如何将我的用户和管理员重定向到不同的页面

xpszyzbs  于 2021-06-18  发布在  Mysql
关注(0)|答案(2)|浏览(367)

如何重定向我的用户和管理员到不同的页面,我尝试使用不同的在线方法,但没有工作。如果你能帮我找出代码中的错误,我会很高兴的。谢谢
检查代码并帮助我解决我得到的错误
在成功登录到管理员或成员页面后,我正在尝试重定向用户。我只能将所有用户重定向到特定页面(“location:./admin/index.php”);但无法设置管理员用户重定向到管理页

session_start();
    // Change this to your connection info.
    $DB_HOST = 'localhost';
    $DB_USER = 'root';
    $DB_PASS = '';
    $DB_NAME = 'schoolexamdatabase';

    // Try and connect using the info above.
        $con = mysqli_connect($DB_HOST, $DB_USER, $DB_PASS, $DB_NAME);
        if ( mysqli_connect_errno() ) {
            // If there is an error with the connection, stop the script and display the error.
            die ('Failed to connect to MySQL: ' . mysqli_connect_error());
        }
// Now we check if the data was submitted, isset will check if the data exists.
if ( !isset($_POST['username'], $_POST['password']) ) {
    // Could not get the data that should have been sent.
    die ('Username and/or password does not exist!');
}
// Prepare our SQL 
if ($stmt = $con->prepare('SELECT id, password FROM accounts WHERE username = ?')) {
    // Bind parameters (s = string, i = int, b = blob, etc), hash the password using the PHP password_hash function.
    $stmt->bind_param('s', $_POST['username']);
    $stmt->execute(); 
    $stmt->store_result(); 

    // Store the result so we can check if the account exists in the database.
    if ($stmt->num_rows > 0) {
        $stmt->bind_result($id, $password);
        $stmt->fetch();      
        // Account exists, now we verify the password.
        if (password_verify($_POST['password'], $password)) {
            // Verification success! User has loggedin!
            $_SESSION['loggedin'] = TRUE;
            $_SESSION['name'] = $_POST['username'];
            $_SESSION['id'] = $id;

        } else {

                      header ("Location: ./admin/index.php");
        }

    } else {
        echo 'Incorrect username and/or password!';
    }
    $stmt->close();
} else {
    echo 'Could not prepare statement!';
}
?>   `
qvsjd97n

qvsjd97n1#

终于得到了。。。。。。我删除$status的if语句,并在登录验证结束时粘贴。检查我以前的代码。
以前的

session_start();
    // Change this to your connection info.
    $DB_HOST = 'localhost';
    $DB_USER = 'root';
    $DB_PASS = '';
    $DB_NAME = 'schoolexamdatabase';

    // Try and connect using the info above.
        $con = mysqli_connect($DB_HOST, $DB_USER, $DB_PASS, $DB_NAME);
        if ( mysqli_connect_errno() ) {
            // If there is an error with the connection, stop the script and display the error.
            die ('Failed to connect to MySQL: ' . mysqli_connect_error());
        }
// Now we check if the data was submitted, isset will check if the data exists.
if ( !isset($_POST['username'], $_POST['password']) ) {
    // Could not get the data that should have been sent.
    die ('Username and/or password does not exist!');
}
// Prepare our SQL 
if ($stmt = $con->prepare('SELECT id, password FROM accounts WHERE username = ?')) {
    // Bind parameters (s = string, i = int, b = blob, etc), hash the password using the PHP password_hash function.
    $stmt->bind_param('s', $_POST['username']);
    $stmt->execute(); 
    $stmt->store_result(); 

    // Store the result so we can check if the account exists in the database.
    if ($stmt->num_rows > 0) {
        $stmt->bind_result($id, $password);
        $stmt->fetch();      
        // Account exists, now we verify the password.
        if (password_verify($_POST['password'], $password)) {
            // Verification success! User has loggedin!
            $_SESSION['loggedin'] = TRUE;
            $_SESSION['name'] = $_POST['username'];
            $_SESSION['id'] = $id;

        } else {

                      header ("Location: ./admin/index.php");
        }

    } else {
        echo 'Incorrect username and/or password!';
    }
    $stmt->close();
} else {
    echo 'Could not prepare statement!';
}
?>

更新:像魔术一样工作
感谢所有贡献@haim@funk四十九的人
谢谢你们

<?php
    session_start();
    // Change this to your connection info.
    $DB_HOST = 'localhost';
    $DB_USER = 'root';
    $DB_PASS = '';
    $DB_NAME = 'schoolexamdatabase';

    // Try and connect using the info above.
    $con = mysqli_connect($DB_HOST, $DB_USER, $DB_PASS, $DB_NAME);
    if ( mysqli_connect_errno() ) {
        // If there is an error with the connection, stop the script and display the error.
        die ('Failed to connect to MySQL: ' . mysqli_connect_error());
    }

    // Now we check if the data was submitted, isset will check if the data exists.
    if ( !isset($_POST['username'], $_POST['password']) ) {
        // Could not get the data that should have been sent.
        die ('Username and/or password does not exist!');
    }

    // Prepare our SQL 
    if ($stmt = $con->prepare('SELECT id, password, status FROM accounts WHERE username = ?')) {
    // Bind parameters (s = string, i = int, b = blob, etc), hash the password using the PHP password_hash function.
    $stmt->bind_param('s', $_POST['username']);
    $stmt->execute(); 
    $stmt->store_result(); 

    // Store the result so we can check if the account exists in the database.
    if ($stmt->num_rows > 0) {
        $stmt->bind_result($id, $password, $status);
        $stmt->fetch();      
        // Account exists, now we verify the password.
        if (password_verify($_POST['password'], $password)) {
            // Verification success! User has loggedin!
            $_SESSION['loggedin'] = TRUE;
            $_SESSION['name'] = $_POST['username'];
            $_SESSION['id'] = $id;

                //echo 'Welcome ' . $_SESSION['name'] . '!';
            } else {
                echo 'Incorrect username and/or password!';
            }
        } else {
            echo 'Incorrect username and/or password!';
        }
        $stmt->close();
    } else {
        echo 'Could not prepare statement!';
    }
    if ($status == 1) {

                      header ('Location: ./admin/index.php');
        }

    elseif ($status == 2) { 

            header('location: ./members/index.php');
    }
    ?>
0kjbasz6

0kjbasz62#

if (password_verify($_POST['password'], $password)) {
        // Verification success! User has loggedin!
        $_SESSION['loggedin'] = TRUE;
        $_SESSION['name'] = $_POST['username'];
        $_SESSION['id'] = $id;

    // this else doesn’t belong here
    //} else {

                  header ("Location: ./admin/index.php");
    }

更新

if ($stmt = $con->prepare('SELECT id, password, status FROM accounts WHERE username = ?')) {
// Bind parameters (s = string, i = int, b = blob, etc), hash the password using the PHP password_hash function.
$stmt->bind_param('s', $_POST['username']);
$stmt->execute(); 
$stmt->store_result(); 

// Store the result so we can check if the account exists in the database.
if ($stmt->num_rows > 0) {
    $stmt->bind_result($id, $password, $status);
    $stmt->fetch();      
    // Account exists, now we verify the password.
    if (password_verify($_POST['password'], $password)) {
        // Verification success! User has loggedin!
        $_SESSION['loggedin'] = TRUE;
        $_SESSION['name'] = $_POST['username'];
        $_SESSION['id'] = $id;

    //} else {
if ($status == 1) {

                  header ("Location: ./admin/index.php");
    }

elseif ($status == 2) { header(“location: ./members/index.php”);}

相关问题