检查数据库中的用户名是否有重复项

I am trying to figure out why my check database for same username is not running because the code is right but its just not running properly reason why I know the code is right for the query because my email one is working so I think the problem is how I put the query on the page but I am moving it all over the place to see if it works and it just seems to not.

<?php
//Declare Feedback Error Messages for Each Field on Member Registration Form
  $userErr = "";
  $emailErr = "";
  $passErr = "";
  $capErr = "";
//Get Post Values from form
  $user = $_POST['username'];
  $pass = $_POST['password'];
  $em = $_POST['email'];
  $confirm_code= getCode(5);
  $status = 0;
//Encode value for email and Code.
  $email_encoded = rtrim(strtr(base64_encode($em), '+/', '-_'), '=');
  $code_encoded = rtrim(strtr(base64_encode($confirm_code), '+/', '-_'), '=');
  //$code_decoded = base64_decode(strtr($codenum, '-_', '+/'));



  include_once 'securimage/securimage.php';
  $cVal = new Securimage();
  //validate data
    validate($user, $pass, $em, $cVal);
  if ($userErr != "" || $emailErr!= "" || $passErr!= "" || $capErr!="") {
  Header("Location:../presentation/memberRegistration.php?userMsg=$userErr&passMsg=$passErr&emailMsg=$emailErr&capMsg=$capErr");
}else {
      sanitize($user);
        sanitize($pass);
      sanitize($em);
      $encodedpass= md5($pass);
      //include connection string
  include("../data/dbConnection.php");
    $found = false;
    if ($stmt = mysqli_prepare($mysqli, "SELECT * FROM tblMember WHERE email=?"))
            {
                //bind parameters for markers
                mysqli_stmt_bind_param($stmt, "s", $em);
                //execute query
                mysqli_stmt_execute($stmt);
                //store result
                mysqli_stmt_store_result($stmt);
                //get the number of rows returned
                $test = mysqli_stmt_num_rows($stmt);
                //if no results found
                if($test !=0)
                {
                    $emailErr = "Email Address Already Exists";
                    Header("Location:../presentation/memberRegistration.php?emailMsg=$emailErr");
                }
                else
                {
                    $found = true;
                }
                //close statement
                mysqli_stmt_close($stmt);
            }
            //close connection
                    mysqli_close($mysqli);
          if ($found == true) {
          include("../data/dbConnection.php");
          if ($stmt = mysqli_prepare($mysqli, "SELECT * FROM tblMember WHERE username=?"))
            {
              //bind parameters for markers
              mysqli_stmt_bind_param($stmt, "s", $user);
              //execute query
              mysqli_stmt_execute($stmt);
              //store result
              mysqli_stmt_store_result($stmt);
              //get the number of rows returned
              $test1 = mysqli_stmt_num_rows($stmt);
              //if no results found
              if($test1 !=0)
              {
                $userErr = "Username already Exists";
                Header("Location:../presentation/memberRegistration.php?userMsg=$userErr");
              }
              else
              {
                $found = true;
              }
              //close statement
              mysqli_stmt_close($stmt);
            }
            //close connection
                mysqli_close($mysqli);
          }

if ($found == true) {
        include("../data/dbConnection.php");
    if ($stmt = mysqli_prepare($mysqli, "INSERT INTO tblMember(username, password, email, code, status) VALUES (?, ?, ?, ?, ?)"))
    {//bind parameters to the statement object

        mysqli_stmt_bind_param($stmt, "ssssi", $user, $encodedpass, $em,  $confirm_code, $status);
        $feedback = "";
        if(mysqli_stmt_execute($stmt)){
      //Call to Send Email.
            sendEmail($em, $confirm_code, $email_encoded);
            $feedback = "Your Registration has been successful and <p>Your Confirmation link Has Been Sent To Your Email Address..";
            Header("Location:sendEmail.php?feedbackMsg=$feedback&confirmCode=$code_encoded&em=$email_encoded");
        }else{
            $feedback.= "Your Registration has been unsuccessful.";
            Header("Location:../presentation/memberRegistration.php?feedbackMsg=$feedback");
        }
    }

}

}

//Email
function sendEmail($email, $code, $encodeEmail){


$to=$email;


$subject="Activation Link For Your Account";


$header = "MIME-Version: 1.0" . "
";
$header .= "Content-type:text/html;charset=iso-8859-1" . "
";
$header .="From:WAD<sheena.s.sylvester@gmail.com>";


$message = "
<html>
<head>
<title>HTML email</title>
</head>
<body style='background-color:red'>
 <h2 bgcolor='#0099ff'><i>Your Activation Link</i></h2>
 <p>Hey Here is your Activation Code:$code

 <br/>Please click on the link below to activate your account status</p>
 <a href='http://localhost/royalGreenwhich/php/logic/sendEmail.php?confirmCode=$code&em=$encodeEmail'>Click Here</a> To activate your account.
</body>
</html>";

// send email using PHP mail function
ini_set("smtp_port","25");
$sentmail = mail($to,$subject,$message,$header);

// if your email succesfully sent
if($sentmail){
 echo "<p>Your Confirmation link Has Been Sent To Your Email Address.";
}
else {
 echo "Cannot send Confirmation link to your e-mail address";
}

}


function getCode($len){
      $result = "";
      $chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789";
      $charArray = str_split($chars);
      for($i = 0; $i < $len; $i++){
        $randItem = array_rand($charArray);
        $result .= "".$charArray[$randItem];
      }
      return $result;
  }
//Function to SANITIZE (Clean) datax`
function sanitize($data){
  $data = trim($data);
  $data = stripslashes($data);
  $data = filter_var($data, FILTER_SANITIZE_SPECIAL_CHARS);
  $data = filter_var($data, FILTER_SANITIZE_STRING);
  $data = filter_var($data, FILTER_SANITIZE_STRING);
  $data = filter_var($data, FILTER_SANITIZE_STRING);

  //for,at data for storage (maintain uniformity)
  $data = strtolower($data);
  $data = ucfirst($data);

  return $data;
}//end sanitize function

  function validate($userVal, $passVal, $emVal, $cVal){
        global $userErr;
        global $passErr;
        global $emailErr;
        global $capErr;
        $valid = true;

    if($userVal == null || $userVal == ""){
      $userErr = "Username Field  required.";
            $valid = false;
    }

    if($passVal == null || $passVal == ""){
      $passErr = "Password Field  required.";
            $valid = false;
    }

    if($emVal == null || $emVal == ""){
      $emailErr = "Email Field required.";
            $valid = false;
    }

    if ($cVal->check($_POST['captcha_code']) == false){
            $capErr .= "Please try again. <br/>You have inserted the wrong Captcha";
            $valid = false;
        }

return true;
}
 ?>

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

2条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
duancong6937 2017-04-06 19:50
关注
Your sql statement for selecting the user is the same as the one for email (the condition is based on email column). It seems like a copy-paste error...

Not commenting on the rest of the code (as there is quite a lot to check) I would suggest to strongly consider creating a new function as soon as there is a temptation to copy-paste. Event if it requires some additional work and creativity to write a modular function, there are benefits too. It is less error prone (usually fewer lines of code mean smaller chance of a mistake). The readability improves (if you comment your code with proper explanations).

EDIT:

There seems to be a logical error. You use a single variable for indicating $found. If you do not find an email, $found = true. This does not change regardless of finding a duplicate user. Therefore no matter what the user check, if the email is ok, you execute this part of code:

if ($found == true) { include("../data/dbConnection.php"); if ($stmt = mysqli_prepare($mysqli, "INSERT INTO tblMember(username, password, email, code, status) VALUES (?, ?, ?, ?, ?)")) {//bind parameters to the statement object mysqli_stmt_bind_param($stmt, "ssssi", $user, $encodedpass, $em, $confirm_code, $status); $feedback = ""; if(mysqli_stmt_execute($stmt)){ //Call to Send Email. sendEmail($em, $confirm_code, $email_encoded); $feedback = "Your Registration has been successful and <p>Your Confirmation link Has Been Sent To Your Email Address.."; Header("Location:sendEmail.php?feedbackMsg=$feedback&confirmCode=$code_encoded&em=$email_encoded"); }else{ $feedback.= "Your Registration has been unsuccessful."; Header("Location:../presentation/memberRegistration.php?feedbackMsg=$feedback"); } } }

I suggest you use two different variables for email and user ($email_not_found, $user_not_found) and then check for both of them. Or if you find an existing user, you change the $found back to false. Also consider changing the $found to something else as the variable name indicates (at least to me) that the mail/user was found, but is used in the opposite manner ($found = true when user/email do not exist).
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

查看更多回答(1条)

报告相同问题？

关注问题

MYSQL检查数据库中是否已存在用户名[重复] database mysql php
2019-05-13 10:38

回答 1 已采纳 You are trying to use mysql_query when you have (based on the rest of your code that is working) a
PHP如何实现在用户注册时查找数据库中是否有相同用户名 php
2022-07-14 12:49

回答 2 已采纳当用户点击进行注册的时候获取用户输入的用户名,发送到phpphp获取这个数据,在数据库中进行查找如果找不到一样的就返回false,否则就是true然后表单可以通过return true或者return
数据库多个表有重复的字段数据库
2018-08-16 01:34

回答 9 已采纳如果这些字段很少或者根本不修改，那么直接嵌入性能更高。如果是数据一致性敏感的内容，就必须关联查询。
DataReader读取数据并查数据库数据是否重复
2019-03-24 08:06

总结，使用SqlDataReader读取数据并检查数据库数据是否重复是一种常见的数据处理操作。通过逐行读取数据并对比数据库中的记录，我们可以有效地发现重复项，从而确保数据的完整性和一致性。在实际应用中，我们应根据...
检查数据库中是否已存在用户名 html mysql php
2014-03-22 10:38

回答 2 已采纳 There are a few things that are wrong in your code. First, never place variables directly in SQL
关于#python#的问题：#mysql数据库文件data1,数据库用户名abc,写出python调用mysql数据库的的程序段 python
2022-05-29 20:57

回答 1 已采纳给你个样例 import pandas as pd import pymysql conn = pymysql.connect(host='192.168.1.1',port=3306,user='a
在sql中多大的数据才算是大数据？ java mysql 数据库
2022-03-31 17:24

回答 4 已采纳其实没有实际的标准明确定义多少数据量算大数据，不过阿里开发手册中建议，表数据超过500万条时，建议考虑分表，以防影响查询效率，不过我们公司也有单表超过几千万条的数据，效率确实不高，所以理论上百万级别以
Oracle数据库详解(超详细)
2021-07-06 08:30

Senfos.W的博客 Oracle数据库详解文章目录Oracle数据库详解一、数据类型1.数字型2.字符型3.日期型二、运算部分1. 关系运算2. 集合运算3. 算术运算4. 数据类型间相互转换5. 特殊字符查询运算三、DQL1. 通用模板2. 运行顺序3. 子...
C#连接access数据库，用户名和密码始终是错误的是为什么？ c# sql visual studio 有问必答
2021-03-17 17:56

回答 3 已采纳可以把这个sql 打印出来在access里运行一下，看看结果 command.CommandText = "select * from EmployeeData where Username=' "
数据库中关系代数的除法运算 sqlite 大数据数据库架构
2023-01-03 15:04

回答 1 已采纳 1.没看懂哪里用到除法2.不写all就不能从语法上保证返回条目是唯一的，那就报错了呀，一个数不能与一个集合比较大小
ASP.NET登陆页面时如何查询SQL Sever数据库中用户名和密码是否相匹配 sql 数据库
2014-12-01 07:46

回答 5 已采纳 string connect = "Provider=Microsoft.Jet.OleDb.4.0;Data Source=|DataDirectory|contacts.mdb";
易语言数据库字段求和
2020-07-20 15:06

在实际开发中，你可能还需要考虑错误处理，例如检查数据库连接是否成功，SQL执行是否有误等。易语言提供了“捕获异常”结构来处理这些异常情况，确保程序的稳定运行。此外，如果数据库中的数据量非常大，你可能...
数据库中BCNF和3NF 大数据数据库数据库开发
2022-12-31 14:20

回答 2 已采纳如果关系模式 R 中的所有属性都是主属性，就 R 的最高范式为 3NF。关于范式，有如下几个要点： 1、关系模式范式是指在设计数据库表时遵循的一系列规就，旨在避免数据冗余和数据不一致的情况。 2、一
大数据技术之云数据库
2021-05-05 22:05

编程小吉的博客云数据库是在云计算的大背景下发展起来的一种新兴的共享基础架构的方法，它极大地增强了数据库的存储能力，消除了人员、硬件、软件的重复配置，让软、硬件升级变得更加容易云数据库具有高可扩展性、高可用性、采用...
大数据技术原理与应用之【云数据库】习题
2019-12-29 00:48

大数据梦想家的博客云数据库是在云计算的大背景下发展起来的一种新兴的共享基础架构的方法，它极大地增强了数据库的存储能力，消除了人员、硬件、软件的重复配置，让软、硬件升级变得更加容易，同时，也虚拟化了许多后端功能。云数据库...
没有解决我的问题, 去提问

悬赏问题

¥15 PointNet++的onnx模型只能使用一次
¥20 西南科技大学数字信号处理
¥15 有两个非常“自以为是”烦人的问题急期待大家解决！
¥30 STM32 INMP441无法读取数据
¥15 R语言绘制密度图，一个密度曲线内fill不同颜色如何实现
¥100 求汇川机器人IRCB300控制器和示教器同版本升级固件文件升级包
¥15 用visualstudio2022创建vue项目后无法启动
¥15 x趋于0时tanx-sinx极限可以拆开算吗
¥500 把面具戴到人脸上，请大家贡献智慧，别用大模型回答，大模型的答案没啥用
¥15 任意一个散点图自己下载其js脚本文件并做成独立的案例页面，不要作在线的，要离线状态。

检查数据库中的用户名是否有重复项

2条回答 默认 最新

悬赏问题

2条回答默认最新