PHP Tutorial
Loading

Authentication with PHP and SQL

In this lesson, you will learn the basic concept of authentication with PHP.

Lesson Goals

  • To authenticate users with a login form.

Lesson Activities

  1. A Database-less Login Form

A Database-less Login Form

Below is a simple login form that uses a hard-coded username and password.

Code Sample:

Authentication/Demos/SimpleLogin.php 
<!DOCTYPE HTML>
<html>
<head>
<meta charset="UTF-8">
<title>Login Page</title>
</head>
<body>
<?php
	require 'Includes/Header.php';

	$msg='';
	$email = '';
	if (array_key_exists('LoggingIn',$_POST))
	{
		$email = $_POST['Email'];
		$pw = $_POST['Password'];
		if ($email == '[email protected]' && $pw == 'cowboy')
		{
			echo '<div align="center">Success</div>';
		}
		else
		{
			echo '<div align="center">Login Failed</div>';
			unset($_POST['LoggingIn']);
		}
	}

	if (!array_key_exists('LoggingIn',$_POST))
	{
?>

<div align="center">

	<h2>Log in</h2>
	<form method="post" action="SimpleLogin.php">
	<input type="hidden" name="LoggingIn" value="true">
		<table>
		<tr>
			<td>Email:</td>
			<td><input type="text" name="Email"
					value="<?php echo $email?>" size="25"></td>
		</tr>
		<tr>
			<td>Password:</td>
			<td>
			<input type="password" name="Password" size="10">
			</td>
		</tr>
		<tr>
			<td align="right" colspan="2">
			<input type="submit" value="Log in">
			</td>
		</tr>
		</table>
	</form>
</div>
<?php
	}
	require 'Includes/Footer.php';
?>
</body>
</html>

This page contains an HTML login form, which submits to itself (i.e, the action points to the same page). A hidden field, LoggingIn, is passed to the server when the user submits the form. The script checks to see if LoggingIn exists in the $_POST array. If it does, it processes the form input:

$email = $_POST['Email'];
$pw = $_POST['Password'];
if ($email == '[email protected]' && $pw == 'cowboy')
{
	echo '<div align="center">Success</div>';
}
else
{
	echo '<div align="center">Login Failed</div>';
	unset($_POST['LoggingIn']);
}

This code simply checks to see if the user's email and password match the hard-coded values ([email protected] and cowboy). If they do, it outputs a "success" message. If they don't, it outputs a "failed" message and removes LoggingIn from the $_POST array, so that the form will be displayed again.

Continue to the next lesson on Regular Expressions »

Table of Contents

PHP Basics
  1. How PHP Works
  2. The php.ini File
  3. Basic PHP Syntax
  4. Variables
  5. PHP Operators
  6. Creating Dynamic Pages
  7. Extra: Variable Scope and Superglobals
Flow Control
  1. Conditional Processing
  2. Loops
Arrays
  1. Indexed Arrays
  2. Associative Arrays
  3. Two-dimensional Arrays
  4. Array Manipulation Functions
PHP and HTML Forms
  1. HTML Forms
String Manipulation
  1. Formatting Strings
  2. Magic Quotes
Reusing Code and Writing Functions
  1. Including Files
  2. User Functions
  3. Form Processing
Managing Data
  1. Querying a Database
MDB2
  1. Using a Database Abstraction Layer
  2. Using MDB2
Authentication with PHP and SQL
  1. A Database-less Login Form
Regular Expressions
  1. What is a Regular Expression
  2. Form Validation Functions with Regular Expressions
  3. Perl-compatible Regular Expression Functions
Session Control and Cookies
  1. Sessions
  2. Cookies
Sending Email with PHP
  1. mail()
  2. PHPMailer
File System Management
  1. Opening a File
  2. Reading from a File
  3. Writing to a File
  4. File Locking
  5. Uploading Files via an HTML Form
  6. Getting File Information
  7. More File Functions
  8. Directory Functions

This page was last updated on 2023-04-12

All pages and graphics in this PHP Tutorial is copyright 2013 and are the property of learnphp-tutorial.com unless otherwise specified. The purpose of this website is to help you learn PHP on your own and use of the website implies your agreement to our Terms of Service.