<?phpsession_start();if (isset($_SESSION['user'])) { header('Location:

1. <?php
2. session_start();
3. if (isset($_SESSION['user'])) {
4.     header('Location: users/'.$_SESSION['user'].'/index.php'); // [user]
5. }
6. ?>
7. <?php require_once('../Connections/uploader.php'); ?>
8. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
9. <html xmlns="http://www.w3.org/1999/xhtml">
10.  
11. <head>
12.     <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
13.    
14.     <title>Login Page</title>
15.    
16.     <link rel="stylesheet" type="text/css" href="../nice_web_login/style.css" />
17. </head>
18.  
19. <body>
20.  
21. <?
22. function loginFormErrorsCheck ($loginUsername, $loginPassword) {
23.   if (empty($loginUsername) || empty($loginPassword)) {
24.     return true;
25.   } else {
26.     return false;
27.   }
28. }
29. ?>
30. <?php
31. if(isset($_SESSION['user']))
32. {
33.     echo ("<p align='center'>If you are not automatically redirected, please click <a href='users/$_SESSION[user]/index.php'>here</a>.</p>");
34. }
35. ?>
36. <?php
37. if(isset($noLogin)) {
38.     echo "<div class='error' style='text-align:center;'>Your session has timed out.  Please login again.<br><br></div>";
39. }
40. if(isset($closeBrowser)) {
41.     echo "<div class='noError'><img src='../Images/error_image.png' width='16' height='16' /> <b>Notice</b>: You were successfully logged out.  <em>Please close your browser to prevent others from accessing your account.</em></div><p>";
42. }
43. ?>
44. <?php
45. if (isset($_POST['login'])) {
46.        
47.     $loginUsername = $_POST['uname'];  
48.     $loginPassword = $_POST['pword'];
49.    
50.     $blank_fields = loginFormErrorsCheck ($loginUsername, $loginPassword);  
51.        
52.     if (isset($blank_fields)) { }
53.        
54.     if (!$blank_fields) {
55.         $loginPassword = md5($loginPassword);
56.                
57.         mysql_select_db($database_uploader, $uploader);    
58.         $query = "SELECT * FROM members WHERE uname='"
59.         . mysql_real_escape_string($loginUsername) .
60.         "' AND pword='" . mysql_real_escape_string($loginPassword) . "'";  
61.         $result = mysql_query($query) or die(mysql_error());
62.                
63.         // make sure the username and password were found
64.         if (mysql_num_rows($result) > 0) {
65.             $row = mysql_fetch_array($result) or die(mysql_error());
66.            
67.             if ($loginUsername == "admin") { // Admin Login
68.                 mysql_close($result);
69.                 $_SESSION['admin'] = "Admin.";
70.                 header('Location: users/admin/index.php');
71.                 exit;
72.             }
73.            
74.             if ($row['acntStatus'] == 0) {  // If account is OK
75.             }
76.             else // If account is in bad standing
77.                 {
78.                     $login_errors[]="<div class='error'><img src='../Images/error_image.png' width='16' height='16' /> <b>Error</b>: Your account has been temporarily/permanently disabled, or terminated. Please contact us for more details.";
79.                 }
80.            
81.             if ($row['activated'] == 1) {
82.             }
83.             else {$login_errors[] = "<div class='error'><img src='../Images/error_image.png' width='16' height='16' /> <b>Error</b>: Your account is not yet activated.";}
84.            
85.             if ($row['activated'] == 1 && $row['acntStatus'] == 0)
86.             {
87.                 $_SESSION['user'] = $loginUsername;
88.                 mysql_close($result);
89.                 header('Location: users/' . $row['uname'] . '/index.php');
90.                 exit;
91.             }
92.         }
93.         else {$login_errors[] = "<div class='error'><img src='../Images/error_image.png' width='16' height='16' /> <b>Error</b>: Please check your User ID and Password, and try again.";}
94.     } else { $login_errors[] = "<div class='error'><img src='../Images/error_image.png' width='16' height='16' /> <b>Error</b>: Please fill in all fields.</div>";
95.     }
96. }
97. ?>
98.  
99. <?php
100. if (isset($login_errors) && !empty($login_errors)) {
101.     $result = count($login_errors);
102.    
103.     for ($i=0; $i<$result; $i++) {
104.         echo "<p class='errors'>$login_errors[$i]<br></p>";  
105.     }
106. }
107. ?>
108.     <form id="login-form" action="" method="post">
109.         <fieldset>
110.        
111.             <legend>Log in</legend>
112.            
113.             <label for="login">User ID</label>
114.             <input type="text" name="uname" id="uname" value="<? if (isset($login_errors)) {echo $_POST['uname'];} ?>" />
115.             <div class="clear"></div>
116.            
117.             <label for="password">Password</label>
118.             <input name='pword' type='password' value="<? if (isset($login_errors)) {echo $_POST['pword'];} ?>" />
119.             <div class="clear"></div>
120.            
121.             <label for="remember_me" style="padding: 0;">Remember me?</label>
122.             <input type="checkbox" id="remember_me" style="position: relative; top: 3px; margin: 0; " name="remember_me" disabled="disabled"/>
123.             <div class="clear"></div>
124.            
125.             <br />
126.            
127.             <input type="submit" style="margin: -20px 0 0 287px;" class="button" name="login" value="Log in"/> 
128.         </fieldset>
129.     </form>
130.    
131. </body>
132.  
133. </html>