API tools faq
paste
Guest User

Untitled

a guest
Jun 8th, 2018
87
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.45 KB | None | 0 0
raw download clone embed print report
  1. LOGIN
  2.  
  3. <?php
  4. // MySQL settings
  5. $host = "localhost"; // Host name
  6. $username = "root"; // MySQL username
  7. $password = ""; // MySQL password
  8. $database_name = "blog"; // Datavase bane
  9. $table_name = "account"; // Table name
  10.  
  11. // Connection to MySQL
  12. mysql_connect($host, $username, $password) or die ("Error: " . mysql_error());
  13. mysql_select_db($database_name) or die ("Error: " . mysql_error());
  14.  
  15. // Form information
  16. $formusername = $_POST["username"];
  17. $formpassword = $_POST["password"];
  18.  
  19. // MySQL injection protection
  20. $formusername = stripslashes($formusername);
  21. $formpassword = stripslashes($formpassword);
  22. $formusername = mysql_real_escape_string($formusername);
  23. $formpassword = mysql_real_escape_string($formpassword);
  24. #$formpassword = md5($formpassword);
  25.  
  26. // Login
  27. if ($_SERVER['REQUEST_METHOD'] == "POST") {
  28. $query = mysql_query("SELECT * FROM $table_name WHERE username='$formusername' and password='$formpassword'");
  29. $count = mysql_num_rows($query);
  30.  
  31. if ($count == 1) {
  32. // Valid Login
  33. $_SESSION['login'] = true;
  34. echo 'Logged in!';
  35. } else {
  36. // Unvalid Login
  37. }
  38. }
  39. ?>
  40.  
  41. REGISTER
  42.  
  43. <?php
  44. // MySQL settings
  45. $host = "localhost"; // Host name
  46. $username = "root"; // MySQL username
  47. $password = ""; // MySQL password
  48. $database_name = "blog"; // Datavase bane
  49. $table_name = "account"; // Table name
  50.  
  51. // Connection to MySQL
  52. mysql_connect($host, $username, $password) or die ("Error: " . mysql_error());
  53. mysql_select_db($database_name) or die ("Error: " . mysql_error());
  54.  
  55. // Form information
  56. $formusername = $_POST["username"];
  57. $formpassword1 = $_POST["password1"];
  58. $formpassword2 = $_POST["password2"];
  59.  
  60. // MySQL injection protection + MD5
  61. $formusername = stripslashes($formusername);
  62. $formpassword1 = stripslashes($formpassword1);
  63. $formpassword2 = stripslashes($formpassword2);
  64. $formusername = mysql_real_escape_string($formusername);
  65. $formpassword1 = mysql_real_escape_string($formpassword1);
  66. $formpassword2 = mysql_real_escape_string($formpassword2);
  67. $formpassword1 = md5($formpassword1);
  68. $formpassword2 = md5($formpassword2);
  69.  
  70.  
  71. // Register
  72. if ($_SERVER['REQUEST_METHOD'] == "POST") {
  73. if (strlen($formpassword1) > 5 and $formpassword1 == $formpassword2) {
  74. $sql = "INSERT INTO account (username, password) VALUES ('$formusername', '$formpassword1')";
  75. mysql_query($sql) or die ("Error: " . mysql_error());
  76. print $formpassword1;
  77. }
  78. }
  79. ?>
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!