Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- include('header.php');
- include('includes/database.inc.php');
- $title = "Login";
- $trimmed_username = @trim($_POST['username']);
- $trimmed_password = @trim($_POST['password']);
- $md5_password = md5($trimmed_password);
- if(isset($_POST['username']) AND isset($_POST['password']))
- {
- $connection = mysqli_connect($dbhost,$dbuser,$dbpass) or die("Could not connect to Database."); //connects to database
- $db = mysqli_select_db($connection,"alex") or die("Could not select Database");// Selects database
- $query = "SELECT user_id FROM users WHERE username='".mysqli_real_escape_string($connection, $trimmed_username)."'
- AND password = '".mysqli_real_escape_string($connection, $md5_password)."' LIMIT 1";
- $result = mysqli_query($connection,$query) or die("Could not execute query");
- if($row = mysqli_fetch_array($result) AND $_POST['rememberme'] == 'TRUE');
- {
- $cookieNameID = "UID";
- $cookieValueID = $row['user_id'];
- $expirationID = time()+60*60*24*30*12;
- $cookieNamePass = "pass";
- $cookieValuePass = $md5_password;
- $exirationPass = time()+60*60*24*30*12;
- setcookie($cookieNameID, $cookieValueID, $expirationID);
- setcookie($cookieNamePass, $cookieValuePass, $expirationPass);
- }
- else if($row = mysqli_fetch_array($result))
- {
- // Login correct
- $_SESSION['user_id'] = $row['user_id'];
- header("Location: index.php?login=true");
- }
- else
- {
- header("Location: index.php?error=1");
- }
- }
- else
- {
- header("Location: index.php?error=2");
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
