<?php
error_reporting(E_ALL);
ini_set("display_errors", 1);
define('Dir',__DIR__);
require_once(Dir.'/PDO.Class.php');
define("HOST", "localhost");
define("USER", "drb");
define("PASSWORD", "zensiert");
define("DATABASE", "drb");
if(isset($_POST["Username"], $_POST["Password"]))
{
Connection::Connect(HOST, USER, PASSWORD, DATABASE);
$Query = "SELECT COUNT(*) as Counter FROM benutzer WHERE Benutzername= :User AND Passwort= :Password";
$Params = array(':User' => $_POST["Username"], ':Password' => $_POST["Password"]);
$Result = Connection::Execute($Query, $Params);
if($Result[0]["Counter"] == 0) echo "Fehler";
else echo "Login Erfolgreich";
}else echo "Keine Daten empfangen";
Alles anzeigen
und
<?php
class Connection{
protected static $Database;
public static function Connect($Host, $User, $Password, $database = null){
try{
$database = ($database) ? ';dbname=' . $database : '';
self::$Database = new PDO('mysql:host=' . $Host . $database, $User, $Password);
return;
}catch (PDOException $e){
SystemException::ShowException($e);
}
}
public static function Disconnect(){
self::$Database = null;
}
public static function Execute($SQL, $Params = null){
$Params_Copy = $Params;
$Connection = self::$Database->prepare($SQL);
$Bind_Param = ($Params !== null and (strpos($SQL, ' LIMIT :') !== false or strpos($SQL, ' limit :') !== false)) ? true : false;
if($Bind_Param and is_array($Params)){
foreach($Params as $Key => &$Val){
if(is_string($Val))
$Connection->bindParam($Key, $Val, PDO::PARAM_STR);
elseif(is_bool($Val))
$Connection->bindParam($Key, $Val, PDO::PARAM_BOOL);
elseif (is_null($Val))
$Connection->bindParam($Key, $Val, PDO::PARAM_NULL);
elseif (is_numeric($Val))
$Connection->bindParam($Key, $Val, PDO::PARAM_INT);
}
$Params = null;
}
if(!$Connection->execute($Params)){
$Error_Info = $Connection->errorInfo();
$SQL_State = $Error_Info[0];
$ErrorCode = $Error_Info[1];
$ErrorMessage = $Error_Info[2];
$SQL_State = '(SQLSTATE:' . $SQL_State . ')';
$ErrorCode = '(ErrorCode:' . $ErrorCode . ')';
$ErrorMessage = '(ErrorMessage:' . $ErrorMessage . ')';
$Error = $SQL_State . '|' . $ErrorCode . '|' . $ErrorMessage;
$SQL = preg_replace('/\s+/', ' ', $SQL);
$Params_String = '';
if($Params_Copy){
foreach($Params_Copy as $K => $v){
$Params_String .=($Params_String === '') ? '' : '; ';
$Params_String .=((strpos($K, ':') !== False) ? '' : ':') . $K . ' => ' . $v;
}
}
$Error .= 'Query: ' . $SQL . 'Params: ' .$Params_String;
SystemException::ShowCustomException($SQL_State, $ErrorCode, $ErrorMessage);
}
$result = null;
while($row = $Connection->fetch(PDO::FETCH_ASSOC)){
if($result === null)
$result = array();
$result[] = $row;
}
$Connection = null;
return $result;
}
public static function LasInsertID(){
return self::$Database->lastInsertId();
}
}
Alles anzeigen