Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- if(isset($_POST['fusn'])){
- $usn = mysqli_real_escape_string($con,$_POST['fusn']);
- $pass1 = mysqli_real_escape_string($con,$_POST['fpwd']);
- $pass = password_hash($pass1,PASSWORD_DEFAULT);
- $stmt = $con->prepare("SELECT UserNameID, userName, pass, Role from UserName WHERE username=? LIMIT 1");
- $stmt->bind_param('s',$usn);
- $stmt->execute();
- $stmt->bind_result($usernameid1, $username1, $passw1, $roleid1);
- $stmt->store_result();
- $stmt->fetch();
- if($stmt->num_rows > 0)
- {
- if (password_verify($pass1, $passw1))
- {
- $_SESSION['username']=$username1;
- $_SESSION['uid']=$usernameid1;
- $_SESSION['rid']=$roleid1;
- $_SESSION['loggedin']="true";
- /**
- * IP func still not working.
- */
- if(!empty($_SERVER['HTTP_CLIENT_IP']))
- {
- $ip=$_SERVER['HTTP_CLIENT_IP'];
- }
- elseif(!empty($_SERVER['HTTP_X_FORWARDED_FOR'])){
- $ip=$_SERVER['HTTP_X_FORWARDED_FOR'];
- }
- else{
- $ip=$_SERVER['REMOTE_ADDR'];
- }
- $_SESSION['ip']=$ip;
- $ipquery = "UPDATE UserName SET IP_ADD ='$ip' WHERE UserNameID ='$usernameid1'";
- $runipquery = mysqli_query($con,$ipquery);
- header("Location: ./index.php");
- die();
- } else
- {
- echo "Try again";
- }
- }
- else
- {
- echo "This account does not exist";
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement