Creating a user login
, when I use username
and password
within PHP file then, I am getting Done as user exists
. Which is GOOD
<?php
.....
/*** for sample */
// $_POST["username"] = "sun";
// $_POST["password"] = "live";
$username = $_POST['username'];
$password = $_POST['password'];
$strSQL = "select * from test_users where username = '".$username."' and password = '".$password."' ";
$objQuery = mysql_query($strSQL);
$intNumRows = mysql_num_rows($objQuery);
if($intNumRows==0)
{
echo "Not Done" ;
}
else
{
echo "Done" ;
}
mysql_close($objConnect);
?>
But, when I pass these values in web url, I am always getting, Not Done as message. WHY
http://mydomain.info/retrofit_user/login.php?username=sun&&password=live