如果密码验证条件中的条件在PHP中无法正常工作

HI Guys i am trying to verify one condition in my login page that is if my password is change me then i would like to throw error message saying that please change your password by clicking this link if not i will redirect them to dashboard.

So i wrote if condition for that but what will happen is it is throwing error message if password is not change me also

Here is my code:

 if (isset($_POST['signin'])) {

        global $DB;

        $username = $_POST['username'];
        $password = $_POST['password'];
        echo $password;
        //exit;
        $sql = "SELECT * FROM {user}  where username = ?";

        if ($user = $DB->get_record_sql($sql, array($username))) {
            echo $user->password;
            //exit;
            if (password_verify($password, $user->password)) {
                if(password_verify($password!='changeme',$user->password!='changeme')){
                  if ($user->trackforums == 1) {
                    complete_user_login($user);
                    \core\session\manager::apply_concurrent_login_limit($user->id, session_id());
                    $userauth = get_auth_plugin($USER->auth);

                    $DB->set_field('user', 'firstaccess', date('YmdHis'), array('id' => $user->id));
                    $_SESSION['username'] = $user->username;
                    $_SESSION['firstname'] = $user->firstname;
                    $_SESSION['idnumber'] = $user->idnumber;
                    $_SESSION['id'] = $user->id;
                    $_SESSION['clientid'] = $user->clientid;
                    $_SESSION['maildigest'] = $user->maildigest;
                    $_SESSION['skype'] = $user->skype;
                    $_SESSION['can_access'] = true;
                    $_SESSION['mnethostid'] = 1;
                    $_SESSION['confirmed'] = 1;

                    if (!empty($_POST["remember"])) {
                        setcookie("member_login", $_POST["username"], time() + (10 * 365 * 24 * 60 * 60));
                        setcookie("password", $_POST["password"], time() + (10 * 365 * 24 * 60 * 60));
                    } else {
                        if (isset($_COOKIE["member_login"])) {
                            setcookie("member_login", "");
                        }
                        if (isset($_COOKIE["password"])) {
                            setcookie("password", "");
                        }
                    }

                    if ($user->idnumber == '3')
                        header('location:course.php');
                    elseif ($user->idnumber == '2')
                        header('location:course.php');
                    else
                        header('location:course.php');
                }

                else {
                    ?>
                    <div class="alert alert-danger">
                        <strong> Sorry, User has been Deactivated. Contact Administrator</strong>
                    </div>
                    <?php
                }
            }
                else {
                    ?>
                    <div class="alert alert-primary">
                        <strong>Please change your password!By clicking this link <a style="color:black" href="forgot-password.php">Click Here</a></strong>
                    </div>
                    <?php
                }
            } else {
                ?>
                <div class="alert alert-danger">
                    <strong> Sorry, wrong password.</strong>
                </div>
                <?php
            }
        } else {
            ?>
            <div class="alert alert-danger">
                <strong> Sorry, wrong username.</strong>
            </div>
            <?php
        }
    }

Can anyone help me what is the mistake in my code.

Thanks in advance.

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
doushang1890 2018-06-28 08:59
关注
password_verify takes both parameter as string, not as bool. You are passing them as bool in second password_verify. In following line, $password != 'changeme' & $user->password != 'changeme', both expressions will return bool.

if (password_verify($password != 'changeme', $user->password != 'changeme'))

I think, the above line code should be like:

if ($password != 'changeme')
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

如果密码验证条件中的条件在PHP中无法正常工作 mysql php
2018-06-28 08:51

回答 1 已采纳 password_verify takes both parameter as string, not as bool. You are passing them as bool in secon
密码无法在我的login.php中验证[重复] mysql php
2017-10-18 14:18

回答 1 已采纳 If you call $hash = password_hash($newRegistrantPassword, PASSWORD_DEFAULT) more than once, you'll
电子邮件验证PHP中的一个条件和多个else语句 php
2019-02-02 11:31

回答 3 已采纳 ok I put the condition for $error & now its working fine. remember that you have to put $exist="";
php 验证前端数据,javascript - 如何更加简单验证前端来的数据是否合法
2021-04-23 19:17

故事后来都变了的博客按照正常的观点来说，我们是绝对不能够相信前端来的数据，但是例如表单提交，我前端js要验证过，后端又要验证过，验证的东西少还好，一多(规则复杂)就麻烦了，有没有什么办法确保前端数据一定合法，或者后端只要简单...
使用官方文档中的PHP代码进行HTTP身份验证无法正常工作 php
2016-04-04 11:33

回答 1 已采纳 Browsers send credentials given before again on a new request. To ask the browsers for new credent
PHP无法使用Edge和Windows身份验证在IIS中写入文件 php
2019-06-14 14:05

回答 1 已采纳 It appears that for some reason Edge seems to prefer having NTLM before Negotiate in the list. Don
PHP Basic身份验证不在xampp中工作 php
2016-10-27 06:53

回答 1 已采纳 Missing brackets, if you want "admin" for login and password you should do this: if (!(($_SERVER
在Spring Boot中集成Okta OIDC登录
2023-10-11 00:48

禅与计算机程序设计艺术的博客在互联网企业当中，单点登录（Single Sign On）是实现用户认证和授权的重要方式之一。 OpenID Connect (OIDC) 是 OAuth 2.0 的一...本文将阐述如何使用 Spring Boot 在开发过程中集成 Okta OIDC 来完成用户认证和授权。
在php中验证年龄 php
2017-10-21 08:07

回答 4 已采纳 I don't think you'd need else if statements here. An if else check for not empty $age and is_nume
在PHP中使用正则表达式进行用户名验证 php
2017-07-08 07:51

回答 3 已采纳 The following pattern will work: ^[a-z0-9][a-z0-9_]*[a-z0-9]$ ^[a-z0-9]: first character may not
在laravel部分工作中验证图像 laravel php
2018-10-08 16:47

回答 2 已采纳 My problem with this is the way I was returning the session flash response call. If I echo the res
基于Java+SpringBoot+Vue中学生日常行为评分管理系统设计和实现
2024-01-26 08:45

java李杨勇的博客开发中学生日常行为评分管理系统的目的是提高教师的工作效率,令老师和领导的日常管理事务得到有效缓解,也能让学生更全面、快速地掌握自身的信息,更好地约束学生。本系统使用Java技术开发，SpringBoot框架，采用的...
如果验证错误无法正常工作，请检查单选按钮 html javascript jquery laravel php
2018-03-28 14:58

回答 1 已采纳 You have double checked the radio button by default: <input checked checked {{ (old('radiobutt
laravel 邮件发送_在Laravel中发送电子邮件的最终指南
2020-07-19 11:13

culiu9261的博客 For this reason, Laravel uses a .env file for storing it's credentials and environmental variables: 真正不习惯的做法是将凭据存储在代码中，因为它们可能会泄漏给错误的人，尤其是在VCS中移动代码库时。...
大数据开发面试知识点总结
2021-02-09 11:22

GoAI的博客本文详细介绍大数据hadoop生态圈各部分知识，包括不限于hdfs、yarn、mapreduce、hive、sqoop、kafka、flume、spark、flink等技术，总结内容适合大数据开发者学习，希望能够和大家多多交流。
没有解决我的问题, 去提问

悬赏问题

¥15 微信小程序协议怎么写
¥15 c语言怎么用printf（“\b \b”）与getch（）实现黑框里写入与删除？
¥20 怎么用dlib库的算法识别小麦病虫害
¥15 华为ensp模拟器中S5700交换机在配置过程中老是反复重启
¥15 java写代码遇到问题，求帮助
¥15 uniapp uview http 如何实现统一的请求异常信息提示？
¥15 有了解d3和topogram.js库的吗？有偿请教
¥100 任意维数的K均值聚类
¥15 stamps做sbas-insar，时序沉降图怎么画
¥15 买了个传感器，根据商家发的代码和步骤使用但是代码报错了不会改，有没有人可以看看

如果密码验证条件中的条件在PHP中无法正常工作

1条回答 默认 最新

悬赏问题

1条回答默认最新