soroush.r70
جمعه 01 آذر 1392, 19:22 عصر
من برای لوگین کردن از کد زیر به وسیله ی pdo استفاده می کنم ولی لوگین نمی شه می تونید بگید مشکل کجاست...؟
function login()
{
$class=new content;
global $loginError;
if (isset($_POST['user']))
{
$class->query("SELECT * FROM `tbl_admin` WHERE `user`=:user AND `pass`=:pass LIMIT 1");
$class->bind(':user',$_POST['user']);
$class->bind(':pass',$_POST['pass']);
$row=$class->single();
$res=$class->rowCount();
if($res > 0)
{
$class->query("SELECT * FROM `tbl_admin` WHERE `user`=:user AND `pass`=:pass LIMIT 1");
$class->bind(':user',$_POST['user']);
$class->bind(':pass',$_POST['pass']);
$User = $class->single();
$_SESSION['user'] = $User['user'];
$_SESSION['aid'] = $User['aid'];
$loginError = false;
}
else
{
$loginError = '<span class="loginerror">.نام کاربری یا رمز عبور اشتباه می باشد</span>';
}
}
}
اینم کلاس pdo من :
<?php
class content
{
private $host = DB_HOST;
private $user = DB_USER;
private $pass = DB_PASS;
private $dbname = DB_NAME;
private $stmt;
private $dbh;
private $error;
public function __construct(){
// Set DSN
$dsn = 'mysql:host=' . $this->host . ';dbname=' . $this->dbname;
// Set options
$options = array(
PDO::ATTR_PERSISTENT => true,
PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION,
PDO::MYSQL_ATTR_INIT_COMMAND => "SET NAMES utf8"
);
// Create a new PDO instanace
try{
$this->dbh = new PDO($dsn, $this->user, $this->pass, $options);
/*** close the database connection ***/
//$this->dbh = null;
}
// Catch any errors
catch(PDOException $e){
$this->error = $e->getMessage();
}
}
// query
public function query($query){
$this->stmt = $this->dbh->prepare($query);
}
public function bind($param, $value, $type = null){
if (is_null($type)) {
switch (true) {
case is_int($value):
$type = PDO::PARAM_INT;
break;
case is_bool($value):
$type = PDO::PARAM_BOOL;
break;
case is_null($value):
$type = PDO::PARAM_NULL;
break;
default:
$type = PDO::PARAM_STR;
}
}
$this->stmt->bindValue($param, $value, $type);
}
public function execute(){
return $this->stmt->execute();
}
public function resultset(){
$this->execute();
return $this->stmt->fetchAll(PDO::FETCH_ASSOC);
}
public function single(){
$this->execute();
return $this->stmt->fetch(PDO::FETCH_ASSOC);
}
public function rowCount(){
return $this->stmt->rowCount();
}
public function lastInsertId(){
return $this->dbh->lastInsertId();
}
public function beginTransaction(){
return $this->dbh->beginTransaction();
}
public function endTransaction(){
return $this->dbh->commit();
}
public function cancelTransaction(){
return $this->dbh->rollBack();
}
public function debugDumpParams(){
return $this->stmt->debugDumpParams();
}
///date copyright
public function copyright($year = 'auto'){
if(intval($year) == 'auto'){ $year = date('Y'); }
if(intval($year) == date('Y')){ echo intval($year); }
if(intval($year) < date('Y')){ echo intval($year) . ' - ' . date('Y'); }
if(intval($year) > date('Y')){ echo date('Y'); }
}
//get ip
public function getip()
{
if (!empty($_SERVER['HTTP_CLIENT_IP']))
{
$ip=$_SERVER['HTTP_CLIENT_IP'];
}
elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR']))
{
$ip=$_SERVER['HTTP_X_FORWARDED_FOR'];
}
else
{
$ip=$_SERVER['REMOTE_ADDR'];
}
return $ip;
}
//filter
function cleanInput($input) {
$search = array(
'@<script[^>]*?>.*?</script>@si', // Strip out javascript
'@<[/!]*?[^<>]*?>@si', // Strip out HTML tags
'@<style[^>]*?>.*?</style>@siU', // Strip style tags properly
'@<![sS]*?--[ tnr]*>@' // Strip multi-line comments
);
$output = preg_replace($search, '', $input);
return $output;
}
}
?>
function login()
{
$class=new content;
global $loginError;
if (isset($_POST['user']))
{
$class->query("SELECT * FROM `tbl_admin` WHERE `user`=:user AND `pass`=:pass LIMIT 1");
$class->bind(':user',$_POST['user']);
$class->bind(':pass',$_POST['pass']);
$row=$class->single();
$res=$class->rowCount();
if($res > 0)
{
$class->query("SELECT * FROM `tbl_admin` WHERE `user`=:user AND `pass`=:pass LIMIT 1");
$class->bind(':user',$_POST['user']);
$class->bind(':pass',$_POST['pass']);
$User = $class->single();
$_SESSION['user'] = $User['user'];
$_SESSION['aid'] = $User['aid'];
$loginError = false;
}
else
{
$loginError = '<span class="loginerror">.نام کاربری یا رمز عبور اشتباه می باشد</span>';
}
}
}
اینم کلاس pdo من :
<?php
class content
{
private $host = DB_HOST;
private $user = DB_USER;
private $pass = DB_PASS;
private $dbname = DB_NAME;
private $stmt;
private $dbh;
private $error;
public function __construct(){
// Set DSN
$dsn = 'mysql:host=' . $this->host . ';dbname=' . $this->dbname;
// Set options
$options = array(
PDO::ATTR_PERSISTENT => true,
PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION,
PDO::MYSQL_ATTR_INIT_COMMAND => "SET NAMES utf8"
);
// Create a new PDO instanace
try{
$this->dbh = new PDO($dsn, $this->user, $this->pass, $options);
/*** close the database connection ***/
//$this->dbh = null;
}
// Catch any errors
catch(PDOException $e){
$this->error = $e->getMessage();
}
}
// query
public function query($query){
$this->stmt = $this->dbh->prepare($query);
}
public function bind($param, $value, $type = null){
if (is_null($type)) {
switch (true) {
case is_int($value):
$type = PDO::PARAM_INT;
break;
case is_bool($value):
$type = PDO::PARAM_BOOL;
break;
case is_null($value):
$type = PDO::PARAM_NULL;
break;
default:
$type = PDO::PARAM_STR;
}
}
$this->stmt->bindValue($param, $value, $type);
}
public function execute(){
return $this->stmt->execute();
}
public function resultset(){
$this->execute();
return $this->stmt->fetchAll(PDO::FETCH_ASSOC);
}
public function single(){
$this->execute();
return $this->stmt->fetch(PDO::FETCH_ASSOC);
}
public function rowCount(){
return $this->stmt->rowCount();
}
public function lastInsertId(){
return $this->dbh->lastInsertId();
}
public function beginTransaction(){
return $this->dbh->beginTransaction();
}
public function endTransaction(){
return $this->dbh->commit();
}
public function cancelTransaction(){
return $this->dbh->rollBack();
}
public function debugDumpParams(){
return $this->stmt->debugDumpParams();
}
///date copyright
public function copyright($year = 'auto'){
if(intval($year) == 'auto'){ $year = date('Y'); }
if(intval($year) == date('Y')){ echo intval($year); }
if(intval($year) < date('Y')){ echo intval($year) . ' - ' . date('Y'); }
if(intval($year) > date('Y')){ echo date('Y'); }
}
//get ip
public function getip()
{
if (!empty($_SERVER['HTTP_CLIENT_IP']))
{
$ip=$_SERVER['HTTP_CLIENT_IP'];
}
elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR']))
{
$ip=$_SERVER['HTTP_X_FORWARDED_FOR'];
}
else
{
$ip=$_SERVER['REMOTE_ADDR'];
}
return $ip;
}
//filter
function cleanInput($input) {
$search = array(
'@<script[^>]*?>.*?</script>@si', // Strip out javascript
'@<[/!]*?[^<>]*?>@si', // Strip out HTML tags
'@<style[^>]*?>.*?</style>@siU', // Strip style tags properly
'@<![sS]*?--[ tnr]*>@' // Strip multi-line comments
);
$output = preg_replace($search, '', $input);
return $output;
}
}
?>