Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?
- session_start();
- include 'includes/db_connect.php';
- include("function.php");
- if (!$_SESSION['username'] || !$_SESSION['email']){
- $username = $_POST['Username'];
- $password=sha1(PWENC_SALT.$_POST['Password']);
- $pin = $_POST['Pin'];
- $ip = $_SERVER['REMOTE_ADDR'];
- $domain = $_SERVER['REMOTE_ADDR'];
- $username=strtolower($username);
- ///check INFO
- $sql = mysql_query("SELECT * FROM `users` WHERE `username`='$username' AND `password`='$password' AND `activated`='1' AND `pin`='$pin' LIMIT 1");
- $login_check = mysql_num_rows($sql);
- ///other
- if ($login_check == '1'){
- ini_set(session.cookie_lifetime, "3600");
- session_register('username');
- $_SESSION['username'] = $username;
- session_register('email_address');
- $_SESSION['email_address'] = $email_address;
- $timestamp = time();
- $timeout = $timestamp-$timeoutseconds;
- $cool = gmdate('Y-m-d h:i:s');
- mysql_query("UPDATE users SET lastlogin='$cool' WHERE username='$username'");
- mysql_query("UPDATE users SET online='$timestamp' WHERE username='$username'");
- mysql_query("UPDATE users SET ip='$domain' WHERE username='$username'");
- ?>
- <meta http-equiv="Refresh" content=0;url=news.php>
- <?
- } else {
- echo "wrong username/password/pin combination";"<br>"."<br>";
- include 'index.php';
- }}
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
