CloudyWater · January 31, 2017 00:35
diff --git a/NewGetUser.php b/NewGetUser.php
 <?php
 	$dsn = 'mysql:host=localhost;dbname=dbname';
 	$username = 'username';
 	$password = 'password';
 	
 	$userlogin = $_GET['username'];
 	$passwordAttempt = $_GET['password'];

 	try
 	{
 		$dbh = new PDO($dsn, $username, $password);
 		$dbh->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
 		$statement = $dbh->prepare ("SELECT * FROM users WHERE username=:username;");
 		$statement->bindParam (':username', $userlogin);
 		$statement->execute();

 		$result = $statement->fetch(PDO::FETCH_ASSOC);
    
 		if (password_verify($passwordAttempt, $result['password']))
 		{
 			echo "Password Verified!";
 		}
 		else
 		{
 			echo "Invalid Username or Password";
 		}
 	}
 	catch (PDOException $e)
 	{
 		echo "Error: " . $e->getMessage () . "<br/>";
 	}
 ?>
	<?php
	$dsn = 'mysql:host=localhost;dbname=dbname';
	$username = 'username';
	$password = 'password';

	$userlogin = $_GET['username'];
	$passwordAttempt = $_GET['password'];

	try
	{
	$dbh = new PDO($dsn, $username, $password);
	$dbh->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
	$statement = $dbh->prepare ("SELECT * FROM users WHERE username=:username;");
	$statement->bindParam (':username', $userlogin);
	$statement->execute();

	$result = $statement->fetch(PDO::FETCH_ASSOC);

	if (password_verify($passwordAttempt, $result['password']))
	{
	echo "Password Verified!";
	}
	else
	{
	echo "Invalid Username or Password";
	}
	}
	catch (PDOException $e)
	{
	echo "Error: " . $e->getMessage () . "<br/>";
	}
	?>