Hey everyone,
i'm trying to set up a PHP login using MySQL, i've never used MySQL and am finding it quite hard to workout. I'm using the script from this site (http://www.evolt.org/article/comment/17/60265/index.html) but setting up the mySQL db doesn't seem to work, it keeps saying "ERROR 1046 (3D000): No datebase selected" when i type in -
CREATE TABLE users (
username varchar(30),
password varchar(32));
I've got MySQL 5.0. If someone could give me a step by step gide to setting it up, and tell me what i need to change what to in this bit.
<?

/**
* Connect to the mysql database.
*/
$conn = mysql_connect("localhost", "your_username", "your_password") or die(mysql_error());
mysql_select_db('your_database', $conn) or die(mysql_error());

?>
it would be much appreciated. :)

Did you already create the database?

And also, that mySQL code looks all messed up... try this:


CREATE TABLE `users` (
`username` varchar(30),
`password` varchar(32)
) TYPE=MyISAM;

Did you already create the database?

And also, that mySQL code looks all messed up... try this:


CREATE TABLE `users` (
`username` varchar(30),
`password` varchar(32)
) TYPE=MyISAM;


No, i've just intaled MySQL other than that i haven't done much. I don't know how to create a database, or anything else. i've just tryed that amended code, and that doesn't seem to work ether... help...
p.s. thank for you quick reply.

OK. First you need to create the database so that you will have something to select. Here is the mySQL query that will create the database:


CREATE DATABASE `db_name`


Then, you should just have to run your CREATE TABLE code and change your PHP code and it should work!

OK. First you need to create the database so that you will have something to select. Here is the mySQL query that will create the database:


CREATE DATABASE `db_name`


Then, you should just have to run your CREATE TABLE code and change your PHP code and it should work!

I've created the database now :) CREATE DATABASE `db_login` that worked fine, but i still can't get the rest to work, can you check i'm doing it right?
this is how it looks.

mysql> CREATE DATABASE 'db_login'
-> CREATE TABLE 'users' (
-> 'username' varchar(30),
-> 'password' varchar(32)
-> ) TYPE=MyISAM;
ERROR 1064 (42000): You have an error in your SQL syntax; check the manual that
corresponds to your MySQL server version for the right syntax to use near ''db_l
ogin'
CREATE TABLE 'users' (
'username' varchar(30),
'password' varchar(32)' at line 1

thanks for your help. :)

After the CREATE DATABASE db_login // no quotes
You then have to change to the database..
USE db_login;

// no quotes

CREATE TABLE users (
username varchar(30),
password varchar(32)
) TYPE=MyISAM;

You should also have a Primary Key say user_id smallint(3) auto increment,

That worked! :)

Thanks!!!

Now do i just copy the db_login folder to my surver and change 'your_database' to 'db_login' in this script?

<?

/**
* Connect to the mysql database.
*/
$conn = mysql_connect("localhost", "your_username", "your_password") or die(mysql_error());
mysql_select_db('your_database', $conn) or die(mysql_error());

?>

Well not knowing what your set up is, yes you can change the 'your_database' to db_login..This is what I would do...

DEFINE ('DB_USER', 'username');
DEFINE ('DB_PASSWORD', 'password');
DEFINE ('DB_HOST', 'localhost');
DEFINE ('DB_NAME', 'db_login');

//conection to database established

$db=@mysql_connect(DB_HOST, DB_USER, DB_PASSWORD, DB_NAME) OR Die ('Could not connect to MySql server ' . mysql_error());

// Change to the database name that you want

mysql_select_db(DB_NAME) OR Die ('Could not change to database: ' . mysql_error());

the login still dosen't quite work, this is what i've done.

mysql> CREATE DATABASE db_login;
Query OK, 1 row affected (0.00 sec)

mysql> USE db_login;
Database changed
mysql> CREATE TABLE users (
-> username varchar(30),
-> password varchar(32)
-> ) TYPE=MyISAM;
Query OK, 0 rows affected, 1 warning (0.05 sec)

I then copied the folder call db_login that contained 4 files (db.opt, users.frm, users.MYD and users.MYI) to my surver along with my 4 PHP files (database.php, login.php, logout.php and register.php)

database.php
<?

/**
* Connect to the mysql database.
*/
$conn = mysql_connect("localhost", "your_username", "your_password") or die(mysql_error());
mysql_select_db('your_database', $conn) or die(mysql_error());

?>

register.php
<?
session_start();
include("database.php");

/**
* Returns true if the username has been taken
* by another user, false otherwise.
*/
function usernameTaken($username){
global $conn;
if(!get_magic_quotes_gpc()){
$username = addslashes($username);
}
$q = "select username from users where username = '$username'";
$result = mysql_query($q,$conn);
return (mysql_numrows($result) > 0);
}

/**
* Inserts the given (username, password) pair
* into the database. Returns true on success,
* false otherwise.
*/
function addNewUser($username, $password){
global $conn;
$q = "INSERT INTO users VALUES ('$username', '$password')";
return mysql_query($q,$conn);
}

/**
* Displays the appropriate message to the user
* after the registration attempt. It displays a
* success or failure status depending on a
* session variable set during registration.
*/
function displayStatus(){
$uname = $_SESSION['reguname'];
if($_SESSION['regresult']){
?>

<h1>Registered!</h1>
<p>Thank you <b><? echo $uname; ?></b>, your information has been added to the database, you may now <a href="main.php" title="Login">log in</a>.</p>

<?
}
else{
?>

<h1>Registration Failed</h1>
<p>We're sorry, but an error has occurred and your registration for the username <b><? echo $uname; ?></b>, could not be completed.<br>
Please try again at a later time.</p>

<?
}
unset($_SESSION['reguname']);
unset($_SESSION['registered']);
unset($_SESSION['regresult']);
}

if(isset($_SESSION['registered'])){
/**
* This is the page that will be displayed after the
* registration has been attempted.
*/
?>

<html>
<title>Registration Page</title>
<body>

<? displayStatus(); ?>

</body>
</html>

<?
return;
}

/**
* Determines whether or not to show to sign-up form
* based on whether the form has been submitted, if it
* has, check the database for consistency and create
* the new account.
*/
if(isset($_POST['subjoin'])){
/* Make sure all fields were entered */
if(!$_POST['user'] || !$_POST['pass']){
die('You didn\'t fill in a required field.');
}

/* Spruce up username, check length */
$_POST['user'] = trim($_POST['user']);
if(strlen($_POST['user']) > 30){
die("Sorry, the username is longer than 30 characters, please shorten it.");
}

/* Check if username is already in use */
if(usernameTaken($_POST['user'])){
$use = $_POST['user'];
die("Sorry, the username: <strong>$use</strong> is already taken, please pick another one.");
}

/* Add the new account to the database */
$md5pass = md5($_POST['pass']);
$_SESSION['reguname'] = $_POST['user'];
$_SESSION['regresult'] = addNewUser($_POST['user'], $md5pass);
$_SESSION['registered'] = true;
echo "<meta http-equiv=\"Refresh\" content=\"0;url=$HTTP_SERVER_VARS[PHP_SELF]\">";
return;
}
else{
/**
* This is the page with the sign-up form, the names
* of the input fields are important and should not
* be changed.
*/
?>

<html>
<title>Registration Page</title>
<body>
<h1>Register</h1>
<form action="<? echo $HTTP_SERVER_VARS['PHP_SELF']; ?>" method="post">
<table align="left" border="0" cellspacing="0" cellpadding="3">
<tr><td>Username:</td><td><input type="text" name="user" maxlength="30"></td></tr>
<tr><td>Password:</td><td><input type="password" name="pass" maxlength="30"></td></tr>
<tr><td colspan="2" align="right"><input type="submit" name="subjoin" value="Join!"></td></tr>
</table>
</form>
</body>
</html>


<?
}
?>

login.php
<?

/**
* Checks whether or not the given username is in the
* database, if so it checks if the given password is
* the same password in the database for that user.
* If the user doesn't exist or if the passwords don't
* match up, it returns an error code (1 or 2).
* On success it returns 0.
*/
function confirmUser($username, $password){
global $conn;
/* Add slashes if necessary (for query) */
if(!get_magic_quotes_gpc()) {
$username = addslashes($username);
}

/* Verify that user is in database */
$q = "select password from users where username = '$username'";
$result = mysql_query($q,$conn);
if(!$result || (mysql_numrows($result) < 1)){
return 1; //Indicates username failure
}

/* Retrieve password from result, strip slashes */
$dbarray = mysql_fetch_array($result);
$dbarray['password'] = stripslashes($dbarray['password']);
$password = stripslashes($password);

/* Validate that password is correct */
if($password == $dbarray['password']){
return 0; //Success! Username and password confirmed
}
else{
return 2; //Indicates password failure
}
}

/**
* checkLogin - Checks if the user has already previously
* logged in, and a session with the user has already been
* established. Also checks to see if user has been remembered.
* If so, the database is queried to make sure of the user's
* authenticity. Returns true if the user has logged in.
*/
function checkLogin(){
/* Check if user has been remembered */
if(isset($_COOKIE['cookname']) && isset($_COOKIE['cookpass'])){
$_SESSION['username'] = $_COOKIE['cookname'];
$_SESSION['password'] = $_COOKIE['cookpass'];
}

/* Username and password have been set */
if(isset($_SESSION['username']) && isset($_SESSION['password'])){
/* Confirm that username and password are valid */
if(confirmUser($_SESSION['username'], $_SESSION['password']) != 0){
/* Variables are incorrect, user not logged in */
unset($_SESSION['username']);
unset($_SESSION['password']);
return false;
}
return true;
}
/* User not logged in */
else{
return false;
}
}

/**
* Determines whether or not to display the login
* form or to show the user that he is logged in
* based on if the session variables are set.
*/
function displayLogin(){
global $logged_in;
if($logged_in){
echo "<h1>Logged In!</h1>";
echo "Welcome <b>$_SESSION[username]</b>, you are logged in. <a href=\"logout.php\">Logout</a>";
}
else{
?>

<h1>Login</h1>
<form action="" method="post">
<table align="left" border="0" cellspacing="0" cellpadding="3">
<tr><td>Username:</td><td><input type="text" name="user" maxlength="30"></td></tr>
<tr><td>Password:</td><td><input type="password" name="pass" maxlength="30"></td></tr>
<tr><td colspan="2" align="left"><input type="checkbox" name="remember">
<font size="2">Remember me next time</td></tr>
<tr><td colspan="2" align="right"><input type="submit" name="sublogin" value="Login"></td></tr>
<tr><td colspan="2" align="left"><a href="register.php">Join</a></td></tr>
</table>
</form>

<?
}
}


/**
* Checks to see if the user has submitted his
* username and password through the login form,
* if so, checks authenticity in database and
* creates session.
*/
if(isset($_POST['sublogin'])){
/* Check that all fields were typed in */
if(!$_POST['user'] || !$_POST['pass']){
die('You didn\'t fill in a required field.');
}
/* Spruce up username, check length */
$_POST['user'] = trim($_POST['user']);
if(strlen($_POST['user']) > 30){
die("Sorry, the username is longer than 30 characters, please shorten it.");
}

/* Checks that username is in database and password is correct */
$md5pass = md5($_POST['pass']);
$result = confirmUser($_POST['user'], $md5pass);

/* Check error codes */
if($result == 1){
die('That username doesn\'t exist in our database.');
}
else if($result == 2){
die('Incorrect password, please try again.');
}

/* Username and password correct, register session variables */
$_POST['user'] = stripslashes($_POST['user']);
$_SESSION['username'] = $_POST['user'];
$_SESSION['password'] = $md5pass;

/**
* This is the cool part: the user has requested that we remember that
* he's logged in, so we set two cookies. One to hold his username,
* and one to hold his md5 encrypted password. We set them both to
* expire in 100 days. Now, next time he comes to our site, we will
* log him in automatically.
*/
if(isset($_POST['remember'])){
setcookie("cookname", $_SESSION['username'], time()+60*60*24*100, "/");
setcookie("cookpass", $_SESSION['password'], time()+60*60*24*100, "/");
}

/* Quick self-redirect to avoid resending data on refresh */
echo "<meta http-equiv=\"Refresh\" content=\"0;url=$HTTP_SERVER_VARS[PHP_SELF]\">";
return;
}

/* Sets the value of the logged_in variable, which can be used in your code */
$logged_in = checkLogin();

?>

logout.php
<?
session_start();
include("database.php");
include("login.php");

/**
* Delete cookies - the time must be in the past,
* so just negate what you added when creating the
* cookie.
*/
if(isset($_COOKIE['cookname']) && isset($_COOKIE['cookpass'])){
setcookie("cookname", "", time()-60*60*24*100, "/");
setcookie("cookpass", "", time()-60*60*24*100, "/");
}

?>

<html>
<title>Logging Out</title>
<body>

<?

if(!$logged_in){
echo "<h1>Error!</h1>\n";
echo "You are not currently logged in, logout failed. Back to <a href=\"main.php\">main</a>";
}
else{
/* Kill session variables */
unset($_SESSION['username']);
unset($_SESSION['password']);
$_SESSION = array(); // reset session array
session_destroy(); // destroy session.

echo "<h1>Logged Out</h1>\n";
echo "You have successfully <b>logged out</b>. Back to <a href=\"main.php\">main</a>";
}

?>

</body>
</html>

I think the problem is in the main database.php, but if you see any other problems please point them out. :)

I then copied the folder call db_login that contained 4 files (db.opt, users.frm, users.MYD and users.MYI) to my surver
I have no idea what they are, did you make the changes in the database.php file? What error messages are you getting?

You have mySQL on your local machine? What server do you have? Is it running? Is PHP installed and have you tested all configurations?

now i'm just getting this "Could not connect to MySql server Can't connect to local MySQL server through socket '/var/lib/mysql/mysql.sock' (2)" in my browser when i go to any of the php pages on my surver... help!

I have no idea what they are, did you make the changes in the database.php file? What error messages are you getting?

You have mySQL on your local machine? What server do you have? Is it running? Is PHP installed and have you tested all configurations?
Yeah i changed the database.php to how you do it.
[PHP DEFINE ('DB_USER', 'username');
DEFINE ('DB_PASSWORD', 'password');
DEFINE ('DB_HOST', 'localhost');
DEFINE ('DB_NAME', 'db_login');

//conection to database established

$db=@mysql_connect(DB_HOST, DB_USER, DB_PASSWORD, DB_NAME) OR Die ('Could not connect to MySql server ' . mysql_error());

// Change to the database name that you want

mysql_select_db(DB_NAME) OR Die ('Could not change to database: ' . mysql_error()); [/PHP]

and have loaded it on to one of my sites that is hosted by Streamline.
i'm now getting the error "Could not connect to MySql server Can't connect to local MySQL server through socket '/var/lib/mysql/mysql.sock' (2)"

So you have uploaded your php scripts to a remote server, but mySQL is on your machine? Does Streamline have mySQL and PHP set up?

So you have uploaded your php scripts to a remote server, but mySQL is on your machine? Does Streamline have mySQL and PHP set up?

I think you might of hit the nail on the head there, my streamline account doesn't have MySQL set up. it has PHP but not MySQL. :(

Thanks for all your help!!! :)

You're welcome, you can always install everything on your own computer nad do testing there