Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // SQL and salt data
- $salt = "mysalt";
- $host = "localhost";
- $user = "root";
- $pass = "akecbdy6";
- $db = "passwd";
- $table = "details";
- // retrieve form data
- $suppl_passwd = $_POST['password'];
- $suppl_user = $_POST['username'];
- // open connection
- $connection = mysql_connect($host, $user, $pass) or die ("Unable to connect!");
- // select database
- mysql_select_db($db) or die ("Unable to select database!");
- // grab passwd from db
- $query = "SELECT password FROM $table WHERE username = '$suppl_user'";
- // execute query
- $result = mysql_query($query) or die ("<b>Login Unsuccessful.. <br /> </b> Raw error supplied by MySQL:<br /><br /> $query. ".mysql_error());
- $data = mysql_fetch_assoc($result);
- $db_passwd = $data['password'];
- $db_user = $suppl_user;
- // crypting the password given, to match against the hash in the database
- $suppl_passwd_crypt = crypt($suppl_passwd, $salt);
- // checking username / password
- if (($suppl_user == $db_user) && ($suppl_passwd_crypt == $db_passwd)) {
- echo "Login successful!";
- }
- else {
- echo "Login failed!";
- }
- ################ DEBUG SECTION #######################
- // dumping the variables for dev
- echo "<hr>";
- echo "<b> Debug of passwd: </b><br />";
- echo "<br />";
- echo "<b>DB passwd: </b><br />";
- var_dump($db_passwd);
- echo "<br /><br />";
- echo "<b>Supplied passwd: </b><br />";
- var_dump($suppl_passwd_crypt);
- echo "<hr>";
- echo "<br />";
- echo "<b> Debug of username: </b><br/><br />";
- echo "<b> DB user: </b><br />";
- var_dump($db_user);
- echo "<br /><br />";
- echo "<b>Supplied username: </b><br />";
- var_dump($suppl_user);
- echo "<br />";
- var_dump($data);
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
