Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // Verbindungsinformationen zur Datenbank
- define("DB_HOST", "localhost");
- define("DB_NAME", "10021_login");
- define("DB_USER", "loginsystem");
- define("DB_PASS", "v27465lb");
- // Variablen festlegen
- $Gusername = $_GET['user'];
- $Gpassword = $_GET['password'];
- $Gbefehl = $_GET["befehl"];
- // Verbindung zur MySQL Datenbank herstellen und Daten überprüfen und eintragen
- $db = new mysqli(DB_HOST, DB_USER, DB_PASS, DB_NAME);
- $db2 = new mysqli(DB_HOST, DB_USER, DB_PASS, DB_NAME);
- if($db->connect_errno != 0 || $db2->connect_errno != 0)
- {
- echo "Konnte keine Verbindung zu DB aufbauen: {$db->connect_error}";
- exit();
- }
- //1
- echo "Verbindung aufgebaut!";
- if(empty($Gusername) || empty($Gpassword) || empty($Gbefehl))
- {
- echo ((empty($Gusername)) ? "<br />Errorcode: <b>3</b>" : "");
- echo ((empty($Gpassword)) ? "<br />Errorcode: <b>4</b>" : "");
- echo ((empty($Gbefehl)) ? "<br />Errorcode: <b>9</b>" : "");
- $db->close();
- $db2->close();
- exit();
- }
- $sql = $db->prepare("SELECT `passwort` FROM `loginsystem` WHERE `username` = ? LIMIT 1");
- $sql->bind_param("s", $Gusername);
- $sql->execute();
- $sql->bind_result($fetchPasswort);
- $sql->store_result();
- if(!$sql->fetch())
- {
- echo "Benutzername nicht gefunden!";
- exit();
- }
- $sql->close();
- //2
- if($fetchPasswort == $Gpassword)
- {
- $sql = $db->prepare("UPDATE `loginsystem` SET `befehl` = ? WHERE `username` = ? LIMIT 1");
- $sql->bind_param("ss", $Gbefehl, $Gusername);
- if(!$sql->execute())
- {
- echo "Error beim Updaten: {$sql->error}";
- exit();
- }
- echo "Erfolgreich!";
- $sql->close();
- }
- else
- {
- echo "Passwort falsch!";
- exit();
- }
- $db->close();
- $db2->close();
- ?>
Add Comment
Please, Sign In to add comment
