<?phpsession_start();$username = $_POST['username'];$password = $_POST['pa

1. <?php
2. session_start();
3. $username = $_POST['username'];
4. $password = $_POST['password']; $myusername = stripslashes($username); $mypassword = stripslashes($password);
5. if ($myusername && $mypassword)
6. {
7. $connect = mysql_connect("IP","DBUSER","DBPASS") or die("The MySQL database could not be connected to."); //passwords etc have been removed.
8. mysql_select_db("haydz");
9. $query = mysql_query("SELECT * FROM `users` WHERE `username` = '$myusername'");
10. $nunrows = mysql_num_rows($query);
11. if (!$numrows=0)
12. {
13. while ($row = mysql_fetch_assoc($query))
14. {
15. $dbusername = $row['username'];
16. $dbpassword = $row['password'];
17. }
18. if ($myusername == $dbusername && md5($mypassword) == $dbpassword)
19. {
20. echo "You have succesfully logged into your account.<a href='member.php'>Click</a> here to continue";
21. $_SESSION['username'] = $dbusername;
22. }
23. else
24. echo "Your username or password is incorrect.";
25. }
26. else
27. die("This account is not registered, if you would like to register this account enter our server with this username (Server IP: 76.10.223.139:7777)");
28. }
29. else
30. die("Please enter your correct username and password");
31. ?>