Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- //Connect to the database
- include('/../connect/connect.php');
- //Predefine variables
- $error = null;
- $message = null;
- //Check for cookie
- if(isset($_COOKIE['id'])&&isset ($_COOKIE['username']))
- {
- $message = "Welcome <b>".$_COOKIE['username']."</b>. <a href='logout.php'>Logout</a>";
- }
- //Get Post Variables
- function checkLogin($username,$password)
- {
- //Import outside variables
- global $mysqli;
- global $username;
- global $password;
- global $message;
- global $id;
- //Query the database
- $sql = "SELECT id,username,password FROM accounts WHERE username = '$username' AND password = '$password'";
- $resultSet = $mysqli->query($sql);
- //Validate the number of rows returned
- if($resultSet->num_rows !=0)
- {
- $rows = $resultSet->fetch_assoc();
- $id = $rows['id'];
- return TRUE;
- }else
- {
- $error = "You have entered an invalid username or password";
- }
- }
- //Check if login form has been submitted
- if(isset($_POST['login_submit']))
- {
- $username = $mysqli->real_escape_string($_POST['username']);
- $password = md5($mysqli->real_escape_string($_POST['password']));
- if(empty ($username))
- {
- $error = "Please enter your username.";
- }elseif(empty($password))
- {
- $error = "Please enter your password";
- }
- //Start login
- if(checkLogin($username, $password) == TRUE)
- {
- if(isset($_POST['remember']))
- {
- setcookie("username", $_POST['username'],time()+3600*24*30);
- setcookie("password", $password, time()+3600*24*30);
- setcookie("id",$id,time()+3600*24*30);
- $message .= " Cookie enabled";
- }else
- {
- setcookie("username", $username, FALSE,'/', 'localhost');
- setcookie("password", $password, FALSE,'/', 'localhost');
- }
- }
- }else
- {
- $message = '<form method="post" action="">
- Username:<input type="text" name="username" value="shawn"/>
- Password:<input type="password" name="password" value="password"/>
- <input type="checkbox" name="remember" value="1"/>Remember me
- <br/><input type="submit" name="login_submit" value="Login"/>
- </form>
- ';
- }
- echo $message;
- echo $error;
- ?>
Add Comment
Please, Sign In to add comment