个人中心
gpt4 book ai didi

php - 用户角色(例如管理员、用户)进入表而不是用户名

转载 作者:行者123 更新时间:2023-11-29 02:33:31 25 4
gpt4 key购买 nike

我有一个评论页面,我有用户角色(全局管理员 (3)、管理员 (2)、用户 (1)),他们都可以在页面上发表评论。

我的问题是用户角色(1、2 或 3)被放入表中而不是用户名,有什么解决办法吗?这是插入代码。

<?
include 'dbconnect.php';
$userName = $_SESSION['user'];
$comment = $_REQUEST["comments"];
$game_ID = $_SESSION['id'];
$query = "INSERT INTO comments (userName, comment, page_ID) VALUES ('$userName',     '$comment', '$game_ID')";
mysql_query ($query);
echo "Thanks, your comment has been added!";
include 'close.php';
?>

登录码:

$errorMessage = '';
if (!empty($_POST['txtuserName']) && !empty($_POST['txtpassword'])) {
include 'dbconnect.php';


$user   = $_POST['txtuserName'];
$password = $_POST['txtpassword'];

// check if the user id and password combination exist in database
$query = "SELECT userName, password, role FROM member WHERE userName = '$user' AND password = '$password'";

$output = mysql_query($query) or die('Query failed. ' . mysql_error()); 
$row = mysql_fetch_array($output);

if (mysql_num_rows($output) == 1 AND $row['role']==1) {
    // the user id and password match, 
    // set the session
    $_SESSION['user'] = true;
    // after login we move to the main page
    header('Location: games.php');
    exit;
}
elseif (mysql_num_rows($output) == 1 AND $row['role']==2) {
    // the user id and password match, 
    // set the session
    $_SESSION['admin'] = true;
    $_SESSION['user'] = true;
    // after login we move to the main page
    header('Location: games.php');
    exit;
}
elseif (mysql_num_rows($output) == 1 AND $row['role']==3) {
    // the user id and password match, 
    // set the session
    $_SESSION['admin'] = true;
    $_SESSION['user'] = true;
    $_SESSION['global'] = true;
    // after login we move to the main page
    header('Location: listUsers.php');
    exit;
}
else {
    $error = 'The supplied username and/or password was incorrect. Please try again.';
}

include 'close.php';
}
?>

最佳答案

只需将 userName 放入 session 中:

$_SESSION['userName'] = $row['userName'];

然后它将在您的应用程序的其余部分中可用。

另请记住,您可以将数组放入 session 中。因此,您可以将代码重构为:

$_SESSION['user'] = array('userName'=>$row['userName'], 'role'=>$row['role']);

稍后在您的代码中:

if ($_SESSION['user']['role'] == 2) {
    // allow admin stuff
}

关于php - 用户角色(例如管理员、用户)进入表而不是用户名,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/9012109/

25 4 0
文章推荐: mysql - 如果现有数据都是 ASCII,是否需要在 MySQL 中在 Latin1 和 UTF-8 之间进行转储和转换?
文章推荐: android - IllegalStateException 由应用内支付引起的 checkNotDisposed
文章推荐: android - 重建后仪器测试停止工作 : No tests found
文章推荐: MySQL CREATE EVENT语法错误
行者123
个人简介

我是一名优秀的程序员,十分优秀!

滴滴打车优惠券免费领取
滴滴打车优惠券
全站热门文章
Copyright 2021 - 2024 cfsdn All Rights Reserved 蜀ICP备2022000587号
广告合作:1813099741@qq.com 6ren.com