<?PHP $username = ($_POST['username']);$password = ($_POST['password']);//

1. <?PHP
2. $username = ($_POST['username']);
3. $password = ($_POST['password']);
4. //check that form fields are set
5. //and redirect back to the login form if necessary
6. if (!isset($username) || !isset($password)) {
7. header( "Location: login.html" );
8. }
9. //check that the form fields are not empty, and redirect back to the login page if they are
10. elseif (empty($username) || empty($password)) {
11. header( "Location: login.html" );
12. }
13. else{
14.  
15. //set the database connection variables
16. $dbHost = "localhost"; ////set your server
17. $dbUser = "dnl_login"; //// server username
18. $dbPass = "login"; //// server password
19. $dbDatabase = "dnl_login"; //// which database to connect to
20.  
21. //connect to the database
22. $db = mysql_connect("$dbHost", "$dbUser", "$dbPass") or die ("Error connecting to database.");
23. mysql_select_db("$dbDatabase", $db) or die ("Couldn't select the database.");
24.  
25. $user = mysql_real_escape_string($username); //// Sanitize user input
26. $pass = md5($password); ////MD5 Password (or you can use sha or whatever)
27. $result=mysql_query("select * from users where username='$user' AND password='$pass'", $db);
28.  
29. //check that at least one row was returned
30. $rowCheck = mysql_num_rows($result);
31. if($rowCheck > 0){
32. while($row = mysql_fetch_array($result)){
33. $sitename=$row["sitename"];
34. $user=$row["username"];
35. $password=$row["password"];
36. $id=$row["id"];
37. $fname=$row["fname"];
38. $lname=$row["lname"];
39. $email=$row["email"];
40. $address=$row["address"];
41. $city=$row["city"];
42. $state=$row["state"];
43. $zip=$row["zip"];
44. $bill_freq=$row["bill_freq"];
45. $paypal=$row["paypal"];
46. $bill_amount=$row["bill_amount"];
47. $bill_date=$row["bill_date"];
48. $created=$row["created"];
49. $package=$row["package"];
50. $storage=$row["storage"];
51. $bandwidth=$row["bandwidth"];
52. $referred_by=$row["referred_by"];
53. $status=$row["status"];
54. }
55. //start the session and register variables
56. session_start();
57. $_SESSION['sitename'] = $sitename;
58. $_SESSION['username'] = $user;
59. $_SESSION['password'] = $password;
60. $_SESSION['id'] = $id;
61. $_SESSION['fname'] = $fname;
62. $_SESSION['lname'] = $lname;
63. $_SESSION['email'] = $email;
64. $_SESSION['address'] = $address;
65. $_SESSION['city'] = $city;
66. $_SESSION['state'] = $state;
67. $_SESSION['zip'] = $zip;
68. $_SESSION['created'] = $created;
69. $_SESSION['bill_amount'] = $bill_amount;
70. $_SESSION['bill_freq'] = $bill_freq;
71. $_SESSION['paypal'] = $paypal;
72. $_SESSION['bill_date'] = $bill_date;
73. $_SESSION['storage'] = $storage;
74. $_SESSION['package'] = $package;
75. $_SESSION['bandwidth'] = $bandwidth;
76. $_SESSION['referred_by'] = $referred_by;
77. $_SESSION['status'] = $status;
78.  
79. //we will redirect the user to secure page
80. header( "Location: secure.php" );
81.  
82. }
83. else {
84. //if nothing is returned by the query, unsuccessful login code goes here...
85. echo 'Incorrect login name or password. Please <a href=./login.html>try again.</a>';
86. }
87. }
88. ?>