<?php$host="localhost"; $username="root"; $password="power1"; $db_name

1. <?php
2.  
3. $host="localhost";
4. $username="root";
5. $password="power1";
6. $db_name="members";
7. $tbl_name="users";
8.  
9. $link = mysql_connect("$host", "$username", "$password")or die("cannot connect. Please contact us");
10. mysql_select_db("$db_name")or die("cannot select DB. Please contact us");
11.  
12. $Email=$_POST['Email'];
13. $Password=$_POST['Password'];
14.  
15. $Email = stripslashes($Email);
16. $Password = stripslashes($Password);
17. $Email = mysql_real_escape_string($Email);
18. $Password = mysql_real_escape_string($Password);
19.  
20. $Password = sha1($password);
21.  
22. $sql="SELECT * FROM $tbl_name WHERE Email='$Email' AND password ='$Password'";
23. $result=mysql_query($sql, $link) or die ('Unable to run query:'.mysql_error());
24.  
25. $count=mysql_num_rows($result);
26.  
27. if($count==1){
28. session_register("Email");
29. session_register("Password");
30. header("location:login_success.php");
31. }
32. else {
33. echo "Wrong Email or Password. Please Wait.<meta http-equiv='REFRESH' content='1;url=login.php'>";
34. }
35. ?>