激活电子邮件地址后PHP设置用户密码

I am trying to implement this flow:

User signs up with email address
User receives email with validation link
User follows link to a page asking to set a password
User sets password

Here's the code I have so far:

$email = $_GET['email'];
$verification_code = $_GET['verification_code'];
$validation_message = "";
$self = htmlspecialchars($_SERVER["PHP_SELF"]);

if(isset($_POST['submit'])) {
    if ($_POST['password'] == "") {
        $validation_message = "Please enter a password";
        echo "<form id='verify-email-form' action='$self' method='post'><h1 id='set-password-input' class='h1-splash h1-password'>Choose a password</h1><input type='hidden' name='email' value='$email'><input type='hidden' name='verification_code' value='$verification_code'><input type='password' name='password' class='text-input' placeholder='Password'><button type='submit' name='submit' id='submit-input-splash'>Go!</button></form><p id='validation-message'>$validation_message</p>";
    }
    else {
        echo $_POST['email'];
        echo $_POST['password'];
    }
}
else {
    require 'connect.php';
    $sql = "SELECT * FROM users WHERE email='$email' AND verification_code='$verification_code' AND active='0'";
    $result = $con->query($sql);
    if ($result->num_rows > 0) {
        echo "<form id='verify-email-form' action='$self' method='post'><h1 id='set-password-input' class='h1-splash h1-password'>Choose a password</h1><input type='hidden' name='email' value='$email'><input type='password' name='password' class='text-input' placeholder='Password'><button type='submit' name='submit' id='submit-input-splash'>Go!</button></form><p id='validation-message'>$validation_message</p>";
    }
    else {
        echo "Invalid activation code.";

    }
}
?>

The URL is in this format: www.example.com/activate.php?email=name@example.com+verification_code=1234567890

I'm tripping up at the eventuality that a user presses submit without typing anything in the password field. It reloads the page to activate.php but without the variables in the URL, so the email address can't be submitted if the user then does type a password.

Is there a workaround for this, or a better way of structuring it?

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
douyan4470 2018-01-24 18:27
关注
You are sending those variables as POST and trying to read them as GET: $_GET['verification_code'];

Just change the form method to GET or read the variables as POST.

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

为什么我在尝试使用phpmailer发送电子邮件激活新用户帐户时收到此错误 php
2019-05-01 20:07

回答 1 已采纳 Firstly, why are you using a version of PHPMailer that's literally years out of date? Get the late
单击电子邮件激活链接后，php和mysql未激活新用户[关闭] mysql php
2013-11-12 16:45

回答 1 已采纳 Error: if (mysql_result(mysql_query("SELECT COUNT(`user_id`) FROM `user` WHERE `email` = '$email
如何ubuntu 18.04安装/激活PHP扩展ext-mcrypt php
2018-05-15 16:05

回答 2 已采纳 So it looks like mcrypt is deprecated with php7.2 So I will either have to replace it in my soft
用Php编写注册后Email激活验证的实例代码
2020-12-19 19:46

总共需两个页面，register.php 和 verify.php 1. 用户注册表格 register.php 复制代码代码如下: <... <body> <... 电子邮件：<input type=”text” name=”email” />
激活弹出窗口（HTML，PHP，Javascript / Jquery） javascript jquery php
2018-08-14 11:01

回答 4 已采纳 I (kindly) lauched a bit about the echo <script> part. Allow me to write you a piece of cod
登录使用激活后的PHP身份验证或会话 php
2014-05-18 16:17

回答 2 已采纳 yes you can.. just put this code after this if ($result) { echo "Congratulations. Your membership
如何激活循环选项卡PHP css html php
2017-02-07 09:05

回答 1 已采纳 remove active class,i assume that change in loop not affect in design. <div class="container c
Php怎样实现通过邮箱找回密码,PHP如何使用邮箱找回密码？
2021-04-09 10:16

韩百科君的博客在日常开发过程中，我们会经常遇到用邮箱找回密码，今天就给大家讲解一下。...3、系统通过该邮箱，从数据库中查找到该用户信息，并更新该用户的密码为一个临时密码(比如：123456)。4、系统借助 PHPMail...
满足某些php条件时动态激活菜单 javascript jquery php
2015-12-05 12:15

回答 3 已采纳 You are executing the script before the HTML is loaded. I've tried it, and it works if you put th
如何激活特定的PHP包括 php
2014-04-09 17:00

回答 1 已采纳 PHP runs on the server and by the time the browser loads your web page, PHP has "already done its
检查用户是否通过电子邮件激活了他们的帐户并在点击激活链接PHP / JavaScript后显示消息 javascript php
2011-01-24 18:21

回答 3 已采纳 Sorry for the original answer, I did not read this properly. I personally would just add somethin
php-user-manager:一个用于用户管理的 php 应用程序
2021-07-03 10:03

通过电子邮件和密码登录用户数据编辑页面忘记密码功能移动功能远程注册远程登录和数据检索远程忘记密码远程数据编辑安全功能邮箱验证后激活加密的电子邮件链接蛮力破解威慑 php 5.4 password_hash & ...
在PHP中生成随机激活码[关闭] php
2016-05-02 17:59

回答 2 已采纳 What you are asking for is not random, but: $string = date('YmdHi') . $username; Also check out
php商城系统 v3.0 rc6.rar
2019-07-07 21:20

增加配送方式多模式设置(是否根据用户填写的送货地址计算配送方式和使用管理员费用计算) 增加商品管理员开关(除管理员外只能是某个加的管理员管理) 增加邮件队列功能(延迟发信) 所有发信默认采用延迟发信 ...
DiCi:PHP和MySQL中的Web系统，权限系统（管理员，模块，用户），应用程序系统，RegisterLogin验证密码激活密码重置密码-系统，配置文件页面
2021-05-13 12:04

进入文件夹并运行./start.sh 现在，所有依赖项和源已安装进入database.php并填写您的网站域（direcotry）（）还要添加您的电子邮件，从中发送电子邮件在/includes/config.php您可以编辑所有需要的内容！...
没有解决我的问题, 去提问

悬赏问题

¥15 求一下解题思路，完全不懂
¥15 tensorflow
¥15 densenet网络结构中，特征以cat方式复用后是怎么进行误差回传的
¥15 STM32G471芯片spi设置了8位，总是发送16位
¥15 R语言并行计算beta-NTI中tree文件的类型
¥15 如何解读marsbar导出的ROI数据？
¥20 求友友协助弄一下基于STC89C52单片机的声光控制灯原理图
¥15 arduino双向交通灯设计
¥15 有没有会粒子群算法的大能（○゜ε＾○）求带不会出收敛图😭
¥15 Matlab读取根元素出错

激活电子邮件地址后PHP设置用户密码

1条回答 默认 最新

悬赏问题

1条回答默认最新