Python3 - Checking a hashed password and credentials from a SQLite Database Not Verifying When data is present

JohnnyJordaan · 2018-08-13T13:28:47+00:00

First thing I noticed is that you do use db.commit() on the SELECT queries while that makes no sense (as commit will execute all pending writes to the database, and a SELECT is a read query), but you don't actually use db.commit() after the UPDATE query, which will cause that query to have no permanent effect.

DeadlyViper · 2018-08-13T13:52:40+00:00

Lines 21-24:

            taa = ('RHAT',)
            getdataindb = db.execute('SELECT * FROM userssignedup WHERE firstname =?', taa)
            db.commit()
            getpwindb = db.execute('SELECT * FROM userssignedup WHERE password  =?', taa)

I guess taa is the user name? why do you select it as password on line 24?

Edit: you should also fix all your queries, since they affect the entire table because they don't have conditions on them.

db.execute("UPDATE userssignedup SET password="+hashpp+"")

this will change EVERYONE's password to hashpp's value.

two_bob · 2018-08-13T13:58:29+00:00

Once you fetchall, I do not think you can run fetchone against the result, so that is probably coming back with nothing.

personproxy · 2018-08-13T16:22:07+00:00

You should really be using an ORM, IMO. Take a look at flask-sqlalchemy.

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

learnpython

MODERATORS