Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- mysql_connect("localhost", "root", "") or die(mysql_error());
- mysql_select_db("test") or die(mysql_error());
- $Username = stripslashes($_POST['username']);
- $Password = stripslashes($_POST['password']);
- $Username = mysql_real_escape_string($_POST['username']);
- $Password = mysql_real_escape_string($_POST['password']);
- // Check to see if the user exits.
- $existsResult = mysql_query("SELECT username, password, email FROM members WHERE password='$Password' OR username = '$Username'");
- $num_rows = mysql_num_rows($existsResult);
- // probally should add this function to another script an hook in.
- function cryptPass($input, $rounds = 12)
- {
- $salt = "";
- $saltCharacters = array_merge(range('A', 'Z'), range('a', 'z'), range(0, 9));
- for($i = 0; $i < 22; $i++)
- {
- $salt .= $saltCharacters[array_rand($saltCharacters)];
- }
- return crypt($input, sprintf('$2y$%02d$', $rounds) . $salt);
- }
- if ($num_rows > 0)
- {
- if ($row = mysql_fetch_array( $existsResult ))
- {
- $registeredUser = $row['username'];
- $registeredEmail = $row['email'];
- $registeredPassword = $row['password'];
- $HashedPassword = cryptPass($Password);
- if(crypt($HashedPassword, $registeredPassword) == $registeredPassword)
- {
- echo "Passwords match.";
- }
- else
- {
- echo "Password Doesn't Match - $HashedPassword : $registeredPassword ";
- }
- }
- }
- else
- {
- die("No account under that username.");
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement