<?php#Begin Sessionsession_start();#Session Check and set timeout$_SESSION[

1. <?php
2. #Begin Session
3. session_start();
4.  
5. #Session Check and set timeout
6. $_SESSION['timeout'] = time();
7.  
8. #Import Database info and Encryption class
9. include_once("dbinfo.php"); #Contains Database, Host, Username and Password
10. include_once("ED.php"); #Contains class for encrypting and decrypting data
11. $sec = new Security();
12.  
13. #Get username and password from login
14. $user = (string)$_POST['username'];
15. $pass = (string)$_POST['password'];
16.  
17. #Connect to database
18. $conn = new mysqli($host, $username, $password, $db);
19. if($conn->connect_error) die($conn->connect_error);
20.  
21. #Select the database 'users'
22. $query = "select * from users";
23. $result = $conn->query($query);
24.  
25. #If query failed, display error
26. if(!$result) die($conn->error);
27.  
28. #Dump table contents
29. $rows = $result->num_rows;
30.  
31. #Check each row in the table
32. for($j = 0; $j < $rows; ++$j){
33. $result->data_seek($j);
34. $row = $result->fetch_array(MYSQLI_ASSOC);
35. #Get username and password
36. $dbuser = (string)$row['username'];
37. $dbpass = (string)$sec->Decrypt($row['password']);
38. echo $dbpass;
39. #Compare POST with queried data
40. if($user == $dbuser && $pass == $dbpass){
41. echo "pass<br>";
42. echo $user ." ". $dbuser;
43. echo "<br>";
44. echo $pass . " " . $dbpass;
45. #Create successful session
46. $_SESSION['loggedin'] = 1;
47. $_SESSION['username'] = $dbuser;
48. $result->close();
49. $conn->close();
50. #header("Location: /keys");
51. exit;
52. }else{
53. echo "fail<br>";
54. echo "POST: ".$user ." DATABASE: ". $dbuser;
55. echo "<br>";
56. echo "POST: ".$pass . " DATABASE: " . $dbpass;
57. #If fails, return with error
58. #header("Location: https://www.linuxman.co:666?error=1");
59. }
60. }
61. ?>