Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- require_once 'inc/functions.php';
- $login = isset($_SESSION['login']) ? 1 : 0;
- if (isset($_GET['page'])) {
- if ($_GET['page'] === 'login') {
- if ($login !== 1) {
- if (isset($_SESSION['error'])) {
- $error = $_SESSION['error'];
- unset($_SESSION['error']);
- } else {
- $error = 0;
- }
- if (isset($_SESSION['success'])) {
- $success = 1;
- unset($_SESSION['success']);
- } else {
- $success = 0;
- }
- if (isset($_POST['loginForm'])) {
- if ($_POST['username'] !== "" && $_POST['password'] !== "") {
- $getAccount = getRow("SELECT * FROM users WHERE username='" . addslashes($_POST['username']) . "' AND password='" . addslashes(md5($_POST['password'])) . "'");
- if (count($getAccount) > 0) {
- if (intval($getAccount['status']) === 1) {
- $_SESSION['login'] = $getAccount['id'];
- header('Location: index.php?page=home');
- exit;
- } else {
- $_SESSION['error'] = 3;
- header('Location: user.php?page=login');
- exit;
- }
- } else {
- $_SESSION['error'] = 2;
- header('Location: user.php?page=login');
- exit;
- }
- } else {
- $_SESSION['error'] = 1;
- header('Location: user.php?page=login');
- exit;
- }
- }
- $smarty->assign('success', $success);
- $smarty->assign('error', $error);
- $smarty->display('login.tpl');
- } else {
- header('Location: index.php?page=home');
- exit;
- }
- } elseif ($_GET['page'] === 'register') {
- if ($login !== 1) {
- if (isset($_SESSION['error'])) {
- $error = $_SESSION['error'];
- unset($_SESSION['error']);
- } else {
- $error = 0;
- }
- if (isset($_SESSION['success'])) {
- $success = 1;
- unset($_SESSION['success']);
- } else {
- $success = 0;
- }
- if (isset($_POST['registerForm'])) {
- if ($_POST['name'] !== "" && $_POST['username'] !== "" && $_POST['email'] !== "" && $_POST['password'] !== "") {
- $checkAccount = getRow("SELECT * FROM users WHERE username='" . addslashes($_POST['username']) . "' OR email='" . addslashes($_POST['email']) . "'");
- if (count($checkAccount) === 0) {
- execute("INSERT INTO users SET name='" . addslashes($_POST['name']) . "', username='" . addslashes($_POST['username']) . "', email='" . addslashes($_POST['email']) . "', password='" . addslashes(md5($_POST['password'])) . "', type='" . addslashes($_POST['type']) . "', status='0'");
- $_SESSION['success'] = 1;
- header('Location: user.php?page=register');
- exit;
- } else {
- $_SESSION['error'] = 2;
- header('Location: user.php?page=register');
- exit;
- }
- } else {
- $_SESSION['error'] = 1;
- header('Location: user.php?page=register');
- exit;
- }
- }
- $smarty->assign('success', $success);
- $smarty->assign('error', $error);
- $smarty->display('register.tpl');
- } else {
- header('Location: index.php?page=home');
- exit;
- }
- } elseif ($_GET['page'] === 'logout') {
- if ($login === 1) {
- session_destroy();
- header('Location: user.php?page=login');
- exit;
- } else {
- header('Location: index.php?page=home');
- exit;
- }
- }
- } else {
- header('Location: index.php?page=home');
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement