Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // Set database server access variables:
- $host = "localhost";
- $user = "root";
- $pass = "root";
- $db = "logansarchive";
- // Open connection
- $connection = mysql_connect($host, $user, $pass) or die ("Unable to connect!");
- // Select database
- mysql_select_db($db) or die ("Unable to select database!");
- $user = $_POST["adminname"];
- $pass = $_POST["adminpass"];
- $passwordHash = sha1($pass);
- $query = "SELECT AdminName, LastLogin FROM Admins WHERE AdminName = '".$user."' AND AdminPass = '".$passwordHash."'";
- $result = mysql_query($query) or die ("<p>Error in query:</p><p>".$query."</p><p>".mysql_error()."</p>");
- if (mysql_num_rows($result) < 1)
- {
- // Access denied
- header('Location: auth.php?r=0');
- }
- else
- {
- // Access granted
- list($AdminName, $LastLogin) = mysql_fetch_row($result);
- $user = $AdminName;
- $login = $LastLogin;
- if (!isset($login)) {
- $login = "today";
- }
- $date = getdate();
- $query = "UPDATE Admins SET LastLogin = '".$date."' WHERE AdminName = '".$user."'";
- mysql_query($query) or die ("<p>There was an error in your query:</p><p>".mysql_error()."</p>");
- session_start();
- $_SESSION['name'] = $user;
- $_SESSION['login'] = $login;
- header('Location: index.php');
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement