Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- include "connect.php";
- if (isset($_POST['user_login'])) {
- session_start();
- $state_on = 1;
- $state_off = 0;
- $user = $conn->prepare("SELECT * FROM users WHERE username=:name AND password=:pword AND state=:s");
- $user->bindParam(":name", $_POST['username']);
- $user->bindParam(":pword", $_POST['password']);
- $user->bindParam(":s", $state_on);
- $user->execute();
- if ($user->rowCount() > 0) {
- $row_user = $user->fetch(PDO::FETCH_ASSOC);
- $user_id = $row_user['id_user'];
- $user_session = $row_user['session_id'];
- $user_nivelseg = $row_user['id_lvl'];
- $update_session = $conn->prepare("UPDATE users SET session_id =:idsession WHERE id_user=:iduser");
- $update_session->bindParam(":iduser", $user_id);
- $update_session->bindParam(":idsession", session_id());
- $update_session->execute();
- $_SESSION['session_id'] = $user_session;
- $_SESSION['id_user'] = $user_id;
- $_SESSION['id_lvl'] = $user_nivelseg;
- header("Location: index.php");
- // echo 'login = SUCCESS!';
- } else {
- // echo 'login = FAIL!';
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement