<?php// Note: To use cookie-based sessions, session_start() // must be called

1. <?php
2. // Note: To use cookie-based sessions, session_start()
3. // must be called before outputting anything to the browser.
4. @session_start();
5. ?>
6. <!doctype html>
7. <body>
8. <?php
9. $REQUEST=$_REQUEST;//['action'=>'login','user'=>'user@gmail.com','password'=>'secret'];//$_REQUEST;
10. $passwords=['user@gmail.com'=>'secret'];
11.  
12. // actions (login, logout)
13. if(@$REQUEST['action']=='login' &&
14. @$passwords[@$REQUEST['user']]==@$REQUEST['password'])
15. $_SESSION['user']=$REQUEST['user'];
16. elseif(@$REQUEST['action']=='logout')
17. $_SESSION['user']='';
18.  
19. if(@$_SESSION['user']!=''){
20. ?>
21. <!-- logged in -->
22. <form method="post">
23. <input type="hidden" name="action" value="logout">
24. <input type="submit" value="logout <?=$_SESSION['user']?>">
25. </form>
26. protected content <br>
27. ... <br>... <br>... <br>... <br>... <br>... <br>... <br>... <br>
28. <?php
29. }else{
30. ?>
31. <!-- logged out -->
32. <form method="post">
33. <input type="hidden" name="action" value="login">
34. <input type="email" name="user" placeholder="username">
35. <input type="password" name="password" placeholder="password">
36. <input type="submit" value="login">
37. </form>
38. <?php
39. }
40. ?>
41. </body>