<?phpsession_start();//Connect to the databaseinclude('/../connect/connect

1. <?php
2. session_start();
3. //Connect to the database
4. include('/../connect/connect.php');
5.  
6. //Predefine variables
7. $error = null;
8. $message = null;
9.  
10. //Check for cookie
11. if(isset($_COOKIE['id'])&&isset ($_COOKIE['username']))
12. {
13.     $message = "Welcome <b>".$_COOKIE['username']."</b>. <a href='logout.php'>Logout</a>";
14. }
15. //Get Post Variables
16.     function checkLogin($username,$password)
17.     {
18.         //Import outside variables
19.         global $mysqli;
20.         global $username;
21.         global $password;
22.         global $message;
23.         global $id;
24.        
25.         //Query the database
26.         $sql = "SELECT id,username,password FROM accounts WHERE username = '$username' AND password = '$password'";
27.         $resultSet = $mysqli->query($sql);
28.        
29.         //Validate the number of rows returned
30.         if($resultSet->num_rows !=0)
31.         {
32.             $rows = $resultSet->fetch_assoc();
33.             $id = $rows['id'];
34.            
35.             return TRUE;
36.            
37.         }else
38.         {
39.             $error = "You have entered an invalid username or password";
40.         }
41.     }
42.    
43.  
44.        
45.      //Check if login form has been submitted  
46.     if(isset($_POST['login_submit']))
47.     {
48.     $username = $mysqli->real_escape_string($_POST['username']);
49.     $password = md5($mysqli->real_escape_string($_POST['password']));
50.    
51.         if(empty ($username))
52.         {
53.             $error = "Please enter your username.";
54.         }elseif(empty($password))
55.         {
56.             $error = "Please enter your password";
57.         }
58.  
59.         //Start login
60.         if(checkLogin($username, $password) == TRUE)
61.             {
62.  
63.                
64.  
65.                 if(isset($_POST['remember']))
66.                 {
67.                     setcookie("username", $_POST['username'],time()+3600*24*30);
68.                     setcookie("password", $password, time()+3600*24*30);
69.                     setcookie("id",$id,time()+3600*24*30);
70.                     $message .= " Cookie enabled";
71.                    
72.  
73.                 }else
74.                 {
75.                     setcookie("username", $username, FALSE,'/', 'localhost');
76.                     setcookie("password", $password, FALSE,'/', 'localhost');
77.                    
78.                 }
79.                
80.                
81.             }
82.     }else
83.         {
84.     $message = '<form method="post" action="">
85.    Username:<input type="text" name="username" value="shawn"/>
86.    Password:<input type="password" name="password" value="password"/>
87.    
88.    <input type="checkbox" name="remember" value="1"/>Remember me
89.    <br/><input type="submit" name="login_submit" value="Login"/>
90.    </form>
91.    ';
92.         }
93. echo $message;
94. echo $error;
95. ?>