iphone与php web服务通信 - 用户名/密码

I have been trying to get this to work correctly and I think I have finally come up with the correct solution because when I login on my iphone it seems to work fine. I am sort of new to php so I was wondering if I made any mistakes or if I could improve upon this.

I was working off of this example http://www.raywenderlich.com/2941/how-to-write-a-simple-phpmysql-web-service-for-an-ios-app for writing a web service.

All this is trying to do is return 403 if the username and password that I type in is valid.

<?php

    // Helper method to send a HTTP response code/message
    function sendResponse($status = 200, $body = '', $content_type = 'text/html')
    {
        $status_header = 'HTTP/1.1 ' . $status . ' ' . getStatusCodeMessage($status);
        header($status_header);
        header('Content-type: ' . $content_type);
        echo $body;
    }

    class RedeemAPI {


        private $db;

                // Constructor - open DB connection
                function __construct() {
                $this->db = new mysqli('127.0.0.1', 'username', 'password', 'promos');
                $this->db->autocommit(FALSE);
            }

            // Destructor - close DB connection
            function __destruct() {
                $this->db->close();
            }


    function redeem() {

        // Check for required parameters





     if (isset($_POST["AccountEntry"]) && isset($_POST["PasswordEntry"])) {



        // Put parameters into local variables
                $AccountEntry = $_POST["AccountEntry"];
                 $PasswordEntry = $_POST["PasswordEntry"];



                   $user_id = 0;
                   $stmt = $this->db->prepare("SELECT username, password FROM usernames WHERE username=? AND password=?");

                   $stmt->bind_param("ss", $AccountEntry, $PasswordEntry);
                   $stmt->execute();
                      $stmt->bind_result($user, $pass);
                   while ($stmt->fetch()) {
                break;
            }
            $stmt->close();




                if ($AccountEntry === $user && $PasswordEntry == $pass ) {
                    sendResponse(403, 'YESSIRRRRR');
                    return true;

                }  


        }
         sendResponse(400, 'Not working');
                return false; 
        }


    }

        $api = new RedeemAPI;
        $api->redeem();

    //Extra helper functions



    // Helper method to get a string description for an HTTP status code
    // From http://www.gen-x-design.com/archives/create-a-rest-api-with-php/ 


    function getStatusCodeMessage($status)
    {
        // these could be stored in a .ini file and loaded
        // via parse_ini_file()... however, this will suffice
        // for an example
        $codes = Array(
            100 => 'Continue',
            101 => 'Switching Protocols',
            200 => 'OK',
            201 => 'Created',
            202 => 'Accepted',
            203 => 'Non-Authoritative Information',
            204 => 'No Content',
            205 => 'Reset Content',
            206 => 'Partial Content',
            300 => 'Multiple Choices',
            301 => 'Moved Permanently',
            302 => 'Found',
            303 => 'See Other',
            304 => 'Not Modified',
            305 => 'Use Proxy',
            306 => '(Unused)',
            307 => 'Temporary Redirect',
            400 => 'Bad Request',
            401 => 'Unauthorized',
            402 => 'Payment Required',
            403 => 'Forbidden',
            404 => 'Not Found',
            405 => 'Method Not Allowed',
            406 => 'Not Acceptable',
            407 => 'Proxy Authentication Required',
            408 => 'Request Timeout',
            409 => 'Conflict',
            410 => 'Gone',
            411 => 'Length Required',
            412 => 'Precondition Failed',
            413 => 'Request Entity Too Large',
            414 => 'Request-URI Too Long',
            415 => 'Unsupported Media Type',
            416 => 'Requested Range Not Satisfiable',
            417 => 'Expectation Failed',
            500 => 'Internal Server Error',
            501 => 'Not Implemented',
            502 => 'Bad Gateway',
            503 => 'Service Unavailable',
            504 => 'Gateway Timeout',
            505 => 'HTTP Version Not Supported'
        );

        return (isset($codes[$status])) ? $codes[$status] : '';
    }

    // This is the first thing that gets called when this page is loaded
    // Creates a new instance of the RedeemAPI class and calls the redeem method


    ?>

EDIT: Sorry I wasn't more clear I mainly wanted to make sure that this piece of code is valid, and if I am checking the username/password correctly.

if (isset($_POST["AccountEntry"]) && isset($_POST["PasswordEntry"])) {



        // Put parameters into local variables
                $AccountEntry = $_POST["AccountEntry"];
                 $PasswordEntry = $_POST["PasswordEntry"];



                   $user_id = 0;
                   $stmt = $this->db->prepare("SELECT username, password FROM usernames WHERE username=? AND password=?");

                   $stmt->bind_param("ss", $AccountEntry, $PasswordEntry);
                   $stmt->execute();
                      $stmt->bind_result($user, $pass);
                   while ($stmt->fetch()) {
                break;
            }
            $stmt->close();




                if ($AccountEntry === $user && $PasswordEntry == $pass ) {
                    sendResponse(403, 'YESSIRRRRR');
                    return true;

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

2条回答默认最新

duanditang2916 2012-03-15 20:58

关注

First, why would you want to send "Not Found" if the username and password are correct? Anyway, thats what I did. This is completely different code but it does what you asked.

//Connect To Database. I put 127.0.0.1 because that is what was in your code. It is usually "localhost" though.
$conn = mysql_connect("127.0.0.1", "DATABASE-USER-NAME", "DATABASE-USER-PASSWORD") or     die(mysql_error());
mysql_select_db('DATABASE-NAME', $conn) or die(mysql_error());

//Put everything in variables
$username = $_POST['AccountEntry'];
$password = $_POST['PasswordEntry'];
//Get the information from the database.
$result = mysql_query("SELECT * FROM usernames WHERE username = '$username' && password = '$password'"); 
$num_rows = mysql_num_rows($result);
//If there are one (1) result in the database, returning 403.
if ($num_rows==1 || $num_rows=="1") {
  //Correct passcode. Return 403 (thats what you wanted right?).
  returnStatusCode(403);
} else {
  //Incorrect passcode. Return 400 (thats what you wanted right?).
  returnStatusCode(400);
}
//send the headers...
function returnStatusCode($code) {
 $status_header = 'HTTP/1.1 ' . $code . ' ' . getStatusCodeMessage($status);
        header($status_header);
        header('Content-type: text/html');
 //Don't need the echo($body) since your body was empty anyway.
}
//I didn't change this:
function getStatusCodeMessage($status)
    {
        // these could be stored in a .ini file and loaded
        // via parse_ini_file()... however, this will suffice
        // for an example
        $codes = Array(
            100 => 'Continue',
            101 => 'Switching Protocols',
            200 => 'OK',
            201 => 'Created',
            202 => 'Accepted',
            203 => 'Non-Authoritative Information',
            204 => 'No Content',
            205 => 'Reset Content',
            206 => 'Partial Content',
            300 => 'Multiple Choices',
            301 => 'Moved Permanently',
            302 => 'Found',
            303 => 'See Other',
            304 => 'Not Modified',
            305 => 'Use Proxy',
            306 => '(Unused)',
            307 => 'Temporary Redirect',
            400 => 'Bad Request',
            401 => 'Unauthorized',
            402 => 'Payment Required',
            403 => 'Forbidden',
            404 => 'Not Found',
            405 => 'Method Not Allowed',
            406 => 'Not Acceptable',
            407 => 'Proxy Authentication Required',
            408 => 'Request Timeout',
            409 => 'Conflict',
            410 => 'Gone',
            411 => 'Length Required',
            412 => 'Precondition Failed',
            413 => 'Request Entity Too Large',
            414 => 'Request-URI Too Long',
            415 => 'Unsupported Media Type',
            416 => 'Requested Range Not Satisfiable',
            417 => 'Expectation Failed',
            500 => 'Internal Server Error',
            501 => 'Not Implemented',
            502 => 'Bad Gateway',
            503 => 'Service Unavailable',
            504 => 'Gateway Timeout',
            505 => 'HTTP Version Not Supported'
        );

        return (isset($codes[$status])) ? $codes[$status] : '';
    }

EDIT: Fixed $code and $status.

EDIT 2: Or you could just use Gabriel's answer if you need to have the code that way.

本回答被题主选为最佳回答 , 对您是否有帮助呢?

查看更多回答(1条)

报告相同问题？

关注问题

iphone与php web服务通信 - 用户名/密码 iphone php xcode
2012-03-15 20:31

回答 2 已采纳 First, why would you want to send "Not Found" if the username and password are correct? Anyway, th
iPhone Web服务[关闭] ios iphone php
2014-02-10 10:54

回答 2 已采纳 it works 100% NSString *post = [NSString stringWithFormat:@"username=%@&password=%@",@"Raja",@"12
从iphone上传图像到php服务器 iphone objective-c php
2013-12-18 17:34

回答 1 已采纳 The file size you are submitting exceeds the upload_max_filesize set in your php.ini, this can be
Web-拾贝
2018-03-10 13:45

oscar999的博客 JavaScript MVC框架PK：Angular、Backbone、CanJS与Emberhttp://www.csdn.net/article/2013-04-25/2815032-A-Comparison-of-Angular-Backbone-CanJS-and-Ember一个好的js method 方法查询的网站，有browser兼容的...
Webservice - iphone + php [关闭] iphone php
2012-09-19 09:19

回答 1 已采纳 Check this tutorial, for creating the webservice: How To Write A Simple PHP/MySQL Web Service for
关于Iphone和Webserver通信的多个问题 iphone mysql php xml
2012-08-23 12:57

回答 1 已采纳 Must the data protocol be XML? I'd opt for JSON as the data protocol! If it's feasible for you to
iPhone中的RESTful Web服务：未插入数据库的数据 iphone mysql objective-c php
2011-07-02 04:17

回答 1 已采纳 For print response using iOS and XCode: NSData* responseData = [NSURLConnection sendSynchronousRe
开发一个简单网站--第三章:相知
2020-11-13 17:02

一个平凡de人的博客利用PHP、Mysql数据库、html、css、javascript、bootstrap框架,开发一个简单网站.效率不高,主要作练习用.
与应用程序通信的iPhone应用程序 ios php ruby
2014-10-14 06:32

回答 1 已采纳 Jus a note, in 2016 Parse has closed (it's now open source and you run it on Heroku or whatever).
iPhone应用程序 - Mysql数据库连接不起作用 iphone mysql objective-c php
2013-03-18 20:58

回答 3 已采纳 This is just an issue of trial and error. I could put all your code into a project myself and test
iPhone - 异步调用php页面并确保它已加载 iphone objective-c php
2011-05-07 01:03

回答 1 已采纳 NSURLConection is very good solution for asynchronous loading. There are few steps for creating on
移动智能终端开发技术
2022-05-24 09:07

赵银吉的博客 2.新标签这将有助于开发人员定义重要的内容；3. 可以给站点带来更多的多媒体元素(视频和音频)；4.可以很好的替代FLASH和Silverlight；5.当涉及到网站的抓取和索引的时候，对于SEO很友好；6.大量应用于移动应用程序和...
如何将PHP JSON Web服务转换为C＃？ c# json php
2011-06-01 11:22

回答 1 已采纳 It very simple to use WCF REST. follow steps as this link below: http://blogs.msdn.com/b/kaeva
OS开发-常用第三方开源框架介绍
2016-11-03 10:05

iteye_18766的博客 OS开发-常用第三方开源框架介绍 http://blog.csdn.net/meiwenjie110/article/details/52106794 1.图片浏览控件MWPhotoBrowser 实现了一个照片浏览器类似 iOS 自带的相册应用，可显示来自手机的图片或者是...
iOS开发-常用第三方开源框架
2016-01-27 15:44

梦想家-mxj的博客 iOS开发-常用第三方开源框架介绍(你了解的ios只是冰山一角)，ios冰山一角图像： 1.图片浏览控件MWPhotoBrowser 实现了一个照片浏览器类似 iOS 自带的相册应用，可显示来自手机的图片或者是网络图片，可...
没有解决我的问题, 去提问

悬赏问题

¥50 安卓adb backup备份子用户应用数据失败
¥20 有人能用聚类分析帮我分析一下文本内容嘛
¥15 请问Lammps做复合材料拉伸模拟，应力应变曲线问题
¥30 python代码，帮调试
¥15 #MATLAB仿真#车辆换道路径规划
¥15 java 操作 elasticsearch 8.1 实现索引的重建
¥15 数据可视化Python
¥15 要给毕业设计添加扫码登录的功能！！有偿
¥15 kafka 分区副本增加会导致消息丢失或者不可用吗？
¥15 微信公众号自制会员卡没有收款渠道啊

码龄粉丝数原力等级 --

iphone与php web服务通信 - 用户名/密码

2条回答默认最新

码龄粉丝数原力等级 --

悬赏问题

iphone与php web服务通信 - 用户名/密码

2条回答 默认 最新

悬赏问题

2条回答默认最新