Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start(); // Alltid överst på sidan
- include "conn.php"; // Databasanslutningen
- // Inloggning
- if (isset($_POST['submit'])){
- $_POST = db_escape($_POST);
- $sql = "SELECT id FROM members
- WHERE user='{$_POST['user']}'
- AND pass='{$_POST['passwd']}'";
- $result = mysql_query($sql);
- // Hittades inte användarnamn och lösenord
- // skicka till formulär med felmeddelande
- if (mysql_num_rows($result) == 0){
- header("Location: index.php?badlogin=");
- exit;
- }
- // Sätt sessionen med unikt index
- $_SESSION['sess_id'] = mysql_result($result, 0, 'id');
- $_SESSION['sess_user'] = $_POST['user'];
- header("Location: welcome.php");
- exit;
- }
- // Utloggning
- if (isset($_GET['logout'])){
- session_unset();
- session_destroy();
- header("Location: index.php");
- exit;
- }
- ?>
- <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
- <html>
- <head>
- <meta http-equiv="Content-Type"
- content="text/html; charset=iso-8859-1">
- <title>Index</title>
- </head>
- <body>
- <?php
- // Om inte inloggad visa formulär, annars logga ut-länk
- if (!isset($_SESSION['sess_user'])){
- echo "<h3>Logga in</h3>\n";
- // Visa felmeddelande vid felaktig inloggning
- if (isset($_GET['badlogin'])){
- echo "Fel användarnamn eller lösenord!<br>\n";
- echo "Försök igen!\n";
- }
- ?>
- <form action="index.php" method="post">
- Användarnamn:<br>
- <input type="text" name="user"><br>
- Lösenord:<br>
- <input type="password" name="passwd"><br>
- <input type="submit" name="submit" value="Logga in">
- </form>
- Inte medlem ?<br>
- <a href="register.php">Registera dig</a>
- <?php
- } else {
- echo "<a href=\"index.php?logout=\">Logga ut</a>\n";
- echo "<a href='upload.php'>ladda upp filer</a>";
- }
- ?>
- Välkommen <?php echo $_SESSION['sess_user']; ?><br>
- <a href="upload.php">Ladda upp filer</a><br/>
- <a href="index.php?logout=">Logga ut</a>
- <?php
- //Lite kod för att ta bort notice error när ingen sess_user finns...
- $name = isset($_SESSION['sess_user']) ? $_SESSION['sess_user'] : 'NULL';
- $query1="select * from uploads_log where username='{$name}' OR log_ip='{$_SERVER['REMOTE_ADDR']}'";
- ?>
- <table border=1 style="background-color:#F0F8FF;" >
- <caption><EM>Mina filer:</EM></caption>
- <tr>
- <th>Datum</th>
- <th>Filnamn</th>
- <th>Ipadress</th>
- <th>Username</th>
- </tr>
- <?php
- while($row=mysql_fetch_array($result)){
- echo "</td><td>";
- echo $row['log_date'];
- echo "</td><td>";
- echo $row['log_filename'];
- echo "</td><td>";
- echo $row['log_ip'];
- echo "</td><td>";
- echo $row['username'];
- echo "</td></tr>";
- }
- echo "</table>";
- ?>
- </body>
- </html>
Add Comment
Please, Sign In to add comment