Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- $username = $_POST['lusername'];
- $password = $_POST['lpassword'];
- $query = $connect->prepare("SELECT * FROM users WHERE username='$username'");
- // $query->bindParam(':username', $username);
- $query->execute(array($username));
- $execute = $query->fetch();
- $id = $execute[id];
- if ($execute == 0) {
- $_SESSION['message'] = "User with that email or username doesn't exist";
- header("location: error.php");
- }
- if (password_verify($_POST['lpassword'], $execute['password'] ) ) {
- function userislogged() {
- $_SESSION['logged_in'] = true;
- return $_SESSION['logged_in'];
- }
- $_SESSION['id'] = $id;
- header("location: dashboard.php");
- } else {
- $_SESSION['message'] = 'Cannot verify password.';
- header("location: error.php");
- }
- session_start();
- session_regenerate_id();
- if (!userislogged == true) {
- $_SESSION['message'] = "You must be logged in to use this section";
- header("location: error.php");
- } else {
- $email = $_SESSION['email'];
- $id = $_SESSION['id'];
- }
Add Comment
Please, Sign In to add comment