Login form allows anyone...
Posted: Mon May 18, 2009 3:43 pm
Heya,
So I wrote a simple login form but for some reason it's allowing users who don't exist to login... I don't even know how that's possible but I need to fix that. Can someone help?
I think that code is what's not working. I just need to have the form data check against the database to see if the record exists. So if the password is "1" and the username is "2" then it should find "2" and see if the password from the form is "1".
Does that make sense? Thanks!
So I wrote a simple login form but for some reason it's allowing users who don't exist to login... I don't even know how that's possible but I need to fix that. Can someone help?
Code: Select all
if ($row->client-password != $client_password) {
Does that make sense? Thanks!