Menu
FolkIES,
I really need to build a login page using the php’s password_verify_() function.
**Deprecated: password_verify(): Passing null to parameter #1 ($password) of type string is deprecated in C:Program FilesXampphtdocsWorkbuzzTemplateslogin_TEMPLATE.php on line 117
Deprecated: password_verify(): Passing null to parameter #2 ($hash) of type string is deprecated in C:Program FilesXampphtdocsWorkbuzzTemplateslogin_TEMPLATE.php on line 117**
Why is that error ?
The details on Mysql Looks like this:
id | domain | password
0 | gmail.com | 373b29d2837e83b9ca5cec712a5985843df271cc
Obviously, password is hashed using sha_256.
[code]
ini_set(“display_errors”,1);
ini_set(“display_startup_errors”,1);
error_reporting(E_ALL);
echo login_form();
if($_SERVER[‘REQUEST_METHOD’] === ‘POST’)
{
echo __LINE__; echo ‘<br>’;//DELETE
check_user_input();
echo __LINE__; echo ‘<br>’;//DELETE
process_login_form();
echo __LINE__; echo ‘<br>’;//DELETE
}
function login_form()
{
echo $login_form =
‘
<div name=”center pane” id=”center pane” align=”center” size=”50px” width=”33%”>
<form method=”POST” action=”” name=”login_form” id=”login_form” width=”50%”>
<fieldset>
<label for=”domain”>Domain</label>
<input type=”text” name=”domain” id=”domain” size=”50″ minlength=”5″ maxlength=”253″ title=”Input your Domain” placeholder=”yourdomain.tld”>
<br>
<label for=”password”>Password</label>
<input type=”text” name=”password” id=”password” size=”50″ minlength=”8″ maxlength=”25″ title=”Input your Password” placeholder=”alpha-numerical-chars”>
<br>
</fieldset>
<fieldset>
<button type=”submit” name=”login” id=”login” title=”Submit Form”>Login!</button>
</fieldset>
</form>
</div>
‘;
}
function check_user_input()
{
if(!EMPTY($_POST[‘domain’]))
{
echo __LINE__; echo ‘<br>’;//DELETE
$domain = trim($_POST[‘domain’]);
}
elseif(!EMPTY($_POST[‘domain_email’]))
{
echo __LINE__; echo ‘<br>’;//DELETE
$domain_email = trim($_POST[‘domain_email’]);
}
else
{
die(‘Input your Domain’);
}
if(!EMPTY($_POST[‘password’]))
{
echo __LINE__; echo ‘<br>’;//DELETE
$hashed_password = hash(‘sha256’,$_POST[‘password’]);
}
else
{
die(‘Input your Password’);
}
}
function process_login_form()
{
echo __LINE__; echo ‘<br>’;//DELETE
Global $domain;
Global $password; //DELETE
Global $hashed_password;
//Query DB.
//Check if User already registered or not.
mysqli_report(MYSQLI_REPORT_ERROR|MYSQLI_REPORT_STRICT);
$conn = mysqli_connect(“localhost”,”root”,””,”buzz”); //mysqli_connect(“server”,”user”,”password”,”db”);
$stmt = mysqli_stmt_init($conn);
$sql_count = “SELECT password FROM domains WHERE domain = ? OR domain_email = ?”;
if(!mysqli_stmt_prepare($stmt,$sql_count))
{
echo __LINE__; echo ‘<br>’;//DELETE
echo ‘Mysqli Error: ‘ .mysqli_stmt_error(); //DEV MODE.
echo ‘<br>’;
echo ‘Mysqli Error No: ‘ .mysqli_stmt_errno(); //DEV MODE.
echo ‘<br>’;
die(‘Registration a Failure!’);
}
else
{
echo __LINE__; echo ‘<br>’;//DELETE
echo $domain = $_POST[‘domain’]; echo ‘<br>’;//DELETE
echo $password = $_POST[‘password’]; echo ‘<br>’;//DELETE
mysqli_stmt_bind_param($stmt,”ss”,$domain,$domain_email);
mysqli_stmt_execute($stmt);
mysqli_stmt_bind_result($stmt,$db_password);
mysqli_stmt_fetch($stmt);
if(!password_verify($password,$db_password)) //FINISH THIS LINE.
{
echo __LINE__; echo ‘<br>’;//DELETE
echo ‘password: ‘ .$password; echo ‘<br>’;
echo ‘hashed password: ‘ .$hashed_password; echo ‘<br>’;
echo ‘db_password: ‘ .$db_password; echo ‘<br>’;
die(‘Incorrect User Credentials!’);
}
echo __LINE__; echo ‘<br>’;//DELETE
mysqli_stmt_close($stmt);
mysqli_close($conn);
echo __LINE__; echo ‘<br>’;//DELETE
echo ‘password: ‘ .$password; echo ‘<br>’;
echo ‘hashed password: ‘ .$hashed_password; echo ‘<br>’;
echo ‘db_password: ‘ .$db_password; echo ‘<br>’;
unset_sessions();
echo __LINE__; echo ‘<br>’;//DELETE
echo ‘password: ‘ .$password; echo ‘<br>’;
echo ‘hashed password: ‘ .$hashed_password; echo ‘<br>’;
echo ‘db_password: ‘ .$db_password; echo ‘<br>’;
header(‘location: home.php’);
exit;
}
}