Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- include('config.inc');
- $login = mysql_query("SELECT * FROM user WHERE (username = '" . mysql_real_escape_string($_POST['username']) . "') and (password = '" . mysql_real_escape_string(md5($_POST['password'])) . "')");
- if (mysql_num_rows($login) == 1) {
- $_SESSION['username'] = $_POST['username'];
- $member=mysql_fetch_assoc($login);
- $_SESSION['ADMIN'] = $member['admin'];
- if($_SESSION['ADMIN'] == 1) {
- header('Location: yllapito.php');
- } else {
- header('Location: etusivu.php');
- }
- //header('Location: etusivu.php');
- }
- else {
- header('Location: index.php');
- }
- ?>
Add Comment
Please, Sign In to add comment