<?phpsession_start();if(isset ($_SESSION['user'])!=''){header("Location:

1. <?php
2. session_start();
3.  
4. if(isset ($_SESSION['user'])!=''){
5. header("Location:index.php");}
6. error_reporting(0);
7. error_reporting(E_ERROR | E_WARNING | E_PARSE);
8.  
9. include("config.php");
10. $email=$_POST['user'];
11. $password=$_POST['pass'];
12.  
13. if(isset($_POST) && $email!='' && $password!=''){
14. $sql=$dbh->prepare("SELECT * FROM users WHERE username=?");
15. $sql->execute(array($email));
16. while($r=$sql->fetch()){
17. $p=$r['password'];
18. $p_salt=$r['psalt'];
19. $id=$r['id'];
20. }
21.  
22. $site_salt="subinsblogsalt";/*Common Salt used for password storing on site. You can't change it. If you want to change it, change it when you register a user.*/
23. $salted_hash = hash('sha256',$password.$site_salt.$p_salt);
24. if($p==$salted_hash){
25. $_SESSION['user']=$id;
26. header("Location:index.php");
27. }else{
28. echo "<script>alert(\"Wrong Username and Password!\");</script>";
29. }
30. }
31. ?>