<?phpinclude ("conex.php");session_start();$link = Conectarse(); //Array

1. <?php
2. include ("conex.php");
3. session_start();
4. $link = Conectarse();
5. //Array to store validation errors
6. $errmsg_arr = array();
7. //Validation error flag
8. $errflag = false;
9.  
10. $login = clean($_POST['log']);
11. $password = clean($_POST['pwd']);
12.  
13.  
14. if($login == '') {
15. $errmsg_arr[] = 'Login ID missing';
16. $errflag = true;
17. }
18. if($password == '') {
19. $errmsg_arr[] = 'Password missing';
20. $errflag = true;
21. }
22. // If there are input validations, redirect back to the login form
23. if($errflag) {
24. $_SESSION['ERRMSG_ARR'] = $errmsg_arr;
25. session_write_close();
26. header("location: login-failed.php");
27. exit();
28. }
29.  
30.  
31. $consulta ="SELECT * FROM usuarios WHERE username='$login' AND pass= SHA('$password')";
32. $result = mysql_query($consulta);
33. if($result) {
34. if(mysql_num_rows($result) == 1) {
35. //Login Successful
36. session_regenerate_id();
37. $member = mysql_fetch_assoc($result);
38. $_SESSION['USUARIO_LOGUEADO'] = 'OK';
39. $_SESSION['NOMBRE'] = $member['nombres'];
40. $_SESSION['APELLIDO'] = $member['apellidos'];
41. session_write_close();
42. header("location: ../dashboard.php");
43. exit();
44. }else {
45. $_SESSION['ERRMSG_ARR'] = 'login incorrecto';
46. header("location: login-failed.php");
47. exit();
48. }
49. }else {
50. die("Query failed");
51. }
52.  
53. mysql_free_result($result);
54. $link = Desconectarse();
55. ?>