Callback function in Codeigniter with multiple parameters during form validation

Question

In Codeigniter:

Here is the callback function that I am using for validation:

public function has_match($password, $username){
    if (0) {
        // user exists
        return true;
    }
    else {
        $this->form_validation->set_message('has_match', 'Invalid Username/password entered ' . $password . ' ' . $username);
        return false;
    }
}

Below are the validation rules:

$this->form_validation->set_rules('username', 'Username', 'required');
$this->form_validation->set_rules('password', 'Password', 'required|callback_has_match[username]');

Can any one please tell me what I am doing wrong here in calling the callback function, as I am unable to get the value of the username field and it keeps showing 'username' (inside the variable $username in callback) instead?

score 8 · Accepted Answer · answered Oct 11 '13 at 18:54

Your code is working as expected. You're basically always calling the callback method has_match with the string username as a parameter. I think that you expect that this translates into:

callback_has_match[$username]

Therefore, when you access the has_match() method, you would have access to the value of $username. This is however, not the way callback methods work. The parameter that you set in there is a string, which is hardcoded, exactly like you do when you add a rule for min_length[10] - it's not the value of a PHP variable. An easy fix, which I haven't tested but suspect works is to do:

$this->form_validation->set_rules('password', 'Password', 'required|callback_has_match[' . $username . ']');

However the code above is not clean, and seems bad design in my opinion.

Now that we've found the problem with the code, I know it's outside the scope of the question, but I would like to point it out - I find it's more of a design issue here. Why do you want to check for the username/password pair inside of a callback to the password field?

Remember, you're validating a form, you shouldn't mix it up with model work. The form doesn't care if the provided username/password combo is correct, it should just look at whether both the fields have been provided correctly, and if so, it should do something about it.

I would adapt your code above to:

$this->form_validation->set_rules('username', 'Username', 'required');
$this->form_validation->set_rules('password', 'Password', 'required|callback_has_match[username]');

if ($this->form_validation->run() != FALSE) {
    $validLogin = $this->muser->checkLogin($username, $password);

    if ($validLogin) {
        //Username/password combo exists in DB, save in session or whatever.
    } else {
        //Username/password combo does not exist in DB, show an error.
    }
} else {
    //Code for when form fields have not been provided correctly.
}

well hmmmm. i think there could be something said for checking the username in a callback first. and THEN checking username / password. think about it from the users perspective. they probably know their username but maybe they forgot the password. so being able to kick back the form with the user name that we know is good - that makes it easier for everyone. — cartalot, Oct 11 '13 at 22:53
now think about it from the system - if the username is no good - then why should we advance and check the password? AND this is the most important part - if we already know there is a username in our system that they have submitted - then if JUST the password is wrong - we can reassure them - yes we do have a user by that name, but the password you have entered is wrong - and then maybe give them option to redo the password via email, etc. — cartalot, Oct 11 '13 at 22:55
i tried to edit my comment but stack won't let me -- anyway in first comment meant to say check user name in a callback - form is then validated - then check user & password in separate step like you are suggesting. — cartalot, Oct 11 '13 at 23:00
Very well explained. I am surely going to adapt my design to as you suggested :) — Kamran Ahmed, Oct 12 '13 at 07:07
Very good ! and if the $username contains a bracket, the system automatically "escape" it... — sly63, Oct 17 '14 at 05:00

score 1 · Answer 2 · answered Oct 12 '13 at 06:00

Instead of sending parameters with call back you can always get them with post

Here is your call back

public function has_match(){
    if (0) {
        // user exists
        return true;
    }
    else {

        $password   =   $this->input->post('password');
        $username   =   $this->input->post('username');

        $this->form_validation->set_message('has_match', 'Invalid Username/password entered ' . $password . ' ' . $username);
        return false;
    }
}

sokhy · Answer 3 · 2015-03-02T01:46:31.513

// CALLBACKS

public function check_user(){

    $result = FALSE;

    $username=$this->input->post('username');

    $email=$this->input->post('emailad');

    $dbmember=$this->members->get_members();

    foreach ( $dbmember as $key){

        // condition of username and email  
        if($username==$key && $email==$key){

        if($username == $key->UserName && $email == $key->EmailAddress){
              $this->form_validation->set_message('check_user','already existed!
                      Please check username and email agian.');
              return FALSE;
              break;
            }                

        return TRUE;

        }  
    }

It would be helpful to add some notes as to why this is a good solution or answers the question... — Stuart Siegler, Mar 02 '15 at 01:59

Callback function in Codeigniter with multiple parameters during form validation

3 Answers3

Linked