<?php if(isset($_POST['ok'])) { if($_POST['username'] == NULL) { e

1. <?php
2.     if(isset($_POST['ok']))
3.     {
4.      if($_POST['username'] == NULL)
5.      {
6.       echo "Please enter your username<br />";
7.      }
8.      else
9.      {
10.       $u=$_POST['username'];
11.      }
12.      if($_POST['password'] == NULL)
13.      {
14.       echo "Please enter your password<br />";
15.      }
16.      else
17.      {
18.       $p=$_POST['password'];
19.      }
20.      if($u && $p)
21.      {
22.       $conn=mysql_connect("localhost","root","123456") or die("can't connect this database");
23.       mysql_select_db("project",$conn);
24.       $sql="select * from tbluser where username='".$u."' and password='".$p."'";
25.       $query=mysql_query($sql);
26.       if(mysql_num_rows($query) == 0)
27.       {
28.        echo "Username or password is not correct, please try again";
29.       }
30.       else
31.       {
32.        $row=mysql_fetch_array($query);
33.        session_start();
34.        session_register("userid");
35.        session_register("level");
36.        $_SESSION['userid'] = $row[id];
37.        $_SESSION['level'] = $row[level];
38.      
39.       }
40.      }
41.     }
42.     ?>
43.     <form action=test.php method=post>
44.     Username: <input type=text name=username size=25 /><br />
45.     Password: <input type=password name=password size=25 /><br />
46.     <input type=submit name=ok value="Dang Nhap" />
47.     </form>