Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- //NEVER use this
- session_start();
- require("configuration.php");
- if(isset($_GET['login']))
- {
- $username = $_POST['username'];
- $password = md5(sha1(md5(sha1($_POST['password']))));
- if(!$username || !$password)
- {
- echo("All fields are required.");
- }
- else
- {
- $uinfo = mysql_query("SELECT * FROM `users` WHERE `username` = '$username'");
- $userdata = mysql_fetch_assoc($uinfo);
- if($userdata[password] = $password)
- {
- $_SESSION['id'] = "$userdata[id]";
- $_SESSION['password'] = "$userdata[password]";
- echo("Welcome $logged[username]");
- }
- else
- {
- echo("Incorrect username and password!");
- }
- }
- }
- else
- {
- echo("<form action=\"index.php?login\" method=\"post\">
- <input type=\"text\" name=\"username\" /><br />
- <input type=\"password\" name=\"password\" /><br />
- <input type=\"submit\" name=\"submit\" value=\"Login\" /><br />
- <br /><strong>Your IP will be logged ($_SERVER[REMOTE_ADDR])</strong>
- </form>");
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
