Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- if(isset($_GET['logout']))
- {
- unset($_SESSION['user_logged_in']);
- unset($_SESSION['nickname']);
- session_regenerate_id();
- header("Location: members.php");
- exit();
- }
- else if(!empty($_POST['uname']) && !empty($_POST['pword']))
- {
- include("mysql.php");
- $user = mysql_real_escape_string(strip_tags($_POST['uname']));
- $pass = mysql_real_escape_string(strip_tags($_POST['pword']));
- $result = mysql_query("SELECT * FROM accounts WHERE login='".$user."'") or die("error");
- if(mysql_num_rows($result)==1)
- {
- $row = mysql_fetch_array($result);
- if($pass == $row['password'])
- {
- $location = empty($_SESSION['requestedpage']) ? "index.php" : $_SESSION['requestedpage'];
- session_regenerate_id();
- $_SESSION['user_logged_in'] = "user is logged in"; // This can be set to anything you like!
- $_SESSION['nickname'] = $row['login'];
- header("Location: ".$location);
- $_SESSION['requestedpage'] = "";
- exit();
- }
- else
- {
- header("Location:loginpage.php");
- exit();
- }
- }
- else
- {
- header("Location:loginpage.php");
- exit();
- }
- }
- else
- {
- ?>
- <h1>Error</h1>
- <p>
- You should access this page through <a href="loginpage.php">the login page</a>
- </p>
- <?php
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement