Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- include '../inc/connect.php';
- //Husk at sikrer dine ting imod SQL Injections
- $username = mysql_real_escape_string($_POST['username']);
- $password = mysql_real_escape_string($_POST['password']);
- //Lav en query der henter den ønskede bruger i stedet for alle sammen
- $data = mysql_query("SELECT * FROM login WHERE username = '" . $username . "' AND password = '" . md5($password) . "'") or die(mysql_error());
- if ($info = mysql_fetch_array($data))
- {
- //Hvis brugeren findes bliver de logget ind
- $_SESSION['loggedin'] = 1;
- $_SESSION['username'] = $info['username'];
- //gem brugerens gruppe
- $_SESSION['usergroup'] = $info['usergroup'];
- //redirect til index uden fejl
- $succes = 'LOGIN_SUCCESS';
- header('Location: ../index.php?msg=' . $succes);
- }
- else
- {
- //Redirect til index med fejl besked.
- $error = 'LOGIN_FAILED_NO_MATCH_FOUND';
- header('Location: ../index.php?msg=' . $error);
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement