Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if(isset($_POST['username']) && isset($_POST['password'])){
- require_once('includes/db.connect.php');
- $username = $_POST['username'];
- $password = $_POST['password'];
- $query_accounts_select = "SELECT id, type, username, password, email, phone, address, area, city FROM accounts WHERE username='$username' AND password=MD5('$password') AND verified=1 LIMIT 1";
- $result_accounts_select = mysqli_query($connect, $query_accounts_select);
- $count_accounts_select = mysqli_num_rows($result_accounts_select);
- $error_message = 'The username or password you entered does not match.';
- if($count_accounts_select == 1){
- $row_accounts_select = mysqli_fetch_array($result_accounts_select);
- mysqli_close($connect);
- $_SESSION['id'] = $row_accounts_select['id'];
- if($row_accounts_select['email'] == ''
- || $row_accounts_select['phone'] == ''
- || $row_accounts_select['address'] == ''
- || $row_accounts_select['area'] == ''
- || $row_accounts_select['city'] == ''){
- $_SESSION['profile_complete'] = false;
- }
- else{
- $_SESSION['profile_complete'] = true;
- }
- if($row_accounts_select['type'] == 'admin'){
- $_SESSION['admin'] = $row_accounts_select['username'];
- $_SESSION['user'] = $row_accounts_select['username'];
- }
- elseif($row_accounts_select['type'] == 'user'){
- $_SESSION['user'] = $row_accounts_select['username'];
- }
- if(isset($_POST['redirect'])){
- header('Location: '.$base.$_POST['redirect']);
- exit;
- }
- else{
- if($row_accounts_select['type'] == 'user'){
- header('Location: '.$base);
- exit;
- }
- else{
- header('Location: '.$base.'account');
- exit;
- }
- }
- }
- else{
- header('Location: '.$_SERVER['HTTP_REFERER'].'?action=error&message='.$error_message);
- exit;
- }
- }
- else{
- header('Location: '.$_SERVER['HTTP_REFERER'].'?action=error');
- exit;
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
