function loginResponse($username, $password) { $rusername = strtolower ( $us

1. function loginResponse($username, $password) {
2. $rusername = strtolower ( $username );
3. $q = "SELECT salt FROM users WHERE username='" . $rusername . "'";
4. $do = mysql_query ( $q );
5. if ($do) {
6. if ($row = mysql_fetch_array ( $do )) {
7. $salt = $row ['salt'];
8. //echo "[Salt]" . $salt . "[/Salt]";
9. }
10. } else {
11. return "erU1";
12. }
13. $hashedPassword = $this->hashedPassword ( $password, $salt );
14. $q = "SELECT accesslevel FROM users WHERE username='" . $rusername . "'
15. AND password='" . $hashedPassword . "'";
16. mysql_query ( $q );
17. if (mysql_affected_rows() > 0) {
18. //echo "[AffectedRows]" . mysql_affected_rows() . "[/AffectedRows]";
19. return "suLO";
20. } else {
21. //echo "[AffectedRows]" . mysql_affected_rows() . "[/AffectedRows]";
22. return "erPW";
23. }
24.  
25. }