<?phpsession_start();$usrName = $_POST['logInName'];$pass = $_POST['logInPa

1. <?php
2.  
3. session_start();
4.  
5. $usrName = $_POST['logInName'];
6. $pass = $_POST['logInPass'];
7. $servername = "censored";
8. $username = "censored";
9. $password = "censored";
10. $db_name = "censored";
11. $conn = mysqli_connect($servername, $username, $password, $db_name);
12.  
13. if ($conn->connect_error) {
14. die("Connection failed: " . $conn->connect_error);
15. }
16.  
17. $sql = "SELECT usrName FROM loginInfo WHERE usrName='" . $usrName . "';";
18. $result = mysqli_query($conn,$sql);
19.  
20. if ($conn->query($sql) == TRUE) {
21. while ($row = $result->fetch_assoc()) {
22. $retrievedUsrName = $row["usrName"];
23. }
24. } else {
25. echo 'Error: ' . $conn->error;
26. }
27.  
28. $result->free;
29.  
30. if ($retrievedUsrName == $usrName) {
31. $sql2 = "SELECT pw FROM logininfo WHERE pw='" . $pass . "';";
32. $result2 = mysqli_query($conn,$sql2);
33.  
34. while ($row = $result2->fetch_assoc()) {
35. $retrievedPass = $row["pw"];
36. }
37. } else {
38. echo 'Fant ikke brukernavnet i databasen. Spør Tommy.';
39. }
40.  
41. if ($retrievedPass == $pass) {
42. header('Location: index.php');
43. } else {
44. echo 'Fant ikke passordet i databasen. Spør Tommy.';
45. }
46.  
47. $result->free;
48.  
49. $conn->close;
50.  
51. ?>