Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- //A login/logout/database
- $con=mysql_connect("localhost","username","password");
- if(!$con)
- {
- die ('You could not connect: ' mysql_error());
- }
- //Some Code
- ?>
- <?php
- session_start();
- session_destroy();
- ?>
- <?php
- CREATE TABLE `members` (
- `id` int(4) NOT NULL auto_increment,
- `username` varchar(65) NOT NULL default '',
- `password` varchar(65) NOT NULL default '',
- PRIMARY KEY (`id`)
- ) TYPE=MyISAM AUTO_INCREMENT=2 ;
- --
- -- Dumping data for table `members`
- --
- INSERT INTO `members` VALUES (1, 'username', 'password');
- ?>
- <?php
- <table width="300" border="0" align="center" cellpadding="0" cellspacing="1" bgcolor="#CCCCCC">
- <tr>
- <form name="form1" method="post" action="checklogin.php">
- <td>
- <table width="100%" border="0" cellpadding="3" cellspacing="1" bgcolor="#FFFFFF">
- <tr>
- <td colspan="3"><strong>Member Login </strong></td>
- </tr>
- <tr>
- <td width="78">Username</td>
- <td width="6">:</td>
- <td width="294"><input name="myusername" type="text" id="myusername"></td>
- </tr>
- <tr>
- <td>Password</td>
- <td>:</td>
- <td><input name="mypassword" type="text" id="mypassword"></td>
- </tr>
- <tr>
- <td> </td>
- <td> </td>
- <td><input type="submit" name="Submit" value="Login"></td>
- </tr>
- </table>
- </td>
- </form>
- </tr>
- $host="localhost"; // Host name
- $username=""; // Mysql username
- $password=""; // Mysql password
- $db_name="test"; // Database name
- $tbl_name="members"; // Table name
- // Connect to server and select databse.
- mysql_connect("$host", "$username", "$password")or die("cannot connect");
- mysql_select_db("$db_name")or die("cannot select DB");
- // username and password sent from form
- $myusername=$_POST['myusername'];
- $mypassword=$_POST['mypassword'];
- // To protect MySQL injection (more detail about MySQL injection)
- $myusername = stripslashes($myusername);
- $mypassword = stripslashes($mypassword);
- $myusername = mysql_real_escape_string($myusername);
- $mypassword = mysql_real_escape_string($mypassword);
- $sql="SELECT * FROM $tbl_name WHERE username='$myusername' and password='$mypassword'";
- $result=mysql_query($sql);
- // Mysql_num_row is counting table row
- $count=mysql_num_rows($result);
- // If result matched $myusername and $mypassword, table row must be 1 row
- if($count==1){
- // Register $myusername, $mypassword and redirect to file "login_success.php"
- session_register("myusername");
- session_register("mypassword");
- header("location:login_success.php");
- }
- else {
- echo "Wrong Username or Password";
- }
- ?>
- // Check if session is not registered , redirect back to main page.
- // Put this code in first line of web page.
- <?
- session_start();
- if(!session_is_registered(myusername)){
- header("location:main_login.php");
- }
- ?>
- <html>
- <body>
- Login Successful
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
