<?phpsession_start();$links = "<a href='logout.php'>click here to logout</

1. <?php
2. session_start();
3.  
4. $links = "<a href='logout.php'>click here to logout</a><br>";
5. $u = mysql_escape_string($_POST['user']);
6. $p = md5($_POST['pass']);
7.  
8.     $link = mysql_connect('localhost','root','') or die("Server not found");
9.     mysql_select_db('aclcsjdm');
10.  
11.     $result = mysql_query("SELECT * FROM users WHERE username='" .$u. "'AND password='" .$p. "'");
12.  
13.     if(!mysql_num_rows($result)){
14.         print "ACCESS DENIED<br>";
15.         print "<a href='login.php'>Click here to log in</a>";
16.         exit;
17.     }else{
18.         $data=mysql_fetch_object($result);     
19.         $_SESSION["logged_in_user"] = $u;
20.         $_SESSION["access"] = $data->role;
21.         $_SESSION["fname"] = $data->first_name;
22.         $_SESSION["lname"] = $data->last_name;
23.         header('Location:main.php');
24.         exit;
25.     }
26. ?>