sending email from sql database

Question

david.roun.7_1

10 Years Ago

I have a webiste and would like to send an email to someone, and myself, when they request their lost password. For some reason, I can't get the mail() function to work, no matter what I do. I unsuccessfully tried to model it after the listserv I created and am at a loss. Please help if you can.

<!DOCTYPE html>
<title></title>
<head></head>
<body>
<?php
require_once('connect.php');

$user=mysql_real_escape_string($_REQUEST['lin']);
$subject='Rounsworld lost information';
$from='Password retrieval at rounsworld.com';
$headers="From:" . $from;

$result=mysql_query("SELECT login,password FROM demo WHERE Name='$user'") or die(mysql_error());
$mresult=mysql_query("SELECT email FROM maillist WHERE name='$user'") or die(mysql_error());
$row=mysql_fetch_array($result);
$mrow=mysql_fetch_array($mresult);
$message= 'Your login id is ' . $row['login'] . '<br>' . 'Your password is ' . $row['password'];

mail('roun@rounsworld.com',$subject,$headers,$message);
mail($mrow['email'],$subject,$headers,$message);

echo 'Your request has been sent to the email address on file.  If you do not receive an email, please let me know <br>';

?>
</body>
</html>

php

3 Contributors
6 Replies
168 Views
2 Days Discussion Span
Latest Post 10 Years Ago Latest Post by david.roun.7_1

diafol

10 Years Ago

Before anything else, why do you want to email yourself? Can't you log it somewhere else?

Is this a local site or is it live on a host?

Edited 10 Years Ago by diafol

Lsmjudoka 0 Junior Poster in Training

10 Years Ago

Not sure if this is exactly the issue but it appears your 3rd and 4th paramaters are backwards. See http://us3.php.net/manual/en/function.mail.php
bool mail ( string $to , string $subject , string $message [, string $additional_headers [, string $additional_parameters ]] )

$message should go before $headers. If you think $mrow['email'] is the problem, try echoing out the value of that right before the mail() function and see what it says.

Also on a security side note, storing passwords in plaintext is generally regarded as bad practice. They should be in a hashed/encrypted form and you should be giving the users a token to reset the password.

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

david.roun.7_1 · Answer 1 · 2013-11-29T01:20:34+00:00

I just want a copy of the lost password request so I can ask the person if they really did send it or if someone else did. It's a small live site that only my family goes on. I used to use the security from the host but I'm trying to learn more about doing it myself (starting to look at .ht access).

david.roun.7_1 · Answer 2 · 2013-11-29T01:33:07+00:00

I think the problem is in the '$mrow['email']' command. When I take that out, it sends the email to me, it's just not selecting the email address from the database.

david.roun.7_1 · Answer 3 · 2013-12-01T02:40:54+00:00

It doesn't echo anything and I don't get any error messages, it's just ignoring the email address. I'm learning about encryption and other securities.

david.roun.7_1 · Answer 4 · 2013-12-01T03:18:45+00:00

I got it. I had an error in the database so the php file didn't find a match. Feel kinda stupid I didn't catch it earlier.