<?phpsession_start();if ((!isset($_POST['login'])) || (!isset($_POST['haslo'

1. <?php
2.  
3. session_start();
4.  
5. if ((!isset($_POST['login'])) || (!isset($_POST['haslo'])))
6. {
7. header('Location: index.php');
8. exit();
9. }
10.  
11. require_once "connect.php";
12.  
13. $polaczenie = @new mysqli($host, $db_user, $db_password, $db_name);
14.  
15. if ($polaczenie->connect_errno!=0)
16. {
17. echo "Error: ".$polaczenie->connect_errno;
18. }
19. else
20. {
21. $login = $_POST['login'];
22. $haslo = $_POST['haslo'];
23. $login = htmlentities($login, ENT_QUOTES, "UTF-8");
24. $haslo = htmlentities($haslo, ENT_QUOTES, "UTF-8");
25.  
26. if ($rezultat = @$polaczenie->query(
27. sprintf("SELECT * FROM uzytkownicy WHERE user='%s' AND pass='%s'",
28. mysqli_real_escape_string($polaczenie,$login),
29. mysqli_real_escape_string($polaczenie,$haslo))))
30. {
31. $ilu_userow = $rezultat->num_rows;
32.  
33.  
34.  
35. if($ilu_userow>0)
36.  
37.  
38. {
39.  
40.  
41. $_SESSION['zalogowany'] = true;
42.  
43. $wiersz = $rezultat->fetch_assoc();
44.  
45. $_SESSION['id'] = $wiersz['id'];
46. $_SESSION['user'] = $wiersz['user'];
47. $_SESSION['drewno'] = $wiersz['drewno'];
48. $_SESSION['kamien'] = $wiersz['kamien'];
49. $_SESSION['zboze'] = $wiersz['zboze'];
50. $_SESSION['email'] = $wiersz['email'];
51. $_SESSION['dnipremium'] = $wiersz['dnipremium'];
52.  
53. unset($_SESSION['blad']);
54. $rezultat->free_result();
55.  
56. header('Location: gra.php'); }
57.  
58.  
59. else {
60.  
61.  
62. $_SESSION['blad'] = '<span style="color:red">Nieprawidłowy login lub hasło!</span>';
63. header('Location: index.php'); }
64. }
65. }
66.  
67. default;
68.  
69.  
70.  
71.  
72. $polaczenie->close();
73. }