dongmeixi5311 2016-02-09 02:11
浏览 610
已采纳

PHP致命错误:在布尔值上调用成员函数fetch()

Im trying to write a login script that needs a user to to login before they can access the database and when i write out the code i get the login in screen but the screen gives this error: PHP Fatal error: Call to a member function fetch() on boolean in G:\xampp\htdocs\music\auth.php on line 12

I dont know what to do. Heres my code:

<?php
session_start();
$err = "";
if( !empty($_POST['submit']) )
{
    $name = $_POST['user'];
    $pwd = $_POST['password'];

    $music = new PDO('mysql:host=localhost;dbname=music', 'musicphp', 'password');
    $sql = "SELECT id FROM music WHERE username = '$name' AND pwd='$pwd'";
    $users= $music->query($sql);
    $music = $users->fetch();

    if( empty($users['id']) || $users == NULL )
    {
        $err = "Bad username or password";
    }
    else
    {
        $_SESSION['userid'] = $user['id'];
        header('Location: index.php');
    }
}
echo $err;
?>
<form action = "auth.php" method="post">
    Username: <input type="text" name="user"/>
    Password: <input type="password" name="password"/>
    <input type="submit" name="submit" value="Log in" />
</form>
  • 写回答

1条回答 默认 最新

  • duanran3115 2016-02-09 02:31
    关注

    Please use prepared statement

    Remove this part

    $sql = "SELECT id FROM music WHERE username = '$name' AND pwd='$pwd'";
$users= $music->query($sql);
$music = $users->fetch();

    And Replace it with this

    $sql = "SELECT id FROM music WHERE username = :name AND pwd=:pwd";
$statement= $music->prepare($sql);
$statement->execute(array(':name'=> $name,':pwd'=>$pwd));
$music =  $statement->fetch();
    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

悬赏问题

  • ¥15 素材场景中光线烘焙后灯光失效
  • ¥15 请教一下各位,为什么我这个没有实现模拟点击
  • ¥15 执行 virtuoso 命令后,界面没有,cadence 启动不起来
  • ¥50 comfyui下连接animatediff节点生成视频质量非常差的原因
  • ¥20 有关区间dp的问题求解
  • ¥15 多电路系统共用电源的串扰问题
  • ¥15 slam rangenet++配置
  • ¥15 有没有研究水声通信方面的帮我改俩matlab代码
  • ¥15 ubuntu子系统密码忘记
  • ¥15 保护模式-系统加载-段寄存器