Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- if ($_POST['post'])
- {
- $Dbhost = "localhost";
- $Dbuser = "root";
- $Dbpass = "";
- $Dbname = "";
- $Dbconn = mysql_connect("$Dbhost", "$Dbuser", "$Dbpass") or die('fehl');
- mysql_select_db("$Dbname", $Dbconn) or die('fehl2');
- $accountname = mysql_real_escape_string($_POST["accountname"]); // Post_Function Accountname
- $passworten = mysql_real_escape_string(sha1($_POST["passwort"]));// Post_Function password
- $abfrage = "SELECT id,username,sha_pass_hash,email FROM account WHERE username = '$accountname'";
- $ergebnis = mysql_query($abfrage);
- $row = mysql_fetch_object($ergebnis);
- if($row->sha_pass_hash == $passworten)
- {
- $_SESSION["login"] = $accountname; // Session Account
- $_SESSION["email"] = $row->email;
- $_SESSION["id"] = $row->id;// Session Email
- echo "Login erfolgreich<META
- HTTP-EQUIV=\"Refresh\"
- CONTENT=\"1; URL=../management/usercp.php\">";
- }
- else
- {
- echo "Account oder Passwort sind falsch!";
- echo "<META
- HTTP-EQUIV=\"Refresh\"
- CONTENT=\"0; URL=./login.php\">";
- session_destroy();
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement