Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- class login {
- public function check($db_link, $name, $pass)
- {
- $name = @mysqli_real_escape_string($db_link, stripslashes($name));
- $pass = @mysqli_real_escape_string($db_link, stripslashed($pass));
- $sha_pass = sha1(strtoupper($nick).":".strtoupper($pass));
- $result = @mysqli_query($db_link, "SELECT id, username FROM account WHERE username = '".$name."' AND sha_pass_hash = '".$sha_pass."'");
- $result2 = @mysqli_query($db_link, "SELECT gmlevel FROM account_access WHERE id IN (SELECT id FROM account WHERE username = '".$name."') AND RealmID = '1'");
- if(!$result)
- {
- Outlog::error(4, $db_link, __FILE__, __LINE__);
- }
- else if (!$result2)
- {
- Outlog::error(4, $db_link, __FILE__, __LINE__);
- }
- else if($result AND $result2)
- {
- $count = mysqli_num_rows($result);
- if($count == '1')
- {
- $row1 = mysqli_fetch_array($result);
- $row2 = mysqli_fetch_array($result2);
- $_SESSION["Username"] = $row1["username"];
- $_SESSION["ID"] = $row1["id"];
- $_SESSION["GMLevel"] = $row2["gmlevel"];
- return true;
- }
- else
- {
- return false;
- }
- }
- }
- public function login_user($log)
- {
- if($log == true)
- {
- $_SESSION["Logged"];
- header("location:logged.php");
- }
- else if (!empty($_POST))
- {
- header("location:index.php?bad_log");
- }
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement