Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <span style="font-family: Helvetica,Arial,sans-serif;">
- <div style = "text-align: left;">
- <form method="post" name="users" action="" target="_parent">
- Pseudo : <input type="text" name="pseudo" size=15 /><br />
- Mot de passe : <input type="password" name="password" size=10 /><br />
- <input type="submit" value="connexion" />
- </form>
- </div>
- </span>
- <?php
- //connexion a la DB
- $serveur = '';
- $user = '';
- $pass = '';
- $bdd = '';
- $connect= mysql_connect($serveur ,$user ,$pass) or die('Une erreur a eu lieu lors de la connection mysql');
- mysql_select_db($bdd ,$connect) or die ('Un erreur a eu lieu lors du choix de la base de données');
- //definition des variables qu'on envoie sur la base de données
- $pseudo = mysql_real_escape_string(htmlspecialchars($_POST['pseudo'])) ;
- $password = mysql_real_escape_string(htmlspecialchars($_POST['password'])) ;
- $passhash=sha1($password);
- //verifier utilisateur présent dans la DB
- if (isset($_POST['pseudo']) AND isset($_POST['password'])
- AND !empty($_POST['pseudo']) AND !empty($_POST['password']))
- {
- $sql = "SELECT * FROM `users` WHERE pseudo='$pseudo' AND passhash='$passhash' AND etat = 1";
- $req = mysql_query($sql) or die('Erreur SQL !<br />'.$sql.'<br />'.mysql_error());
- $data = mysql_fetch_array($req);
- if ( $data[0]==1 )
- {
- // demarrage de la session
- session_register("pseudo");
- echo "bienvenue $pseudo";
- }
- else
- {
- echo "pseudo ou mot de passe incorrecte";
- }
- }
- else
- {
- echo "champ vide";
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement