Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <!doctype html>
- <?php
- //$cookie_name = "user";
- //$cookie_value = "value";
- //setcookie($cookie_name, $cookie_value, time() + 3600, "/");
- session_start();
- ?>
- <html>
- <head>
- <meta charset="utf-8">
- <title>Login PHP</title>
- </head>
- <body>
- <h1>Login PHP</h1>
- <?php
- //echo "number of cookies: ".count($_COOKIE);
- $user = $_GET['username'];
- $pass = $_GET['pwd'];
- $servername = "localhost";
- $username = "playground18";
- $password = "Cdz5SOVrY2p8fnWS";
- $dbname = "playground18";
- try
- {
- $conn = new PDO("mysql:host=$servername;dbname=$dbname", $username, $password);
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $sql = "SELECT count(*) FROM `tanay_auction_users` WHERE id > 0";
- $result = $conn->prepare($sql);
- $result->execute();
- $number_of_rows = $result->fetchColumn();
- //print($number_of_rows);
- //$stmt = $conn->prepare("SELECT COUNT(*) as total FROM tanay_auction_users;");
- //$result = $stmt->execute();
- //echo $result;
- for($x = 2; $x <= $number_of_rows+1; $x++)
- {
- $queryuser = "SELECT username FROM `tanay_auction_users` WHERE id = $x";
- $userresult = $conn->prepare($queryuser);
- $userresult->execute();
- $uresult = $userresult->fetchcolumn();
- $querypass = "SELECT password FROM `tanay_auction_users` WHERE id = $x";
- $passresult = $conn->prepare($querypass);
- $passresult->execute();
- $presult = $passresult->fetchColumn();
- //print($userresult);
- //print_r($presult);
- if (strpos($user, $uresult) !== false)
- {
- if (strpos($pass, $presult) !== false)
- {
- echo "<h1>Success!</h1>";
- $_SESSION["status"] = "authorized";
- $_SESSION["name"] = $user;
- echo "<br>currently logged in: " . $_SESSION["name"] . ".<br>";
- //setcookie("user", "value", time() - 3600);
- //$cookie_name = "authorizeduser";
- //$cookie_value = $user;
- //setcookie($cookie_name, $cookie_value, time() + 3600, "/");
- header('Location: auctionHome.php');
- }
- else {
- $count++;
- if ($count==$number_of_rows)
- {
- echo "<h1>Incorrect Login!</h1>";
- session_destroy();
- //setcookie("user", "value", time() - 3600);
- }
- }
- }
- else {
- $count++;
- if ($count==$number_of_rows)
- {
- echo "<h1>Incorrect Login!</h1>";
- session_destroy();
- //setcookie("user", "value", time() - 3600);
- }
- }
- }
- }
- catch(PDOException $e)
- {
- echo "Error: " . $e->getMessage();
- }
- $conn = null;
- ?>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement