如果密码验证条件中的条件在PHP中无法正常工作

HI Guys i am trying to verify one condition in my login page that is if my password is change me then i would like to throw error message saying that please change your password by clicking this link if not i will redirect them to dashboard.

So i wrote if condition for that but what will happen is it is throwing error message if password is not change me also

Here is my code:

 if (isset($_POST['signin'])) {

        global $DB;

        $username = $_POST['username'];
        $password = $_POST['password'];
        echo $password;
        //exit;
        $sql = "SELECT * FROM {user}  where username = ?";

        if ($user = $DB->get_record_sql($sql, array($username))) {
            echo $user->password;
            //exit;
            if (password_verify($password, $user->password)) {
                if(password_verify($password!='changeme',$user->password!='changeme')){
                  if ($user->trackforums == 1) {
                    complete_user_login($user);
                    \core\session\manager::apply_concurrent_login_limit($user->id, session_id());
                    $userauth = get_auth_plugin($USER->auth);

                    $DB->set_field('user', 'firstaccess', date('YmdHis'), array('id' => $user->id));
                    $_SESSION['username'] = $user->username;
                    $_SESSION['firstname'] = $user->firstname;
                    $_SESSION['idnumber'] = $user->idnumber;
                    $_SESSION['id'] = $user->id;
                    $_SESSION['clientid'] = $user->clientid;
                    $_SESSION['maildigest'] = $user->maildigest;
                    $_SESSION['skype'] = $user->skype;
                    $_SESSION['can_access'] = true;
                    $_SESSION['mnethostid'] = 1;
                    $_SESSION['confirmed'] = 1;

                    if (!empty($_POST["remember"])) {
                        setcookie("member_login", $_POST["username"], time() + (10 * 365 * 24 * 60 * 60));
                        setcookie("password", $_POST["password"], time() + (10 * 365 * 24 * 60 * 60));
                    } else {
                        if (isset($_COOKIE["member_login"])) {
                            setcookie("member_login", "");
                        }
                        if (isset($_COOKIE["password"])) {
                            setcookie("password", "");
                        }
                    }

                    if ($user->idnumber == '3')
                        header('location:course.php');
                    elseif ($user->idnumber == '2')
                        header('location:course.php');
                    else
                        header('location:course.php');
                }

                else {
                    ?>
                    <div class="alert alert-danger">
                        <strong> Sorry, User has been Deactivated. Contact Administrator</strong>
                    </div>
                    <?php
                }
            }
                else {
                    ?>
                    <div class="alert alert-primary">
                        <strong>Please change your password!By clicking this link <a style="color:black" href="forgot-password.php">Click Here</a></strong>
                    </div>
                    <?php
                }
            } else {
                ?>
                <div class="alert alert-danger">
                    <strong> Sorry, wrong password.</strong>
                </div>
                <?php
            }
        } else {
            ?>
            <div class="alert alert-danger">
                <strong> Sorry, wrong username.</strong>
            </div>
            <?php
        }
    }

Can anyone help me what is the mistake in my code.

Thanks in advance.

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
doushang1890 2018-06-28 08:59
关注
password_verify takes both parameter as string, not as bool. You are passing them as bool in second password_verify. In following line, $password != 'changeme' & $user->password != 'changeme', both expressions will return bool.

if (password_verify($password != 'changeme', $user->password != 'changeme'))

I think, the above line code should be like:

if ($password != 'changeme')
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

如果密码验证条件中的条件在PHP中无法正常工作 mysql php
2018-06-28 08:51

回答 1 已采纳 password_verify takes both parameter as string, not as bool. You are passing them as bool in secon
密码无法在我的login.php中验证[重复] mysql php
2017-10-18 14:18

回答 1 已采纳 If you call $hash = password_hash($newRegistrantPassword, PASSWORD_DEFAULT) more than once, you'll
电子邮件验证PHP中的一个条件和多个else语句 php
2019-02-02 11:31

回答 3 已采纳 ok I put the condition for $error & now its working fine. remember that you have to put $exist="";
php 验证前端数据,javascript - 如何更加简单验证前端来的数据是否合法
2021-04-23 19:17

故事后来都变了的博客按照正常的观点来说，我们是绝对不能够相信前端来的数据，但是例如表单提交，我前端js要验证过，后端又要验证过，验证的东西少还好，一多(规则复杂)就麻烦了，有没有什么办法确保前端数据一定合法，或者后端只要简单...
使用官方文档中的PHP代码进行HTTP身份验证无法正常工作 php
2016-04-04 11:33

回答 1 已采纳 Browsers send credentials given before again on a new request. To ask the browsers for new credent
PHP无法使用Edge和Windows身份验证在IIS中写入文件 php
2019-06-14 14:05

回答 1 已采纳 It appears that for some reason Edge seems to prefer having NTLM before Negotiate in the list. Don
PHP Basic身份验证不在xampp中工作 php
2016-10-27 06:53

回答 1 已采纳 Missing brackets, if you want "admin" for login and password you should do this: if (!(($_SERVER
在Spring Boot中集成Okta OIDC登录
2023-10-11 00:48

禅与计算机程序设计艺术的博客在互联网企业当中，单点登录（Single Sign On）是实现用户认证和授权的重要方式之一。 OpenID Connect (OIDC) 是 OAuth 2.0 的一...本文将阐述如何使用 Spring Boot 在开发过程中集成 Okta OIDC 来完成用户认证和授权。
在php中验证年龄 php
2017-10-21 08:07

回答 4 已采纳 I don't think you'd need else if statements here. An if else check for not empty $age and is_nume
在PHP中使用正则表达式进行用户名验证 php
2017-07-08 07:51

回答 3 已采纳 The following pattern will work: ^[a-z0-9][a-z0-9_]*[a-z0-9]$ ^[a-z0-9]: first character may not
在laravel部分工作中验证图像 laravel php
2018-10-08 16:47

回答 2 已采纳 My problem with this is the way I was returning the session flash response call. If I echo the res
基于Java+SpringBoot+Vue中学生日常行为评分管理系统设计和实现
2024-01-26 08:45

java李杨勇的博客开发中学生日常行为评分管理系统的目的是提高教师的工作效率,令老师和领导的日常管理事务得到有效缓解,也能让学生更全面、快速地掌握自身的信息,更好地约束学生。本系统使用Java技术开发，SpringBoot框架，采用的...
如果验证错误无法正常工作，请检查单选按钮 html javascript jquery laravel php
2018-03-28 14:58

回答 1 已采纳 You have double checked the radio button by default: <input checked checked {{ (old('radiobutt
laravel 邮件发送_在Laravel中发送电子邮件的最终指南
2020-07-19 11:13

culiu9261的博客 For this reason, Laravel uses a .env file for storing it's credentials and environmental variables: 真正不习惯的做法是将凭据存储在代码中，因为它们可能会泄漏给错误的人，尤其是在VCS中移动代码库时。...
大数据开发面试知识点总结
2021-02-09 11:22

GoAI的博客本文详细介绍大数据hadoop生态圈各部分知识，包括不限于hdfs、yarn、mapreduce、hive、sqoop、kafka、flume、spark、flink等技术，总结内容适合大数据开发者学习，希望能够和大家多多交流。
没有解决我的问题, 去提问

悬赏问题

¥15 素材场景中光线烘焙后灯光失效
¥15 请教一下各位，为什么我这个没有实现模拟点击
¥15 执行 virtuoso 命令后，界面没有，cadence 启动不起来
¥50 comfyui下连接animatediff节点生成视频质量非常差的原因
¥20 有关区间dp的问题求解
¥15 多电路系统共用电源的串扰问题
¥15 slam rangenet++配置
¥15 有没有研究水声通信方面的帮我改俩matlab代码
¥15 ubuntu子系统密码忘记
¥15 保护模式-系统加载-段寄存器

如果密码验证条件中的条件在PHP中无法正常工作

1条回答 默认 最新

悬赏问题

1条回答默认最新