Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php include "db.php" ?>
- <?php session_start(); ?>
- <?php
- if(isset($_POST['login'])){
- $username = $_POST['username'];
- $password = $_POST['password'];
- $query = $connection->prepare("
- SELECT * FROM adminUsers WHERE username = :username
- ");
- $query->execute([
- 'username'=>$username
- ]);
- if (!$query){
- die("QUERY FAILED");
- }
- while ($row = $query->fetch(PDO::FETCH_ASSOC)) {
- $db_id = $row['id'];
- $db_username = $row['username'];
- $db_password = $row['password'];
- $db_display_name = $row['display_name'];
- }
- }
- if(password_verify($password, $db_password)){
- $_SESSION['username'] = $db_username;
- $_SESSION['display_name'] = $db_display_name;
- $_SESSION['password'] = $db_password;
- $cookie = $_SESSION['username'];
- $cookie2 = md5($_SESSION['password']);
- $expiration = time() + (60*60*24*365);
- setcookie('upst', $cookie, $expiration);
- setcookie('upst2', $cookie2, $expiration);
- header("Location: ../admin.php");
- } else {
- header("Location: ../please_login.php");
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement