Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // »ÌˈËËÛÂÏ ÒÂÒÒ˲
- session_start();
- ?>
- <form method=post>
- »Ïˇ : <input type=text name=name
- value='<?= $_SESSION['name']; ?>'><br>
- œ‡Óθ : <input type=password name=password
- value='<?= $_SESSION['password']; ?>'><br>
- <input type=submit value=ŒÚÔ‡‚ËÚ¸>
- </form>
- <?
- // Œ·‡·ÓÚ˜ËÍ ÙÓÏ˚
- if(!empty($_POST['name']) && !empty($_POST['password']))
- {
- // ”Òڇ̇‚ÎË‚‡ÂÏ ÒÓ‰ËÌÂÌËÂ Ò ·‡ÁÓÈ ‰‡ÌÌ˚ı
- require_once("config.php");
- // «‡˘Ë˘‡ˇÒ¸ ÓÚ SQL-ËÌ˙Â͈ËË, ÔÓÔÛÒ͇ÂÏ
- // ÔÓÎÛ˜ÂÌÌ˚ ԇÓθ Ë ÎÓ„ËÌ ˜ÂÂÁ ÙÛÌÍˆË˛
- // mysql_escape_string
- if (!get_magic_quotes_gpc())
- {
- $_POST['name'] = mysql_escape_string($_POST['name']);
- $_POST['password'] = mysql_escape_string($_POST['password']);
- }
- // ŒÒÛ˘ÂÒڂΡÂÏ Á‡ÔÓÒ, ÍÓÚÓ˚È ‚ÓÁ‚‡˘‡ÂÚ
- // ÍÓ΢ÂÒÚ‚Ó Á‡ÔËÒÂÈ, Û‰Ó‚ÎÂÚ‚Óˇ˛˘Ëı Ô‡Óβ
- // Ë ÎÓ„ËÌÛ
- $query = "SELECT COUNT(*) FROM userslist
- WHERE name = '$_POST[name]' AND pass = '$_POST[password]'";
- $usr = mysql_query($query);
- if(!$usr) exit("Œ¯Ë·Í‡ ‚ ·ÎÓÍ ‡‚ÚÓËÁ‡ˆËË");
- // œÓÎÛ˜‡ÂÏ ÍÓ΢ÂÒÚ‚Ó Á‡ÔËÒÂÈ
- $total = mysql_result($usr,0);
- }
- // ≈ÒÎË ÍÓ΢ÂÒÚ‚Ó Á‡ÔËÒÂÈ ·Óθ¯Â 0,
- // Á‡ÌÓÒËÏ ‰‡ÌÌ˚Â Ó ÔÓθÁÓ‚‡ÚÂΠ‚ ÒÂÒÒ˲
- if($total > 0)
- {
- $_SESSION['name'] = $_POST['name'];
- $_SESSION['password'] = $_POST['password'];
- }
- // ≈ÒÎË ÔÓÒÂÚËÚÂθ "‚Ó¯ÂÎ" - ÔË‚ÂÚÒÚ‚ÛÂÏ Â„Ó
- if(isset($_SESSION['name']))
- {
- // ”Òڇ̇‚ÎË‚‡ÂÏ ÒÓ‰ËÌÂÌËÂ Ò ·‡ÁÓÈ ‰‡ÌÌ˚ı
- require_once("config.php");
- // ¬˚‚Ó‰ËÏ ÔË‚ÂÚÒÚ‚ËÂ
- echo "«‰‡‚ÒÚ‚ÛÈÚÂ, ".$_SESSION['name']."!<br>";
- echo "ƒÓÒÚÛÔ Í ‚‡¯ËÏ ÒÂÍÂÚÌ˚Ï ‰‡ÌÌ˚Ï<br>";
- // ¬˚‚Ó‰ËÏ ‰‡ÌÌ˚ ÔÓθÁÓ‚‡ÚÂΡ
- $query = "SELECT * FROM userslist WHERE name = '$_SESSION[name]'";
- $usr = mysql_query($query);
- if(!$usr) exit(mysql_error());
- $user = mysql_fetch_array($usr);
- echo "¬‡¯ e-mail: ".$user['email']."<br>";
- echo "¬‡¯ URL: ".$user['url']."<br>";
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement