Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- //Login Function
- function login(){
- include("./core/core_includes/config.php");
- if (isset($_POST['login'])){
- $success="./page.php?page=login&detail=success"; $fail="./page.php?page=login&detail=fail";
- $user = mysql_real_escape_string(stripslashes(htmlentities($_POST['username'])));
- $pass = mysql_real_escape_string(stripslashes(htmlentities($_POST['password'])));
- $pass = sha1(strtoupper($user) . ":" . strtoupper($pass));
- $user = ucfirst($user);
- mysql_select_db("$db_account", $con)or die("cannot select DB");
- $admin_check = mysql_query("SELECT * FROM account WHERE username='$user' AND sha_pass_hash='$pass' AND gm='3'");
- $admin = mysql_num_rows($admin_check); $adminc = mysql_num_rows($a_c);
- $gm_check = mysql_query("SELECT * FROM account WHERE username='$user' AND sha_pass_hash='$pass' AND gm='2'");
- $gm = mysql_num_rows($gm_check);
- $player_check = mysql_query("SELECT * FROM account WHERE username='$user' AND sha_pass_hash='$pass' AND gm='0'");
- $player = mysql_num_rows($player_check);
- if($player == 1){//Player
- header("Location: ". $success );
- //Set session data
- $_SESSION["valid_id"] = $obj->id;
- $_SESSION['wsc_user'] = "$user";
- $_SESSION["valid_time"] = time();
- }
- else if($gm == 1){//Gm
- header("Location: ". $success );
- //Set session data
- $_SESSION["valid_id"] = $obj->id;
- $_SESSION['wsc_user'] = "$user";
- $_SESSION['wsc_gm'] = "$user";
- $_SESSION["valid_time"] = time();
- }
- else if($admin == 1){//Admin
- header("Location: ". $success );
- //Set session data
- $_SESSION["valid_id"] = $obj->id;
- $_SESSION['wsc_user'] = "$user";
- $_SESSION['wsc_admin'] = "$user";
- $_SESSION["valid_time"] = time();
- }
- else
- {
- header("Location: ". $fail );
- }
- }}
- //End Login
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement