// Query$query = "SELECT * FROM user WHERE username = '$user' AND password = '

1. // Query
2. $query = "SELECT * FROM user WHERE username = '$user' AND password = '$pswd'";
3. $result = mysql_query($query,$conn);
4. if (!$result)
5. {
6. die("Errore nella query : $query " . mysql_error());
7. }
8. // Check
9. $record = mysql_fetch_array($result);
10. if ($record['username'] == $user && $record['password'] == $pswd)
11. {
12.  
13. $_SESSION['id'] = $record['id']; // id
14. $_SESSION['username'] = $record['username']; // Username
15. $_SESSION['password'] = $record['password']; // Password
16. $_SESSION['admin'] = $record['admin']; // Lvl Admin
17. $_SESSION['skin'] = $record['skin']; // Player Skin
18. $_SESSION['kills'] = $record['kills']; // Kills
19. $_SESSION['deaths'] = $record['deaths']; // Deaths
20. $_SESSION['money'] = $record['money']; // Money
21. $_SESSION['dmoney'] = $record['dmoney']; // Bank Money
22. $_SESSION['vip'] = $record['vip']; // ViP user
23. $_SESSION['weapons'] = $record['weapons']; // Weapons
24. $_SESSION['vehicles'] = $record['vehicles']; // Vehicle
25. $_SESSION['vehicles_color'] = $record['vehicles_color']; // Vehicle color
26. $_SESSION['email'] = $record['email']; // Email
27. $_SESSION['mute'] = $record['mute']; // Mute
28. $_SESSION['banned'] = $record['banned']; // Bannato
29.  
30. header("location: ucp/index.php");
31. }else{
32. $msg = urlencode("Username and / or Password is incorrect");
33. header("location: index.php?msg=$msg");
34. die("Username and / or Password is incorrect");
35.  
36. }