Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // INCLUDE DATABASE.
- include ('database/db_clients.php');
- @$submit = $_GET['submit'];
- @$logout = $_GET['logout'];
- if(!isset($_COOKIE['username']) && !isset($_COOKIE['password'])) {
- if($submit == "true") {
- $username = $_POST['username'];
- $password = md5($_POST['password']);
- $Query = mysql_query("SELECT * FROM users WHERE username='".$username."'");
- while($row = mysql_fetch_array($Query)) {
- @$db_username = $row['username'];
- @$db_password = $row['password'];
- @$db_fname = $row['fname'];
- $uniqueid = $row['cid'];
- $administrator = $row['admin'];
- }
- if($username == @$db_username && $password = @$db_password) {
- // Login Success.
- $expire = time()+60*60*24*30;
- setcookie("username", $username, $expire, "/" );
- setcookie("password", $password, $expire, "/" );
- setcookie("fname", $db_fname, $expire, "/" );
- setcookie("cid", $uniqueid, $expire, "/");
- setcookie('loggedon', true, $expire, '/');
- if($administrator == 1) {
- setcookie('administrator', true, $expire, '/');
- }
- } else {
- $messages['error'] = "Error! The combination of both username and password did not match our records. Please try again.";
- echo $messages['error'];
- }
- } else {
- echo "Please ensure all fields have been completed.";
- }
- } else {
- echo "Welcome back ".$_COOKIE['fname']."! - <a href='?logout=true'>Click here to logout.</a>";
- }
- if($logout == "true") {
- $expire = time()+60*60*24*30;
- setcookie("username", "", -3600, "/" );
- setcookie("password", "", -3600, "/" );
- setcookie("fname", "", -3600, "/" );
- setcookie("cid", "", -3600, "/" );
- setcookie("loggedon","", -3600, "/" );
- setcookie("administrator",0, -3600, "/" );
- }
- ?>
Add Comment
Please, Sign In to add comment