Comments on: How to login with username or email in PHP & MYSQL

By: Sagar SN

Sagar SN — Thu, 15 Oct 2015 08:37:00 +0000

Thanks Karthikeyan and Dave that helped me a lot, i followed the same code for login using email/phone

By: Sumit

Sumit — Tue, 01 Jul 2014 09:55:00 +0000

Script is not working kindly provide the database

By: Karthikeyan K

Karthikeyan K — Thu, 05 Dec 2013 05:42:00 +0000

In reply to Dave. Great Dave.. Here I just want to tell this to beginners.. anyway thanks for your nice suggestion :)

By: Dave

Dave — Wed, 04 Dec 2013 10:20:00 +0000

Why so complicated? You don’t need to create a function to determine if the user is logging in with an email address or a username. Just let MySQL handle it – here is an example:

$name = $_POST[‘username’]; # userid can be an email address or a username
$pass = md5($_POST[‘password’]); # Password

$query = mysql_query(“SELECT * FROM `users` WHERE ‘$name’ IN (username, email) AND `password` = ‘$pass'”);

Also, your example is vulnerable to SQL injection… At that point, you should start using MySQLi or PDO + prepared statements. Don’t use this example in a production environment…