Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- mysql_connect("localhost","root","");
- mysql_select_db("marktplaats");
- date_default_timezone_set("UTC");
- $time = strtotime('now');
- $expt = (strtotime('now'))+3600;
- //$_POST['key'] = "2cf1b5656a57e039943126394f1e76fa";
- if(!isset($_POST['key'])){ // Uit te voeren bij login //
- if(isset($_POST['user'])&&isset($_POST['pass'])){
- $query = mysql_query("SELECT * FROM user WHERE USERNAME = '".$_POST['user']."' AND PASSWORD = '".$_POST['pass']."'")or die(mysql_error());
- if($obj = mysql_fetch_object($query)){
- $query = mysql_query("SELECT * FROM user WHERE USERNAME = '".$_POST['user']."' AND PASSWORD = '".$_POST['pass']."'")or die(mysql_error());
- $obj = mysql_fetch_object($query);
- $user = $_POST['user'];
- $pass = $_POST['pass'];
- $key = md5(sha1($obj->ID.$obj->V_NAAM.$time));
- $authcheck = mysql_query("SELECT * FROM u_auth WHERE USER_ID = '".$obj->ID."'")or die(mysql_error());
- if($authobj = mysql_fetch_object($authcheck)){
- $authquery = mysql_query("UPDATE u_auth SET u_auth.KEY = '".$key."', u_auth.EXP_TIME = '".$expt."' WHERE USER_ID = '".$obj->ID."'")or die(mysql_error());
- //$authquery = mysql_query("UPDATE u_auth SET EXP_TIME = '".$expt."' WHERE USER_ID = '".$obj->ID."'")or die(mysql_error());
- }
- else{
- $authquery = mysql_query("INSERT INTO u_auth VALUES ('".$obj->ID."', '".$key."', '".$expt."')")or die(mysql_error());
- }
- echo $key;
- }
- else{
- echo "U_P_ERROR";
- }
- }
- }
- else{
- $query = mysql_query("SELECT * FROM u_auth WHERE u_auth.KEY = '".$_POST['key']."'")or die(mysql_error());
- if($authobj = mysql_fetch_object($query)){ // Als key = correct
- if($time>=$authobj->EXP_TIME){//KEY NIET LEGIT
- mysql_query("DELETE FROM u_auth WHERE u_auth.KEY = '".$_POST['key']."'")or die(mysql_error());
- echo "K_ERROR";
- }
- else{
- echo "TRUE";
- }
- }
- else{
- echo "K_ERROR";
- }
- }
- ?>
Add Comment
Please, Sign In to add comment