Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- session_destroy();
- $servername = "localhost";
- $username = "root";
- $pass = "pass";
- $dbName = "SheetPal";
- $conn = mysqli_connect($servername , $username , $pass , $dbName);
- if(isset($_POST["submit"])){
- $username = $_POST["username"];
- $password = $_POST["password"];
- if(!$loginGetSql = $conn->prepare("SELECT username AND password FROM users WHERE username = BINARY ? AND password = ? LIMIT 1")){
- echo "Login sql prepare error: " . $conn->error;
- }
- else{
- if(!$loginGetSql->bind_param("ss",$username,$password)){
- echo "Login sql bind param error: " . $loginGetSql->error;
- }
- else{
- $loginGetSql->execute();
- if($loginGetSql->num_rows === 1){
- if(!$levelGetSql = $conn->prepare("SELECT level FROM users WHERE username = BINARY ? AND password = ? LIMIT 1")){
- echo "Get level prepare error: " . $conn->error;
- }
- else{
- if(!$levelGetSql->bind_param("ss",$username,$password)){
- echo "Get level bind param error: " . $levelGetSql->error;
- }
- else{
- $levelGetSql->execute();
- if(!$levelGetSql->bind_result($level)){
- echo "Get level bind result error: " .$levelGetSql->error;
- }
- else{
- $levelGetSql->fetch();
- session_start();
- $_SESSION["username"] = ucfirst($username);
- $_SESSION["password"] = $password;
- $_SESSION["level"] = $level;
- $_SESSION["active"] = "dashboard";
- $url = $_SESSION["active"] . ".php";
- header("Location: $url ");
- }
- }
- }
- }
- }
- }
- }
- else{
- header("Location: index.php");
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement