Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- if ((!isset($_POST['login'])) || (!isset($_POST['haslo'])))
- {
- header('Location: ./logowanie.php');
- exit();
- }
- require_once "connect.php";
- $polaczenie = @new mysqli($host, $db_user, $db_password, $db_name);
- if ($polaczenie->connect_errno!=0)
- {
- echo "Blad numer: ".$polaczenie->connect_errno;
- }
- else
- {
- $login = $_POST['login'];
- $haslo = $_POST['haslo'];
- $login = htmlentities($login, ENT_QUOTES, "UTF-8");
- $haslo = htmlentities($haslo, ENT_QUOTES, "UTF-8");
- if ($rezultat = @$polaczenie->query(sprintf("SELECT * FROM uzytkownicy WHERE user='%s' AND pass='%s'",
- mysqli_real_escape_string($polaczenie,$login),
- mysqli_real_escape_string($polaczenie,$haslo))))
- {
- $ilu_uzytkownikow = $rezultat->num_rows;
- if($ilu_uzytkownikow>0)
- {
- $_SESSION['zalogowany'] = true;
- $wiersz = $rezultat->fetch_assoc();
- $_SESSION['id'] = $wiersz['id'];
- $_SESSION['user'] = $wiersz['user'];
- $_SESSION['email'] = $wiersz['email'];
- $_SESSION['imie'] = $wiersz['imie'];
- // $_SESSION['notatka'] = $wiersz['notatka'];
- unset($_SESSION['blad']);
- $rezultat->free_result();
- header('Location: ./index.php');
- } else {
- $_SESSION['blad'] = '<strong><p style="color: red; text-align: center;"> Nieprawidłowy login lub hasło!</p></strong>';
- header('Location: ./logowanie.php');
- }
- }
- $polaczenie->close();
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
