Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- login.php:
- <?php
- error_reporting(E_ALL);
- ini_set("display_errors", "on");
- ini_set("display_startip_errors", "on");
- include("header.html");
- include("global.php");
- include("db.php");
- $errormsg = "";
- if(isset($_POST['logmail']) && ($_POST['logpass'])){
- $logmail = htmlspecialchars($_POST['logmail']);
- $logpass = htmlspecialchars($_POST['logpass']);
- $salt1 = "geheim";
- $salt2 = "geheim";
- $email_exp = '/[A-Za-z0-9._%]+@+[A-Za-z0-9.-]+[.A-Za-z]{2,4}$/';
- $check_logdata = $connect->query("SELECT id,password from user_data2 where email = '$logmail' LIMIT 1");
- $check_logdata_ok = $check_logdata->num_rows;
- if($check_logdata_ok>0){
- while($row = $check_logdata->fetch_assoc()){
- $kun_id=$row['id'];
- $kunden_pass=$row['password'];
- }
- $connect->close;
- $kunden_id = '66342665'.$kun_id;
- $logpass = $salt1.$logpass.$salt2;
- $logpass = sha1($logpass);
- if($logpass == $kunden_pass){
- $_SESSION['password'] = $kunden_pass;
- $_SESSION['username'] = $kunden_id;
- setcookie("user_cookie", $kunden_id, time()+60*60*24*100, "/", 'death-computer.com/*');
- setcookie("pass_cookie", $kunden_pass, time()+60*60*24*100, "/", 'death-computer.com/*');
- header("Location: index.php");
- }else{
- $errormsg = 'Die eingetragenen Daten sind falsch!';
- }
- }else{
- $errormsg = 'Die eingetragenen Daten sind falsch!';
- }
- }
- ?>
- <!DOCTYPE html>
- <html lang="de" dir="ltr">
- <head>
- <meta charset="utf-8">
- <title>"Login-Death-Computer"</title>
- <link rel="stylesheet" type="text/css" href="style/login-style.css">
- <link href="https://fonts.googleapis.com/css?family=Roboto:500" rel="stylesheet">
- <link href="https://fonts.googleapis.com/css?family=Roboto+Slab" rel="stylesheet">
- </head>
- <body>
- <table style="width: 100%;">
- <tr>
- <!-- Formular -->
- <td align="center" style="padding-bottom: 1em; padding-top: 1em; width: 65%; border-right: 1px solid rgba(0, 20, 80, 0, 25);">
- <form id="SignIn" method="post" action="">
- <table style="width: 95%; font-family:arial;">
- <tr>
- <td colspan="2"><?php print($errormsg) ?></td>
- </tr>
- <tr>
- <td colspan="2"> </td>
- </tr>
- <tr>
- <td style="width: 80%">Email:</td>
- <td></td>
- </tr>
- <tr>
- <td><input class="reginput" type="text" name="logmail" /></td>
- <td></td>
- </tr>
- <tr>
- <td style="width: 80%">Password:</td>
- <td></td>
- </tr>
- <tr>
- <td><input class="reginput" type="password" name="logpass" /></td>
- <td></td>
- </tr>
- <tr>
- <td colspan="2" style="padding-bottom: 1em; padding-left: 1em"><button name = "login" class= "registerbutton" form="SignIn" style="cursor: pointer;">Einloggen</button></td>
- </tr>
- <tr>
- <a href="register.php">
- <td colspan="2" style="padding-bottom: 1em; padding-left: 1em"><button name = "registcreate" id= "registerbutton" form="SignIn" style="cursor: pointer;" onclick="location.href='register.php'" type="button">Benutzerkonto erstellen</button></td></a>
- </tr>
- </table>
- </form>
- </td>
- <td align="center" valign="top"></td>
- </tr>
- </table>
- </body>
- </html>
- Global.php
- <?php
- session_start();
- if(isset($_SESSION['username'])){
- $session_user = $_SESSION['username'];
- $session_pass = $_SESSION['Password'];
- $session_user = htmlspecialchars($session_user);
- $session_pass = $session_pass;
- if(is_numeric($session_user)){
- include("db.php");
- $session_user = str_replace("66342665","",$session_user);
- $session_user = htmlspecialchars($session_user);
- $getmemberlogged=$connect->query("SELECT id, password FROM user_data2 WHERE id = '$session_user' LIMIT 1");
- $getmemberloggedcount = $getmemberlogged -> num_rows;
- if($getmemberloggedcount>0){
- while($row=$getmemberlogged->fech_assoc()){
- $user_db_pass=$row['password'];
- }
- if($session_pass == $user_db_pass){
- $_SESSION['username'] = $session_user;
- $_SESSION['password'] = $session_pass;
- $logged = 1;
- }else{
- header("Location:logout.php");
- exit();
- }
- $connect->close;
- }else{
- header("Location:logout.php");
- exit();
- }
- }else{
- header("Location:logout.php");
- exit();
- }
- }else if(isset($_COOKIE['user_cookie'])){
- $session_user = htmlspecialchars($_COOKIE['username_cookie']);
- $session_pass = $_COOKIE['password_cookie'];
- if(is_numeric($session_user)){
- include("db.php");
- $session_user = str_replace("66342665","",$session_user);
- $session_user = htmlspecialchars($session_user);
- $getmemberlogged=$connect->query("SELECT id, password FROM user_data2 WHERE id = '$session_user' LIMIT 1");
- $getmemberloggedcount = $getmemberlogged -> num_rows;
- if($getmemberloggedcount>0){
- while($row=$getmemberlogged->fech_assoc()){
- $user_db_pass=$row['password'];
- }
- if($session_pass == $user_db_pass){
- $_SESSION['username'] = $session_user;
- $_SESSION['password'] = $session_pass;
- $logged = 1;
- }else {
- header("Location:logout.php");
- exit();
- }
- $connect->close;
- }else{
- header("Location:logout.php");
- exit();
- }
- }else{
- header("Location:logout.php");
- exit();
- }
- }else{
- $logged = 0;
- }
- ?>
- heade.html
- <!DOCTYPE html>
- <html>
- <head>
- <meta charset="utf-8">
- <title>Death-Computer</title>
- <link rel="stylesheet" type="text/css" href="style/login-style.css">
- <link href="https://fonts.googleapis.com/css?family=Roboto:500" rel="stylesheet">
- <link href="https://fonts.googleapis.com/css?family=Roboto+Slab" rel="stylesheet">
- </head>
- <body>
- <header>
- <div id="logo">
- <a href="index.php">
- <img src="logo.png" alt="Logo">
- </a>
- </div>
- <nav>
- <ul id = "log">
- <li><a href="login.php">Einloggen</a></li>
- </ul>
- </nav>
- </header>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
