Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- /* if (isset($_POST['account']) && isset($_POST['password'])) {
- $username = $_POST['account'];
- $password = $_POST['password']; */
- if (isset($_POST['account']) && isset($_POST['password'])) {
- $username = mysql_escape_string($_POST['account']);
- $password = mysql_escape_string($_POST['password']);
- $user = 'root';
- $pswd = 'belinda';
- $db = 'training';
- $conn = mysql_connect('localhost', $user, $pswd);
- mysql_select_db($db, $conn);
- /*
- $query = "SELECT * FROM admin WHERE account = 'mysql_escape_string($account)' AND password = 'mysql_escape_string($password)' ";
- $result = mysql_query($query) or die("Unable to verify user because : " . mysql_error()); */
- $query = "SELECT * FROM `admin` WHERE `account` = '$account' AND `password` = '$password'; ";
- if($result = mysql_query($query)){
- if(mysql_num_rows($result) > 0){
- $_SESSION['logged_in'] = true;
- header('Location: index.php');
- }
- else{
- $err = 'Incorrect username / password. '.mysql_error() ;
- }
- }
- else{
- $err = "Es konnte keine Verbindung aufgebaut werden: ".mysql_error();
- }
- echo $err;
- }
- ?>
- <form method="post">
- Login: <input type="text" name="account" /> <br />
- Passwort: <input type="password" name="password" /> <br />
- <input type="submit" value="Login" />
- </form>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement