PHP - mysql aes_decrypt

Question

james1700 0 Newbie Poster

16 Years Ago

Description:
------------
in my php pages i am using aes_encrypt which works fine. The issue i am
having is with aes_decrypt. I have been searching for days to try and
resolve this problem but need more help. The following string in my php
will not bring any results back at all. I know it does work because
running it in mysql direct works.

simple sql string:
SELECT AES_DECRYPT(password, 'keyhere') FROM accounts where id = '11';

The full code is below - this does bring back all the other details apart from the password again.

Reproduce code:
---------------

$sql = "SELECT userId, name, email, aes_decrypt(password,'keyhere'),
country FROM accounts where id='". $_SESSION['member_ID'] ."'";

$result = mysql_query($sql);

if (!$result) {
    echo "Could not successfully run query ($sql) from DB: " .
mysql_error();
    exit;
}

if (mysql_num_rows($result) == 0) {
    echo "No rows found, nothing to print so am exiting";
    exit;
}
	while ($row = mysql_fetch_array($result))

{
     echo $row["userId"];
     echo $row["name"];
     echo $row["email"];
	 echo $row["password"];
	 echo $row["country"];
}

mysql_free_result($result);
mysql_close($conn);

Expected result:
----------------
123456 john john@email.com 'password should be here' UK

Actual result:
--------------
123456johnjohn@email.comUK

mysql php

3 Contributors
9 Replies
586 Views
3 Years Discussion Span
Latest Post 13 Years Ago Latest Post by skraps

nav33n 472 Purple hazed!

16 Years Ago

I think you should use an alias. ie.,

$sql = "SELECT userId, name, email, aes_decrypt(password,'keyhere') as password, country FROM accounts where id='". $_SESSION['member_ID'] ."'";

I guess that will do the trick..

nav33n 472 Purple hazed!

16 Years Ago

Great :)

nav33n 472 Purple hazed!

16 Years Ago

Maybe thats how you saved it ? It works fine for me in this simple example.. :)

<?php
$con = mysql_connect("localhost","root");
mysql_select_db("test");
$xyz = rand(1,2000);
$password = "something$xyz";
$username = "someuser$xyz";
$query = "insert into member (spid,uname,pss) values ('$xyz','$username',aes_encrypt('$password','password'))";
mysql_query($query) or die(mysql_error());
$query = "select uname,aes_decrypt(pss,'password') as password from member where spid='$xyz'";
$result = mysql_query($query);
$row = mysql_fetch_array($result);
echo "Username: ".$row['uname']." Password: ".$row['password'];
?>

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

james1700 0 Newbie Poster · Answer 1 · 2008-07-14T15:05:15+00:00

YES YES - thank you dude, that has dude the trick.

Kind Regards,

james

james1700 0 Newbie Poster · Answer 2 · 2008-07-14T15:25:25+00:00

Hi again - just wondering if you know why the password is coming out with the brackets

3425791jshawjshaw90@googlemail.com(22563)GB

i really need it to be just the password.

Any advice or ideas regarding that

cheers again for your help

james

james1700 0 Newbie Poster · Answer 3 · 2008-07-14T15:34:33+00:00

I think you could be right there again :) just guna look at my code again.

regards,

james

james1700 0 Newbie Poster · Answer 4 · 2008-07-14T15:40:56+00:00

Thanks mate - yes it was my code. lol

You have been a really great help with this thank you very much

Regards,

james

nav33n 472 Purple hazed! Team Colleague Featured Poster · Answer 5 · 2008-07-14T15:46:10+00:00

nav33n 472 Purple hazed!

16 Years Ago

You are welcome :)

skraps -9 Light Poster Banned · Answer 6 · 2011-11-25T01:55:23+00:00

nav33n, you are the man. Iv been battling this for a day now, I did everything but us "as variable" I even made a function to transfer the data to the original variables, thanks!!! You da man.