Hashtag wont work on my password

[jtango0716]

<?php

include("../include/connection.php");

$username = $_POST['username'];
$password = $_POST['password'];

$pass_h = password_hash($password, PASSWORD_DEFAULT);
$query = mysqli_query ($connect, "INSERT INTO admin(username, password, profile) VALUES('$username', 'pass_h', '')");
if($query){
echo "hi";
}else{
echo "fff";
}
?>

 

[VBService]

small mistake

VALUES('$username', 'pass_h', '')");

it should be $pass_h


BTW,

include("../include/connection.php");

$username = mysqli_real_escape_string($connect, $_POST['username']);
$password = mysqli_real_escape_string($connect, $_POST['password']);

$pass_h = password_hash($password, PASSWORD_DEFAULT);
$sql = "INSERT INTO admin(username, password, profile) "
     . "VALUES('$username', '$pass_h', '')";

if (mysqli_query($connect, $sql))
  echo "Record has been successfully added to the database.";
else
  echo "Error while adding the record: " . mysqli_error($connect);

// ...
mysqli_close($connect);

[ what does mysql_real_escape_string() really do? ]

 

[jtango0716]

thanks