Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if ($_POST['login_admin'] != "") {
- $username = mysql_escape_string($_POST['username']);
- $password = md5(mysql_escape_string($_POST['password']));
- if (!empty($username) && !empty($password)) {
- $sql = new mysql();
- $sql->query("SELECT * FROM `admins` WHERE `user` = '$username' and `pass` = '$password'");
- if ($sql->num_rows() != 0) {
- $_SESSION['admin_login'] = 1;
- }
- else {
- // login failed
- $core_site->assign("invalid_user_pass","Username or passowrd is invalid !");
- }
- }
- else {
- $core_site->assign("invalid_user_pass","Username or passowrd is empty !");
- }
- }
- if ($_SESSION['admin_login'] == 0) {
- $core_site->display("admin/login.tpl");
- }
- else {
- if($core_site->parms['admin'][0] == "logout") {
- $_SESSION['admin_login'] = 0;
- redirect(HTTP."/admin");
- }
- else {
- $core_site->display("admin/dashboard.tpl");
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement