MySqHell

Anon

Im a newbie as im sure your aware by the Subjectline. Im trying to check form fields Entered against MYSQL and im having hell.
The Problem is that it does the THEN statement MANY TIMES.. How can i have it just return the query Once and then Move on? LOL

<?
$Link = mysql_connect ($Host, $DBUser, $DBPass);
$result = mysql_db_query ($DBName, "select * from my_Table");
while ($row = mysql_fetch_object ($result)) {
$Username=$row->USERID;

If (${user} == $username){
echo "this is a test";
}

}
mysql_free_result ($result);
?>

Anon

What are you trying to do? Create a password protected area with MySQL?

Give me some more insight into what you are trying to accomplish. 🙂

Make it a little easier for me.

-Travis

Anon

HEHE sure..

What im doing is a PASSWORD reset feature.

The username puts in their Unsername, COuntry, State and ZIp and if those all come out Right from the DB it passes them to the next page to ask them the Q and A.

That enough info? :-)

Anon

Ok, then why not do this.

$sqlQuery = mysql_query("select password where username = '$username' and country = '$country' and state = '$state' and zip = '$zip'");
$rows = mysql_num_rows($sqlQuery);

if ($rows > 0) {
// Go to password info
}
else {
echo "Failed, invalid information.";
}

Also, I would consider having a email option... Rather than them putting in all that into, have them put in a email address, if the email address exists in the user database have it send the username and password to that e-mail address.

Just my thoughts.

Good luck,
-Travis

Anon

Well they do still have to answer the HintQ Correctly before they can change their PW.
DO you think this is a security risk? I figure if they can get their username, country, STate, and ZIP right, THEN answer the hint Q right then its most likely them..

Im just using Hotmail as a guideline here so if you have any specific Suggestions your welcome to share them :-)