Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $connect = mysql_connect("127.0.0.1:3306","webclient","tajne"); //DB connecting informations - IP,USERNAME,PASSWORD
- mysql_select_db("web", $connect); //DB name
- if($_SESSION[started] != "yes"){
- session_start();
- $_SESSION[started] = "yes";
- }
- $username = $_POST['username']; //define POST variables to be accessable through whole script
- $password = $_POST['password'];
- if ($_GET['f'] == 'logout'){ //Loging out
- session_unset();
- }
- if($username != "" && $password != ""){ //Logging in
- $command = 'SELECT nick FROM web_logins WHERE nick LIKE "'.$username.'"';
- $result = mysql_query($command);
- $array = mysql_fetch_array($result);
- $usernamedb = $array["nick"];
- if($username == $usernamedb){
- $command = 'SELECT password,clientgrp FROM web_logins WHERE nick LIKE "'.$username.'"';
- $result = mysql_query($command);
- $array = mysql_fetch_array($result);
- $passworddb = $array["password"];
- if($password == $passworddb){
- $command = 'UPDATE web_logins SET ip = "'.$_SERVER['REMOTE_ADDR'].'", last_login = "20'.Date("y-m-d").'" WHERE nick LIKE "'.$username.'"';
- mysql_query($command);
- mysql_close($connect);
- $_SESSION[logged] = "true";
- $_SESSION[username] = $username;
- $_SESSION[group] = $array["clientgrp"];
- }else{
- mysql_close($connect);
- $fail = "password"; //Wrong password message
- }
- }else{
- mysql_close($connect);
- $fail = "username"; //Unknown user message
- }
- }
- if($_SESSION['logged'] != "true"){ //Checks login status and dislays login form
- require ('loginform.php');
- exit;
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement