<html><head><meta http-equiv="Content-Type" content="text/html; charset=ISO-88

1. <html>
2. <head>
3. <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
4. <title>Jotorres Login Form</title>
5. </head>
6. <body>
7. <form method="post" action="login.php" >
8. <table border="1" >
9. <tr>
10. <td><label for="users_name">Username</label></td>
11. <td><input type="text"
12. name="users_name" id="users_name"></td>
13. </tr>
14. <tr>
15. <td><label for="users_pass">Password</label></td>
16. <td><input name="users_pass"
17. type="password" id="users_pass"></input></td>
18. </tr>
19. <tr>
20. <td><input type="submit" value="Submit"/>
21. <td><input type="reset" value="Reset"/>
22. </tr>
23. </table>
24. </form>
25. </body>
26. </html>
27.  
28. <?php
29.  
30. // Grab User submitted information
31. $name = $_POST["users_name"];
32. $pass = $_POST["users_pass"];
33.  
34. // Connect to the database
35. $con = mysql_connect("localhost","username","password");
36. // Make sure we connected succesfully
37. if(! $con)
38. {
39. die('Connection Failed'.mysql_error());
40. }
41.  
42. // Select the database to use
43. mysql_select_db("ist421test",$con);
44.  
45. $result = mysql_query("SELECT userName AND password FROM users_tbl WHERE userName = '$name'");
46.  
47. $row = mysql_fetch_array($result);
48.  
49. if($row["userName"]==$name && $row["password"]==$pass)
50. echo"You are a validated user.";
51. else
52. echo"Sorry, your credentials are not valid, Please try again.";
53. ?>
54.  
55. "SELECT userName AND password FROM users_tbl WHERE userName = '$name'"
56. ^^^
57.  
58. "SELECT username, password FROM users_tbl WHERE username = '$name' AND password='$pass'"
59.  
60. <?php
61. DEFINE ('DB_USER', 'xxx');
62. DEFINE ('DB_PASSWORD', 'xxx');
63. DEFINE ('DB_HOST', 'xxx');
64. DEFINE ('DB_NAME', 'xxx');
65.  
66. $mysqli = @mysqli_connect (DB_HOST, DB_USER, DB_PASSWORD, DB_NAME)
67. OR die("could not connect");
68.  
69. if(isset($_POST['submit'])){
70. // Grab User submitted information
71. $name = mysqli_real_escape_string($mysqli,$_POST["users_name"]);
72. $pass = mysqli_real_escape_string($mysqli,$_POST["users_pass"]);
73.  
74. $result = mysqli_query($mysqli,"SELECT username, password FROM users_tbl WHERE username = '$name' AND password='$pass'");
75.  
76. $row = mysqli_fetch_array($result);
77.  
78. if($row["username"]==$name && $row["password"]==$pass){
79. echo"You are a validated user.";
80. }
81. else{
82. echo"Sorry, your credentials are not valid, Please try again.";
83. }
84.  
85. } // if(isset($_POST['submit'])){
86. ?>
87.  
88. <html>
89. <head>
90. <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
91. <title>Jotorres Login Form</title>
92. </head>
93. <body>
94. <form method="post" action="" >
95. <table border="1" >
96. <tr>
97. <td><label for="users_name">Username</label></td>
98. <td><input type="text"
99. name="users_name" id="users_name"></td>
100. </tr>
101. <tr>
102. <td><label for="users_pass">Password</label></td>
103. <td><input name="users_pass" type="password" id="users_pass"></input></td>
104. </tr>
105. <tr>
106. <td><input type="submit" name="submit" value="Submit"/>
107. <td><input type="reset" value="Reset"/>
108. </tr>
109. </table>
110. </form>
111. </body>
112. </html>
113.  
114. SELECT COUNT(*) FROM `users_tbl` WHERE `userName` = '$name' AND `password` = '$pass'
115.  
116. $result = mysql_query("SELECT COUNT(*)
117. FROM `users_tbl`
118. WHERE `userName` = '$name' AND `password` = '$pass'");
119.  
120. if (!$result || mysql_num_rows($result) <= 0) {
121. // NO user found!
122. } else {
123. // User found and password matches
124. }
125.  
126. SELECT userName , password FROM users_tbl WHERE userName = '$name'