input type="submit" class="register" value="'.$LANG['REGISTER_SUBMIT'].'"></div>
</form>
</div>';
include 'includes/footer.php';
这是检查错误的文件(例如,如果电子邮件格式正确),如果没有错误,则应将数据插入数据库:
/*Include translating module,database settings,
functions needed to prepare data from form,
to insert them into database and user interface header.*/
include 'modules/translator.php';
include 'includes/database.php';
include 'includes/functions.php';
include 'includes/header.php';
/*Variables including data from registration.php form.*/
$name=$_POST[regname];
$surname=$_POST[regsurname];
$nickname=$_POST[regnickname];
$email=$_POST[regemail];
$password=$_POST[regpass];
$rpassword=$_POST[regrpass];
/*Variable used to count errors occured during registration process.*/
$errorcounter=0;
/*Variables used to display errors that occured during registration process.*/
$errornameset='';
$errorname='';
$errornamelength='';
$errorsurnameset='';
$errorsurname='';
$errorsurnamelength='';
$errornicknameset='';
$errornickname='';
$errornicknamelength='';
$erroremailset='';
$erroremail='';
$errorpasswordset='';
$errorpassword='';
$errorpasswordlength='';
$errorpasswordcomparison='';
$registrationset1='';
$registrationset2='';
$errordbconnection='';
if(empty($name)){
$errorcounter++;
$errornameset='•' . $LANG['ERR_REG_NAME_SET'] . '<br>';
}
elseif(!preg_match('/^[A-ZĄĆĘŁŃÓŚŹŻ][a-ząćęłńóśźż]{2,}$/', $name)){
$errorcounter++;
$errorname='•' . $LANG['ERR_REG_NAME_CHAR'] . '<br>';
}
elseif(strlen($name)<3 || strlen($name)>16){
$errorcounter++;
$errornamelength='•' . $LANG['ERR_REG_NAME_LENGTH'] . '<br>';
}
if(empty($surname)){
$errorcounter++;
$errorsurnameset='•' . $LANG['ERR_REG_SURNAME_SET'] . '<br>';
}
elseif(!preg_match('/^[A-ZĄĆĘŁŃÓŚŹŻ][a-ząćęłńóśźż]{2,}$/', $surname)){
$errorcounter++;
$errorsurname='•' . $LANG['ERR_REG_SURNAME_CHAR'] . '<br>';
}
elseif(strlen($surname)<3 || strlen($surname)>32){
$errorcounter++;
$errorsurnamelength='•' . $LANG['ERR_REG_SURNAME_LENGTH'] . '<br>';
}
if(empty($nickname)){
$errorcounter++;
$errornicknameset='•' . $LANG['ERR_REG_NICKNAME_SET'] . '<br>';
}
elseif(!preg_match('/^[A-Za-z0-9]{6,}$/', $nickname)){
$errorcounter++;
$errornickname='•' . $LANG['ERR_REG_NICKNAME_CHAR'] . '<br>';
}
elseif(strlen($nickname)<3 || strlen($nickname)>12){
$errorcounter++;
$errornicknamelength='•' . $LANG['ERR_REG_NICKNAME_LENGTH'] . '<br>';
}
if(empty($email)){
$errorcounter++;
$erroremailset='•' . $LANG['ERR_REG_EMAIL_SET'] . '<br>';
}
elseif(!preg_match('/^[A-Za-z0-9\.\-\_]{2,}\@[A-Za-z0-9\.\-\_]+\.[a-z]{2,4}$/', $email)){
$errorcounter++;
$erroremail='•' . $LANG['ERR_REG_EMAIL_CHAR'] . '<br>';
}
if(empty($password) || empty($rpassword)){
$errorcounter++;
$errorpasswordset='•' . $LANG['ERR_REG_PASSWORD_SET'] . '<br>';
}
elseif(!preg_match('/^[A-Za-z0-9\.\-_@#]{6,}$/', $password)){
$errorcounter++;
$errorpassword='•' . $LANG['ERR_REG_PASSWORD_CHAR'] . '<br>';
}
elseif(strlen($password)<6 || strlen($password)>32){
$errorcounter++;
$errorpasswordlength='•' . $LANG['ERR_REG_PASSWORD_LENGTH'] . '<br>';
}
elseif($password !== $rpassword){
$errorcounter++;
$errorpasswordcomparison='•' . $LANG['ERR_REG_PASSWORD_COMPARISON'] . '<br>';
}
if($errorcounter==1){
echo '<div class="warning"><div class="wimg"><img src="theme/original/images/warning.png"/></div><div class="wheaderc"><span class="wheader">'. $LANG['ERR_REG_COUNT_MESSAGE'] . $errorcounter . $LANG['ERR_REG_COUNT_1'] . '</span></div><div class="wspacer"></div><div class="errors">' .
$errornameset .
$errorname .
$errornamelength .
$errorsurnameset .
$errorsurname .
$errorsurnamelength .
$errornicknameset .
$errornickname .
$errornicknamelength .
$erroremailset .
$erroremail .
$errorpasswordset .
$errorpassword .
$errorpasswordlength .
$errorpasswordcomparison .
'</div><div class="aspacer"></div><a href="registration.php" class="reglink">' . $LANG['REG_FIX'] . '</a></div>';
}
elseif($errorcounter>1 && $errorcounter<5){
echo '<div class="warning"><div class="wimg"><img src="theme/original/images/warning.png"/></div><div class="wheaderc"><span class="wheader">'. $LANG['ERR_REG_COUNT_MESSAGE'] . $errorcounter . $LANG['ERR_REG_COUNT_1_5'] . '</span></div><div class="wspacer"></div><div class="errors">' .
$errornameset .
$errorname .
$errornamelength .
$errorsurnameset .
$errorsurname .
$errorsurnamelength .
$errornicknameset .
$errornickname .
$errornicknamelength .
$erroremailset .
$erroremail .
$errorpasswordset .
$errorpassword .
$errorpasswordlength .
$errorpasswordcomparison .
'</div><div class="aspacer"></div><a href="registration.php" class="reglink">' . $LANG['REG_FIX'] . '</a></div>';
}
elseif($errorcounter>4){
echo '<div class="warning"><div class="wimg"><img src="theme/original/images/warning.png"/></div><div class="wheaderc"><span class="wheader">'. $LANG['ERR_REG_COUNT_MESSAGE'] . $errorcounter . $LANG['ERR_REG_COUNT_4'] . '</span></div><div class="wspacer"></div><div class="errors">' .
$errornameset .
$errorname .
$errornamelength .
$errorsurnameset .
$errorsurname .
$errorsurnamelength .
$errornicknameset .
$errornickname .
$errornicknamelength .
$erroremailset .
$erroremail .
$errorpasswordset .
$errorpassword .
$errorpasswordlength .
$errorpasswordcomparison .
'</div><div class="aspacer"></div><a href="registration.php" class="reglink">' . $LANG['REG_FIX'] . '</a></div>';
}
else{
$group=1;
$token=md5(uniqid(rand(), true));
$connection=mysqli_connect(db_server, db_user, db_password, db_name);
$regquery="INSERT INTO users (name, surname, nickname, e-mail, password, group, token) VALUES ('".$name."', '".$surname."', '".$nickname."', '".$email."', '".$password."', '".$group."', '".$token."')";
if(mysqli_query($connection, $regquery)){
echo '<div class="alert"><div class="wimg"><img src="theme/original/images/alert.png"/></div><div class="aheaderc"><span class="aheader">'. $LANG['REG_COMPLETED_HEADER'] .'</span></div><div class="wspacer"></div><div class="alertm">' .
$registrationset1=$LANG['REG_COMPLETED_MESSAGE_1'] . $email . "." . $registrationset2=$LANG['REG_COMPLETED_MESSAGE_2'] .
'</div><div class="aspacer"></div><a href="index.php" class="mainlink">' . $LANG['REG_MAIN'] . '</a></div>';
mysqli_close($connection);
}
else{
echo '<div class="warning"><div class="wimg"><img src="theme/original/images/warning.png"/></div><div class="wheaderc"><span class="wheader">'. $LANG['DB_ERR_HEADER'] . '</span></div><div class="wspacer"></div><div class="errors">' .
$errordbconnection = $LANG['DB_ERR_CONNECTION'] .
'</div><div class="dbspacer"></div><a href="registration.php" class="reglink">' . $LANG['REG_FIX'] . '</a></div>';
}
}
include 'includes/footer.php';
就是这样。另外,我可以说我检查了该文件中的连接是否正常工作并且测试结果为阳性。我猜还有一件事,在带有警告类的 div 中,一切都是负面的,而在带有警报类的 div 中,一切都是正面的。我的脚本打印负数div,这意味着没有记录插入数据库(我在phpmyadmin中检查过,没有记录)。我尝试了一切,包括重建我的代码,但这不起作用。MySQL改进可在我的托管服务中使用。任何想法亲爱的程序员?感谢您的宝贵时间并等待,希望得到好的答案。 :)
最佳答案
您正在使用的查询字符串
INSERT INTO users (name, surname, nickname, e-mail, password, group, token) VALUES ...
在 MySQL 中无法正常工作。原因是 e-mail(不带引号)不是有效的列名称,而 group 是关键字。所以查询不会被解析。两个列名都需要用反引号括起来,以便 MySQL 实际上将它们视为列名:
INSERT INTO users (name, surname, nickname, `e-mail`, password, `group`, token) VALUES ...
您绝对应该打开错误报告,因为这可能已经揭示了此错误(以及脚本中的其他错误)。此外,正如有人已经指出的那样,您的脚本肯定容易受到 SQL 注入(inject)的攻击,您应该关心它。
关于php - 无法从 MySQL 中的 post 数组插入数据,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/29609038/