<?phpob_start();echo $_POST['username'];session_start();if($_POST['usern

1. <?php
2. ob_start();
3. echo $_POST['username'];
4. session_start();
5. if($_POST['username']==""||!isset($_POST['username'])){
6.     header('Location: /');
7. }
8. if(isset($_SESSION['username'])){
9.     header( 'Location: ../memberspage.php' );
10. }
11.  
12.  
13. //Database Information
14. $dbhost = "localhost";
15. $dbname = "tbh_radio";
16. $dbuser = "tbh_radio";
17. $dbpass = "Radio123";
18.  
19.  
20. //Connect to database
21.  
22. mysql_connect ( $dbhost, $dbuser, $dbpass)or die("Could not connect: ".mysql_error());
23. mysql_select_db($dbname) or die(mysql_error());
24.  
25.  
26. $username = mysql_real_escape_string($_POST['username']);
27. $password = md5(mysql_real_escape_string($_POST['password']));
28. $query = "select * from users where username='$username' and password='$password'";
29.  
30. $result = mysql_query($query);
31.  
32. if (mysql_num_rows($result) < 1) {
33.  
34. $error = "Bad Login";
35.     include "../login.html";
36.  
37. } else {
38.     $_SESSION['username'] = $username;
39.    
40.     header( 'Location: ../memberspage.php' );
41. }
42.  
43. ?>