Home/ Questions/Q 8438657
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-10T07:46:32+00:00

I’m trying to create simple login/registration page. I’m using index.php which includes login.php in

  • 0

I’m trying to create simple login/registration page.

I’m using index.php which includes login.php in it.

I want to report the login errors in a specific position, using an answer to a preious question.

The problem is that if I encounter an error, the url changes to the login.php file and on next login I get error of “Cannot find page”.

I want to eventually be able somehow display errors and be able to get another input and handle it.

login.php:

   <?php

    $host="localhost"; // Host name 
    $username="root"; // Mysql username 
    $password=""; // Mysql password 
    $db_name="kupon"; // Database name 
    $tbl_name="users"; // Table name 

    // Connect to server and select databse.
    mysql_connect("$host", "$username", "$password")or die("cannot connect"); 
    mysql_select_db("$db_name")or die("cannot select DB");

    // username and password sent from form 
    $email=$_POST['email']; 
    $password=$_POST['password']; 

    // To protect MySQL injection
    $email = stripslashes($email);
    $password = stripslashes($password);
    $email = mysql_real_escape_string($email);
    $password = mysql_real_escape_string($password);
    $sql="SELECT * FROM $tbl_name WHERE email='$email' and password='$password'";
    $result=mysql_query($sql);

    // Mysql_num_row is counting table row
    $count=mysql_num_rows($result);
    // If result matched $email and $password, table row must be 1 row
    if($count==1){

    // Register $email, $password
    $_SESSION['email'] = $email;
    $_SESSION['password'] = $password; 
    header("location: members.php");
    }
    else {
       $error = '<p class="error">User does not exist</p>'
       include('../index.php');
       exit;
    }
    ?>

index.php form:

                <form action="php/login.php" method="post" class="form">
                    <p class="email">
                        <input type="text" name="email" /> :דואר אלקטרוני</br>
                    </p>
                    <p class="password">
                        <input type="password" name="password" /> :סיסמא</br>
                    </p>
                    <p class="submit">  
                        <input type="submit" value="היכנס" />  
                    </p>  
                </form>
                <?php
                    if(isset($error)) echo $error;
                ?>
Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team
    1. You shouldn’t put passwords or other Personal Identification Information into the session. Better to have your login code assign a session ID with an identification that links it to the user in your database. (Like a column filled with unique values called userid)
    2. You need to make sure you are initializing the session in the login.php and any page that you want to have require they be authenticated. This allows you to have the page check the session to confirm that the user is actually logged in.

    To resolve the 404 error (Page Not Found), you need to fix this: header("location: members.php");. That needs to be the full path of the file. Since your login.php file is under the directory of php and members.php is not, when you get directed to login.php, this location forward tries to load members.php in the php directory and since it is not there, it gives a 404 error.

    • 0