API tools faq
paste
Advertisement
Guest User

Untitled

a guest
May 6th, 2017
93
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
HTML 3.44 KB | None | 0 0
raw download clone embed print report
  1. // Index
  2. <?php
  3. session_start();
  4. include("data.php");
  5. //print_r($_SESSION); // skriver ut sessionsvariabeln.
  6. mysql_connect("localhost","nakor003",DB_PASSWORD) or die(mysql_error());
  7. mysql_select_db("nakor003") or die(mysql_error());
  8. if ( isset($_SESSION['user']) )
  9. {
  10.     if ( isset($_POST['submit']) )
  11.     {
  12.         $namn = htmlentities($_SESSION['user']);
  13.         $inlagg = htmlentities($_POST['inlagg']);
  14.         mysql_query("INSERT INTO gb(namn,inlagg,tid) VALUES ('$namn','$inlagg',NOW())") or die(mysql_error());
  15.         ?>
  16. <h2><font color=green>Lyckades skicka in g&auml;stboksinl&auml;gg</font></h2>
  17.         <?php
  18.     }
  19. ?>
  20. <html>
  21. <head>
  22. <title>hej!</title>
  23. </head>
  24. <body>
  25. <form method="POST">
  26. <b>Shoutbox</b><br>
  27. <textarea cols=40 rows=5 name="inlagg"></textarea>
  28. <br>
  29. <input type="submit" value="Skicka!" name="submit">
  30. <form>
  31.  
  32. <table>
  33. <?php
  34.  
  35.     $sql = "SELECT `namn`, `inlagg`, `tid`, `id` FROM `gb` ORDER BY `tid` DESC";
  36.     $resultat = mysql_query($sql) or die(mysql_error());
  37.     while ( $rad = mysql_fetch_assoc($resultat) )
  38.     {
  39.         ?>
  40.         <tr bgcolor="#ffccff"><td><?=$rad['namn'];?></td><td><?=$rad['tid'];?></td>
  41.         <?
  42.         if ( isset($_SESSION['user']) && ($_SESSION['admin'] == 1) )
  43.         {
  44.             ?>
  45.         <td><a href="delete.php?id=<?=$rad['id'];?>">X</a>
  46.             <?php
  47.        }
  48.         else
  49.         {
  50.             echo "";
  51.         }
  52. ?></td></tr>
  53.     <tr><td colspan=2><?=nl2br($rad['inlagg']);?></td></tr>
  54.     <tr><td colspan=2>&nbsp;</td></tr>
  55.     <?php
  56.     }
  57.     ?>
  58.     </table>
  59.         <a href="logout.php">Logga ut!</a>
  60.     <?php
  61. }
  62. else
  63. {
  64.     include ("session.php");
  65. }
  66. ?>
  67. </body>
  68. </html>
  69. <?php
  70. mysql_close();
  71. ?>
  72.  
  73. //Session
  74. <?php
  75. session_start();
  76. require("data.php"); // $db_pass="hejsan";
  77. mysql_connect("localhost","nakor003",DB_PASSWORD) or die(mysql_error());
  78. mysql_select_db("nakor003") or die(mysql_error());
  79. if ( !isset($_SESSION['user']) )
  80. {
  81. //  $anv = "passwd";
  82. //  $los = "nav";
  83.     if ( isset($_POST['submit']) )
  84.     {
  85.         $user = $_POST['user'];
  86.         $pass = $_POST['pass'];
  87.         $pass = md5($pass);
  88.         $sql = "SELECT `username`, `admin` FROM `users` WHERE `username` ='$user' AND `password`='$pass' LIMIT 1";
  89.        $q = mysql_query($sql) or die(mysql_error());
  90.        if ( mysql_num_rows($q) == 1 )
  91.        {
  92.            // Inloggad!
  93.             $dat = mysql_fetch_assoc($q);
  94.            $_SESSION['user'] = $dat['username'];
  95.             $_SESSION['admin'] = $dat['admin'];
  96.            header("Location: ?");
  97.        }
  98.        else
  99.        {
  100. ?>
  101.             <span style="text-size: 20px;">FEEEEEEEEEEEEEEEEEEEEEEEL</span>
  102.             <?php
  103.        }
  104.    }
  105. ?>
  106. <form method="POST">
  107. <b>Anv&auml;ndarnamn</b><br>
  108. <input type="text" name="user"><br>
  109. <b>L&ouml;senord</b><br>
  110. <input type="password" name="pass"><br>
  111. <input type="submit" name="submit" value="Logga in!">
  112. </form>
  113. <a href="reg.php">Registrera</a>
  114. <?php
  115. }
  116. else
  117. {
  118.    ?>
  119.     Hej <?=$_SESSION['user'];?>
  120.     <a href="logout.php">Logga ut! </a><a href="index.php">Moderera Gästboken!</a>
  121.     <?php
  122. }
  123. ?>
  124.  
  125. //DELETE
  126. <?php
  127. session_start();
  128. include("data.php");
  129. mysql_connect("localhost","nakor003",DB_PASSWORD) or die(mysql_error());
  130. mysql_select_db("nakor003") or die(mysql_error());
  131.  
  132. if ( isset($_SESSION['user']) && ( isset($_GET['id']) ) )
  133. {
  134.     $sql = "DELETE FROM `gb` WHERE id=".$_GET['id']." LIMIT 1";
  135.     mysql_query($sql) or die(mysql_error());
  136.     header("Location: ".$_SERVER['HTTP_REFERER']);
  137. }
  138. ?>
  139.  
  140.  
  141. //LOGOUT<?php
  142. session_start();
  143. session_destroy();
  144. header("Location: ".$_SERVER['HTTP_REFERER']);
  145. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!