Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- if(isset($_POST['submit'])){
- $Username = mysqli_real_escape_string($MyS, $_POST['user']);
- $Pass = mysqli_real_escape_string($MySQLIConnect, $_POST['pass']);
- $Password = crypt ($Pass, "nd");
- $Check = mysqli_query($MySQLIConnect, "SELECT * FROM LIMIT 1");
- if(mysqli_num_rows($Check) == 1){
- while ($row = $Check->fetch_assoc()) {
- $user = $row['user'];
- $failedLog = $row['failedLog'];
- if ($failedLog >= 5) {
- die ('Sie haben Ihr passwort zu oft falsch eingegeben, bitte wenden Sie sich an Ihren Administrator.');
- }
- $_SESSION['userId'] = $row['userId'];
- $sql = "UPDATE `user` SET `failedLog` = '0' WHERE `user` = '$user'";
- $result = $MySQLIConnect->query($sql);
- if (!$result) {
- die ('Etwas stimmte mit dem Query nicht: '.$MySQLIConnect->error);
- }
- header('Location: loggedin.php');
- }
- }else {
- $Check = mysqli_query($MySQLIConnect, "SELECT * FROM LIMIT 1");
- if(mysqli_num_rows($Check) == 1){
- $sql = "UPDATE `user` SET `failedLog` = failedLog+1 WHERE `username` = '$Username'";
- $result = $MySQLIConnect->query($sql);
- if (!$result) {
- die ('Etwas stimmte mit dem Query nicht: '.$MySQLIConnect->error);
- }
- }
- $_SESSION ['message'] = ("Ihr Benutzername oder Passwort ist falsch!");
- header('Location: index.php');
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
