Untitled

loginhomepage.php
<html>
<head>
<link rel="stylesheet" type="text/css" href="loginhomepage.css">
<title>Login Page</title>
</head>
<body>
	<?php if(isset($_GET["invalidPassword"])) {
		echo $_GET["invalidPassword"];
	}
	if(isset($_GET["invalidNewUser"])) {
		echo $_GET["invalidNewUser"];
	}
	?>
	<form method="post" action="login.php" id="loginform">
		<p id ="login">Login</p>
		Username:
		<input type="text" name="username" type="reset"><br>
		<label id="password">
		Password:
		</label>
		<input type="password" name="password" type="reset"><br>
		<label id = "hype">
		<input type="submit" value="Get Hype!"><br>
		</label>
	</form>
</body>
</html>


login.php
<?php
	if(!isset($_POST["username"] || !isset($_POST["password"])) {
		die("No password or username given");
	}
	$nameEnter = $_POST["username"];
	$passwordEnter = $_POST["password"];
	$fileName = "users.txt";
	$file = file($fileName, FILE_IGNORE_NEW_LINES);
	foreach($file as $line) {
		list($name, $password) = explode(":", $line);
		if($nameEnter == $name && $passwordEnter == $password) {
			session_start();
			$_SESSION["username"] = $nameEnter;
			$_SESSION["password"] = $passwordEnter;
			header("Location: userhomepage.php");
			die();
		}
		if($nameEnter == $name && $passwordEnter != $password) {
			$invalidPassword = urlencode("Incorrect Password Entered!");
			header("Location: loginhomepage.php?invalidPassword=".$invalidPassword);
			die();
		}
	}
	if(preg_match("/^[a-z][a-z0-9]{2,7}$/", $nameEnter) && preg_match("/^[0-9].{4,10}[\W]$/", $passwordEnter)) {
		$info = ("$nameEnter:$passwordEnter\n");
		file_put_contents($fileName, $info, FILE_APPEND);
		session_start();
		$_SESSION["username"] = $nameEnter;
		$_SESSION["password"] = $passwordEnter;
		header("Location: userhomepage.php")
		die();
	} else {
		$invalidNewUser = urlencode("Invalid new username and password");
		header("Location: loginhomepage.php?invalidNewUser=".$invalidNewUser);
		die();
	}
?>