Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- require("connect.php");
- if(empty($_POST['login'] or empty($_POST['haslo'])))
- {
- header('Location:zaloguj.php');
- }
- else
- {
- $login = htmlentities($_POST['login'], ENT_QUOTES, "UTF-8");
- $haslo = htmlentities($_POST['haslo'], ENT_QUOTES, "UTF-8");
- if(@$polaczenie = mysqli_connect($host, $db_user, $db_password, $db_name))
- {
- if($rezultat = @$polaczenie->query(sprintf("SELECT * FROM `users` WHERE nick='%s'",
- mysqli_real_escape_string($polaczenie, $login),
- {
- $passwords = $rezultat->num_rows;
- if($passwords>0)
- {
- $wiersz = $rezultat->fetch_assoc();
- $pophaslo = $wiersz['password'];
- if($pophaslo = $haslo)
- {
- $_SESSION['zalogowany'] = true;
- $_SESSION['nick'] = $wiersz['nick'];
- header('Location: czat.php');
- }
- }
- else
- {
- if(isset($_SESSION['zalogowany']))
- {
- unset($_SESSION['zalogowany']);
- }
- header('Location: zaloguj.php');
- }
- }
- $polaczenie->close();
- }
- else
- {
- echo "Nie udało się połaczyć z bazą danych!";
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement