if (isset($_POST['login-uname'])) { $loginUsername=$_POST['login-uname'];

1. if (isset($_POST['login-uname'])) {
2. $loginUsername=$_POST['login-uname'];
3. $pw_md5 = md5($_POST['login-passwort']);
4. $password=$pw_md5;
5. #$pw_md5 = $_POST['login-passwort'];
6. $MM_fldUserAuthorization = "";
7. $MM_redirectLoginSuccess = "main.php";
8. $MM_redirectLoginFailed = "index.php#failed";
9. $MM_redirecttoReferrer = true;
10. mysql_select_db($database_ccp, $ccp);
11.  
12. $LoginRS__query=sprintf("SELECT Name, Passwort FROM players WHERE Name=%s AND Passwort=%s",
13. GetSQLValueString($loginUsername, "text"), GetSQLValueString($pw_md5, "text"));
14.  
15. $LoginRS = mysql_query($LoginRS__query, $ccp) or die(mysql_error());
16. $loginFoundUser = mysql_num_rows($LoginRS);
17. if ($loginFoundUser) {
18. $loginStrGroup = "";
19.  
20. //declare two session variables and assign them
21. $_SESSION['MM_Username'] = $loginUsername;
22. $_SESSION['MM_UserGroup'] = $loginStrGroup;
23.  
24. if (isset($_SESSION['PrevUrl']) && true) {
25. $MM_redirectLoginSuccess = $_SESSION['PrevUrl'];
26. }
27. $_SESSION['uname'] = $_POST['login-uname'];
28. header("Location: " . $MM_redirectLoginSuccess );
29. }
30. else {
31. header("Location: ". $MM_redirectLoginFailed );
32. }