<?php // Start session session_start(); // Include connection requ

1. <?php
2.  
3. // Start session
4. session_start();
5.  
6. // Include connection
7. require('includes/connect.php');
8.  
9. // Set default message to blank
10. $message = "Please Login.";
11.  
12. // Check if form is submitted
13. if(isset($_POST['login'])) {
14.  
15. $username = mysqli_real_escape_string($db,$_POST['username']);
16. $password = mysqli_real_escape_string($db,md5($_POST['password']));
17.  
18. // Set default session status
19. $_SESSION['loggedIn'] = "false";
20.  
21. // Execute query
22. $login = "SELECT * FROM users WHERE username = '$username' AND password = '$password' LIMIT 1";
23. if (!($result = mysqli_query($db,$login))) {
24. die(mysqli_connect_error());
25. }
26.  
27. // Check for match if not display error message
28. if (mysqli_num_rows($result) != 1) {
29. $message = "<p class='error-msg'>Login Failed - Please try again!</p>";
30. } else {
31.  
32. // Build array of user data
33. $userdata = mysqli_fetch_assoc($result);
34.  
35. // Set sessions then redirect
36. $_SESSION['loggedIn'] = "true";
37. $_SESSION['user'] = $username;
38. $_SESSION['name'] = $userdata['fullname'];
39. $_SESSION['level'] = $userdata['level'];
40. $_SESSION['code'] = $userdata['linkedcodes'];
41.  
42. // Check user level and forward
43. if($userdata['level'] == 1) {
44. header('Location: /my/admin/');
45. } else header('Location: /my/dashboard/');
46.  
47. // Exit rest of script
48. exit;
49. }
50. }
51.  
52. ?>
53.  
54. <html>
55. <head>
56. <title>myblackwellprint.co.uk | Customer Portal</title>
57. <link rel="stylesheet" type="text/css" href="css/main.css" />
58. </head>
59. <body>
60. <div id="login-page">
61. <p class="login-welcome-msg"><?php echo $message; ?></p>
62. <form id="login-form" action="<?php echo htmlentities($_SERVER['PHP_SELF']); ?>" method="post">
63. <p style="margin-left:80px;"><label for="login">Username: </label><input id="login" class="login-fields" type="text" name="username" /><br />
64. <label for="password">Password: &nbsp;</label><input id="password" class="login-fields" type="password" name="password" /><br /></p>
65. <p style="margin-left:185px;"><input type="image" width="120" height="32" src="img/login_button.png" name="login" value="Login" /></p>
66. </form>
67. </div>
68. </body>
69. </html>