Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- //Start session
- session_start();
- require_once('blablabla.....');
- //Validation error flag
- $errflag = false;
- //Function to check if the player is banned. BTW Beremix u r a fag
- function isbanned($user) {
- $result = mysql_query("SELECT Username FROM `Bans` WHERE `Username`='".$user."'");
- if(mysql_num_rows($result)!=0)
- {
- return 0;
- }
- else
- {
- return 1;
- }
- }
- //Sanitize the POST values
- $username = $_POST['username'];
- $password = $_POST['password'];
- //Input Validations
- if($username == '') {
- $_SESSION['ERRMSG_ARR'] = 'Username missing.';
- $errflag = true;
- }
- if($password == '') {
- $_SESSION['ERRMSG_ARR'] = 'Password missing.';
- $errflag = true;
- }
- //If there are input validations, redirect back to the login form
- if($errflag) {
- $_SESSION['ERRMSG_PAGE'] = 'error.php';
- session_write_close();
- header("location: error.php");
- exit();
- }
- //Create query
- $qry="SELECT * FROM `Users` WHERE `Username` = '$username' AND `Password` = '".udb_hash($password)."' LIMIT 1";
- $result=mysql_query($qry);
- //Check whether the query was successful or not
- if($result) {
- if(mysql_num_rows($result) == 1) {
- //Login Successful
- if (isbanned($username) == 1)
- {
- die("You have been banned.");
- $_SESSION['ERRMSG_ARR'] = 'User is banned';
- $_SESSION['User is banned'] = 'error.php';
- session_write_close();
- exit();
- }
- else
- {
- session_regenerate_id();
- $member = mysql_fetch_assoc($result);
- $_SESSION['SESS_USERNAME'] = $member['Username'];
- $_SESSION['SESS_ADMIN'] = $member['Level'];
- session_write_close();
- header("location: index.php");
- exit();
- }
- }else {
- //Login failed
- $_SESSION['ERRMSG_ARR'] = 'Invalid Username or Password.';
- $_SESSION['ERRMSG_PAGE'] = 'error.php';
- session_write_close();
- header("location: error.php");
- exit();
- }
- }else {
- die("Query failed");
- }
- function udb_hash($pass)
- {
- $length = strlen($pass);
- $s1 = 1;
- $s2 = 0;
- for($i=0; $i<$length; $i++)
- {
- $s1 = ($s1 + ord($pass[$i])) % 65521;
- $s2 = ($s2 + $s1) % 65521;
- }
- $wy= ($s2 << 16) + $s1;
- return $wy;
- }
- ?>
Add Comment
Please, Sign In to add comment