Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- include 'required.php';
- $username = $_POST["username"];
- $md5pass = md5($_POST['password']);
- mysql_select_db($dbname, $link) or die(mysql_error());
- $rs2_duplicates = mysql_query("SELECT * FROM users WHERE username = '$username' AND banned = 'Y'");
- $duplicates2 = mysql_num_rows($rs2_duplicates);
- if ($duplicates2 > 0)
- {
- header("location: loginload.php?msg=Your Account is Banned. Please contact an Administrator to find out why.");
- exit();
- }
- $query = "SELECT * FROM users WHERE username = '$username' AND password = '$md5pass'";
- $result = mysql_query($query) or die(mysql_error());
- if ($data_array = mysql_fetch_array($result))
- {
- $rs_duplicates = mysql_query("SELECT * FROM users WHERE username = '$username' AND admin = 'Y'");
- $duplicates = mysql_num_rows($rs_duplicates);
- if ($duplicates > 0)
- {
- $expire=time()+60*60*24*30;
- setcookie("admin", $data_array['id'], $expire);
- setcookie("username", $data_array['username'], $expire);
- }
- $expire=time()+60*60*24*30;
- setcookie("username", $data_array['username'], $expire);
- $dm = date("m");
- $dd = date("d");
- $dy = date("y");
- $jdate = "$dm/$dd/$dy";
- $query = "UPDATE profiles SET logged='$jdate' WHERE user='$username'";
- $result = mysql_query($query) or die(mysql_error());
- header("location: loginload.php?msg=Thank you for logging in!");
- } else {
- header("Location: loginload.php?msg=Invalid Username or Password");
- }
- mysql_close($link);
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
