Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- /**
- *
- */
- class Login
- {
- private $username;
- private $password;
- private $user_id;
- public $session;
- function Login_func()
- {
- require 'connect.php';
- if (isset($_POST['username'])) {
- $this->username = mysql_real_escape_string($_POST['username']);
- }
- if (isset($_POST['password'])) {
- $this->password = sha1(mysql_real_escape_string($_POST['password']));
- }
- if (empty($this->password) === true || empty($this->username) === true) {
- echo "Complete all fields";
- return false;
- }
- $uCheck = mysql_query("SELECT username FROM users WHERE username = '$this->username'") or
- error_log(mysql_error());
- $nRowVount = mysql_num_rows($uCheck);
- if ($nRowVount === 0) {
- echo "Account ".htmlspecialchars($this->username)." doesn`t exist!";
- return false;
- }
- $pCheck = mysql_query("SELECT
- password,
- username
- FROM users WHERE
- password = '$this->password' AND
- username = '$this->username'") or
- error_log(mysql_error());
- $nRowVount = mysql_num_rows($pCheck);
- if ($nRowVount != 1) {
- echo "Insert password and username correctly!";
- return false;
- }
- $user_id = mysql_query("SELECT `user_id`
- FROM `users`
- WHERE `username` = '$this->username'") or
- error_log(mysql_error());
- if (mysql_num_rows($user_id)>0) {
- $this->user_id = mysql_result($user_id, 0, 'user_id');
- }
- if ($this->result() != false) {
- session_start();
- $_SESSION['user_id'] = $this->result();
- $this->session = $_SESSION['user_id'];
- header('Location: log.php');
- exit();
- } elseif ($this->result() === false) {
- echo "string1";
- }
- }
- function result()
- {
- $result = mysql_num_fields(mysql_query("SELECT COUNT(`user_id`) FROM `users`
- WHERE `username` = '$this->username'
- AND `password` = '$this->password'"));
- return ($result === 1) ? $this->user_id : false;
- }
- function Login_form()
- {
- echo "<form action=".$_SERVER['PHP_SELF']." method='post'>
- Username: <input type='text' name='username'/>
- Password: <input type='password' name='password'/>
- <input type='submit' name='submit' value='Log In'>
- </form>";
- }
- }
- $login = new Login();
- if (isset($_POST['submit'])) {
- if ($login->Login_func() === false) {
- } else {
- }
- }
- echo $login->session;
- $login->Login_form();
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement