Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- include ('db.php');
- //niet weghalen!! anders undefined ;p//
- if(isset($_POST['login'])){
- //query//
- $sql = "SELECT * FROM users WHERE username='".mysql_real_escape_string($_POST['username'])."' and password='".md5($_POST['password'])."'";
- $result = mysql_query($sql) or die(mysql_error());
- $row = mysql_fetch_assoc($sql);
- //kijkt of er een username aan de password linkt//
- if(mysql_num_rows($result) == 1){
- $_SESSION['id'] = $row['id'];
- }
- //als username of pass verkeerd is//
- else{
- $error = "wrong username or password";
- }
- }
- //als er al een sessie is laat hij een menu zien//
- if(isset($_SESSION['id'])){
- if($row['admin'] == 0){
- echo "
- Hey, " . $_SESSION['username'] ."<br />
- This is your profile!<br />
- <a href='editprofile.php?username=".$_SESSION['username']."'>Edit profile</a><br />
- <a href='logout.php'>Logout</a>";
- }
- else{
- if($row['admin'] == 1){
- echo "
- Hey, " . $_SESSION['username'] ."<br />
- What are you gonna do today?<br /><br />
- <a href='admin.php'>Admin panel</a><br />
- <a href='editprofile.php?username=".$_SESSION['username']."'>Edit profile</a><br />
- <a href='logout.php'>Logout</a>";
- }
- }
- }
- //anders laat hij het login form zien//
- else {
- echo "<form method='post' action=''>
- <div class='table'>Username:</div>
- <div class='field'><input name='username' type='text' value='' size='28'/></div>
- <div class='table'>Password:</div>
- <div class='field'><input name='password' type='password' value='' size='28'/></div><br />
- <div class='field'><input name='login' type='submit' value='Login' style='height: 25px; width: 195px' /></div>
- <div class='table' align='center'><a href='register.php'>Register</a></div><br />
- <div class='table' align='center'></div>
- </form>";
- if(isset($error)){
- echo $error;
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
