GET and POST methods !

iia86

The HTML page requests the user for a username and a password which is stored in a DB & then verifies the user info and logs in to the system.The whole thing works fine when I use GET method but when I use POST method then the form field values are returned as 'zero' or 'null' in the script.This is strange!

Here's the html form codes,

<html>

<head>

<title>Login</title>

<body bgcolor="black">

<div align="center">

<form action="u_acc_page.php" method="POST">

<img src="uname.png" />

<input type="text" name="username">

<br/>

<img src="passi.png" />

<input type="password" name="pwd">

<br/>
<br/>

<input type="image" src="submit.png" alt="Login">
<a href="main.html"><img src="home.png" alt="Home" /></a>

</form>

<font size="2" face="verdana" color="white">
<marquee bgcolor="black" scrolldelay="120">Important Notes: You can not login if you are not registered to the system yet and do not have a valid account.</marquee>

</font>
</head>
</html>

Here's the php script,

<?php

if ( empty($_POST['username']) || empty($_POST['pwd']) )
{
header("location:p_u_blnk_err.html");
}

else

$connection = mysqli_connect("localhost","root","");

mysqli_select_db($connection,"uvdb");

$query = "SELECT pwd FROM db WHERE uname='".mysqli_real_escape_string($connection,$_POST[username])."'";

$result = mysqli_query($connection,$query);

$array = mysqli_fetch_array($result);

if($_POST['pwd'] == $array['pwd'])
{
print "success!";
}

else
header("location:err_login.html");
die;
?>

What could be the solution?
Peace.

bradgrafelman

$_POST[username] is missing quotes for the index 'username'. This isn't really an error, just a minor coding mistake.
What do you mean they are zero or null? Do you mean that the first if() statement is evaluating to true and that you are being redirected back to p_u_blnk_err.html ? If so, do a [man]var_dump/man on the $_POST array and paste the output here.

iia86

bradgrafelman wrote:
1. $_POST[username] is missing quotes for the index 'username'. This isn't really an error, just a minor coding mistake.

What do you mean they are zero or null? Do you mean that the first if() statement is evaluating to true and that you are being redirected back to p_u_blnk_err.html ? If so, do a [man]var_dump/man on the $_POST array and paste the output here.

Yes that's exactly what I meant with, "they are null of zero".

And the output of var_dump($_POST); is array(0) { }

bradgrafelman

What if instead of clicking the button, you type something into the textboxes and press enter? Is any data posted then?

Have you tried replacing your form with a more simple example:

<form action="u_acc_page.php" method="POST">

Username: <input type="text" name="username"><br/>
Password: <input type="password" name="pwd"><br/>
<br/>
<input type="submit" value="Login">
</form>

If that doesn't work... what version of PHP are you running?

iia86

I tried hitting enter without clicking the button.No data is posted then.
I tried the more simple form code you gave.Tried with clicking the button & hitting enter.No data is posted then either.

I use PHP Version 5.2.4.

iia86

Everything was working fine with POST & GET method before.But I had an exam week and couldnt work on it for like one week.And when I was working on it yesterday again I faced this strange problem.

bradgrafelman

Any chance I can get a link to this page (assuming it's live/accessible via the web)? If you don't feel comfortable posting a link for the world to see, you can PM it to me.

iia86

ermm .. No,I havent uploaded the system to a global server.I run it and work on it and test it on my LAN.It's still under construction.

Anyways,it works fine with GET method.But it will bug me for ages till I find why it isnt working with POST method when everything was fine just somedays ago and no configuration is changed.

Maybe modifying some server configuration can solve this?

bradgrafelman

What webserver are you running? If Apache, do you have any .htaccess files in this directory (or the directories above it in the web path)? Can you attach a copy of your httd.conf file (or PM it to me if you don't want to post it for the world to see)?