Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- error_reporting(E_ALL & ~E_NOTICE);
- session_start();
- $invalid = "";
- if($_POST['submit']) {
- include_once("connect.php");
- $username = strip_tags($_POST['username']);
- $password = strip_tags($_POST['password']);
- $sql = "SELECT `id`, `username`, `password` FROM members WHERE `username` = '$username' LIMIT 1";
- $query = mysqli_query($dbCon, $sql);
- if($query) {
- $row = mysqli_fetch_row($query);
- $userId = $row[0];
- $dbUsername = $row[1];
- $dbPassword = $row[2];
- if($username == $dbUsername && $password == $dbPassword) {
- $_SESSION['username'] = $username;
- $_SESSION['id'] = $userId;
- header('Location: user.php');
- $invalid = "";
- }
- }else {
- $invalid = "incorrect username or password";
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement