如何在单击Submit后停止“if(isset($_POST[‘form-Submit’])”重定向?
如何在单击Submit后停止“if(isset($_POST[‘form-Submit’])”重定向?
提问于 2017-04-01 11:24:17
这些天来,我对密码恢复程序有一个严重的问题。当我在reset.php?recoverykey=6602f445b4736ef3363a31e05750022d上编写reset.php?recoverykey=6602f445b4736ef3363a31e05750022d程序的时候。当某人单击表单的Submit按钮时,它应该停留在相同的页面进行处理,即在reset.php?recoverykey=6602f445b4736ef3363a31e05750022d上。但是,它将我们带到reset.php,在那里,由于变量recoverykey是空的,所以代码无法工作。即使在使用header("Location: reset.php?recoverykey=$recovery_code");之后,也没有什么效果。我希望它停留在它甚至在点击提交按钮后,以便PHP可以检查密码和确认密码字段是否相同或不正确的地方,根据程序。
以下是我在reset.php中的所有代码
<?php
ob_start();
session_start();
?>
<!DOCTYPE html>
<head>
<meta name="robots" content="noindex" />
<link rel="stylesheet" type="text/css" href="assets/scripts/css/styles.css" />
<title>Reset Password</title>
</head>
<?php
include('db-config.php');
function show_change_pass_form(){
?>
<form class="iqform" method="post" action="<?php echo htmlspecialchars($_SERVER['PHP_SELF']); ?>" autocomplete="off">
<h3>Change your Password</h3>
<label><span class="text-danger"><?php echo $passError ?></span><input type="password" placeholder="New Password" name="new-pass" required /></label>
<label><span class="text-danger"><?php echo $Con_passError; ?></span><input type="password" placeholder="Confirm Password" name="confirm-new-pass" required /></label>
<input type="submit" value="Change Password" name="pass-submit" />
</form>
<?php
}
$recovery_code = $_GET['recoverykey'];
if(empty($recovery_code)){
echo 'Looks like you landed elsewhere.';
}
$sql = "SELECT * FROM RegisteredMembers WHERE RecoveryCode='$recovery_code'";
$result = mysql_query($sql);
if($result){
$count = mysql_num_rows($result);
if($count==1){
if( isset($_POST['pass-submit']) ){
header("Location: reset.php?recoverykey=$recovery_code");
$pass = $_POST['new-pass'];
$Con_pass = $_POST['confirm-new-pass'];
// Confirmation
if($pass==$Con_pass){
$sql1 = "UPDATE RegisteredMembers SET password = '$pass' WHERE RecoveryCode = '$recovery_code'";
$output = mysql_query($sql1);
echo $output;
$error = false;
$passError = "Password successfully changed. Feel free to Log In.";
} else if(!($pass==$Con_pass)){
$error = true;
$Con_passError = "The Password isn't matching. Be sure you remember the New Password.";
} else if(empty($pass)){
$error = true;
$passError = "Please do not keep the password empty.";
} else if(empty($Con_pass)){
$error = true;
$Con_passError = "Please do not keep this field empty.";
}
}
show_change_pass_form();
} else if($count==0) {
echo "No such recovery code, please don't try Spamming around!";
}
}
?>
<?php ob_end_flush(); ?>
下面是我在forget.php中的代码(我添加了它,尽管它不是很多必要的):
<?php
ob_start();
session_start();
include('db-config.php');
if(isset($_POST['forgot-submit'])){
$recovery_user = $_POST['forgot-email'];
$query = "SELECT * FROM RegisteredMembers WHERE userEmail='$recovery_user'";
$output = mysql_query($query);
$count = mysql_num_rows($output);
$row = mysql_fetch_array($output);
if($count==1){
$error = false;
// Mail the Recovery link
$recovery_code = md5(uniqid(rand()));
$mTo = $recovery_user;
$mFrom = 'From: '.$website_details['name'].' Team '.'<'.$website_details['email'].'>';
$mSubject = $website_details['name']." Account recovery Mail";
// Message
$mMsg[0] = "Hi ".$row['fname'].", \r\n";
$mMsg[1] = "This is the password recovery email which you have requested just few minutes before. <b>(If you havn't requested, you may kindly ingnore this Email)</b>";
$mMsg[2] = "Here's your <a href='$web_path/reset.php?recoverykey=$recovery_code'>Password Recovery Link</a>. Clicking it would allow you to change your existing password into a new one.";
$mFinMsg = $mMsg[0].$mMsg[1].$mMsg[2];
$sendRecMail = mail( $mTo , $mSubject , $mFinMsg , $mFrom );
// Add recovery code to Database
$mysql = "UPDATE RegisteredMembers SET RecoveryCode='$recovery_code' WHERE userEmail='$recovery_user'";
$result = mysql_query($mysql);
if($result){
$error = false;
$forgotEmailMsg = "Thanks, Check your Email for recovering your password.";
} else{
echo "Looks like there's a Disturbance and Load on server. Try again later.";
}
} else if(strlen($recovery_user)==0){
$error = true;
$forgotEmailMsg = "Please do not leave this field empty.";
} else{
$error = true;
$forgotEmailMsg = "No such Email found in Database.";
}
}
?>
<!DOCTYPE html>
<html>
<head>
<meta name="robots" content="noindex" />
<link rel="stylesheet" type="text/css" href="assets/scripts/css/styles.css" />
<title>Password Recovery</title>
</head>
<body>
<form class="iqform" method="post" action="<?php echo htmlspecialchars($_SERVER['PHP_SELF']); ?>" autocomplete="off">
<h3>Password Recovery</h3>
<label><span class="text-danger"><?php echo $forgotEmailMsg; ?></span><input type="email" placeholder="Your registered Email" name="forgot-email" required /></label>
<input type="submit" value="Next" name="forgot-submit" />
</form>
</body>
</html>
<?php ob_end_flush(); ?>
Forget.php很好,但是也许你可以从中引用一些东西。
回答 2
Stack Overflow用户
回答已采纳
发布于 2017-04-01 15:10:32
我不认为您需要使用头函数重定向用户。在reset.php中,在表单操作中,您应该替换:
<?php echo htmlspecialchars($_SERVER['PHP_SELF']); ?>通过以下方式:
<?php echo $_SERVER['PHP_SELF'] . '?' . $_SERVER['QUERY_STRING']; ?>PHP_SELF只返回脚本名,而不返回查询字符串,因此您的页面在url中将没有恢复键字段。
您不应该使用mysql_*函数,因为Php扩展已被废弃,并且已从Php 7中删除。
此外,ob_start()、ob_end_flush()和session_start()在reset.php中也不需要
Stack Overflow用户
发布于 2017-04-01 11:28:47
if(isset($_POST['submit'])){
header("Location:https://www.example.com/subname/");
exit; // Exit should always be called after a redirection to
// cease further PHP code execution.
}在提交后使用此代码进行rediect。
页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://stackoverflow.com/questions/43156205
复制相关文章
相似问题
腾讯云开发者
Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有
深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 
粤公网安备44030502008569号
腾讯云计算(北京)有限责任公司 京ICP证150476号 | 京ICP备11018762号