SHOW:
|
|
- or go back to the newest paste.
1 | - | if($database->query("SELECT * FROM users WHERE username=:username and password=:password",array(":username"=>$_POST['loginUsername'],":password"=>$_POST['loginPassword']))>0){ |
1 | + | <?php |
2 | - | session_start(); |
2 | + | $data = $database->queryOne("SELECT * FROM users WHERE username=:username and password=:password",array(":username"=>$_POST['loginUsername'],":password"=>$_POST['loginPassword'])); |
3 | - | $data = $database->queryOne("SELECT * FROM users WHERE username=:username and password=:password",array(":username"=>$_POST['loginUsername'],":password"=>$_POST['loginPassword'])); |
3 | + | if($data){ |
4 | - | $_SESSION['username']=$data['username']; |
4 | + | session_start(); |
5 | - | $_SESSION['admin_level']=$data['admin_level']; |
5 | + | $_SESSION['username']=$data['username']; |
6 | - | $_SESSION['name']=$data['name']; |
6 | + | $_SESSION['admin_level']=$data['admin_level']; |
7 | - | $_SESSION['lastname']=$data['lastname']; |
7 | + | $_SESSION['name']=$data['name']; |
8 | - | echo "done"; |
8 | + | $_SESSION['lastname']=$data['lastname']; |
9 | - | header("Location: /"); |
9 | + | echo "done"; |
10 | - | } |
10 | + | header("Location: /"); |
11 | - | else{ |
11 | + | } |
12 | - | header("Location: ?error=1"); |
12 | + | else{ |
13 | - | } |
13 | + | header("Location: ?error=1"); |
14 | } |