Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $login = $_POST['login'];
- $password2 = $_POST['password'];
- $login = addslashes($login);
- $login = htmlspecialchars($login);
- $pass = mysql_query("SELECT encrypted_password FROM user WHERE email = '$login' ");
- $password = mysql_fetch_row($pass);
- $user = mysql_query("SELECT unique_id FROM user WHERE email = '$login' ");
- $userid = mysql_fetch_row($user);
- if (!$login OR empty($login)) {
- echo("Wypełnij pole z loginem!");
- exit;
- }
- if (!$password2 OR empty($password2)) {
- echo("Wypełnij pole z haslem!");
- exit;
- }
- if (password_verify($password2, $password[0])) {
- session_start();
- $_SESSION['login'] = $login;
- $_SESSION['password'] = $password[0];
- $_SESSION['logged'] = true;
- $_SESSION['userid'] = $userid[0];
- if(mysql_num_rows(mysql_query("SELECT email, super_privilage FROM user WHERE email = '$login' AND super_privilage = '1' ")) == 1) {
- $_SESSION['admin'] = true;
- }
- header("Location: afterlogin.php");
- } else {
- echo '<br><span style="color: green; font-weight: bold;">Logowanie nieudane. Sprawdź pisownię loginu oraz hasła.</span><br>';
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement