LOGIN

1. <?php
2. $host="localhost";
3. $username="root";
4. $password=""
5. $db_name="registrering";
6. $tbl_name="registrering";
7.  
8.  
9. mysql_connect("$host", "$username", "$password")or die("cannot connect");
10. mysql_select_db("$db_name")or die("cannot select DB");
11.  
12. // hora
13. $myusername=$_POST['myusername'];
14. $mypassword=$_POST['mypassword'];
15. $encrypted_mypassword=md5($mypassword);
16.  
17. /*To protect MySQL injection (more detail about MySQL injection)*/
18. $myusername = stripslashes($myusername);
19. $mypassword = stripslashes($mypassword);
20. $myusername = mysql_real_escape_string($myusername);
21. $mypassword = mysql_real_escape_string($mypassword);
22.  
23. $sql="SELECT * FROM registrering WHERE loginid='$myusername' and password='$encrypted_mypassword'";
24. $result=mysql_query($sql);
25.  
26. $count=mysql_num_rows($result);
27.  
28.  
29. if($count==1){
30.  
31. session_register("myusername");
32. session_register("mypassword");
33. header("location:login_success.php");
34. }
35. else {
36. echo "Wrong Username or Password";
37. }
38. ?>