Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?
- session_start();
- error_reporting(0);
- include $_SERVER['DOCUMENT_ROOT']."/db/db.php";
- if (isset($_POST['login'])){
- $login = $_POST['login'];
- if ($login == '') {
- unset($login);
- $login_error = "Введите логин";
- }
- else{
- $login_error = "";
- }
- }
- if (isset($_POST['password'])){
- $password = $_POST['password'];
- if ($password == '') {
- unset($password);
- $password_error = "Введите пароль";
- }
- else{
- $password_error = "";
- }
- }
- $login = stripslashes($login);
- $login = htmlspecialchars($login);
- $password = stripslashes($password);
- $password = htmlspecialchars($password);
- $login = trim($login);
- $login = strtolower($login);
- $password = trim($password);
- $password = md5($password);//шифруем пароль
- $user = mysql_query("SELECT * FROM accounts WHERE username='$login' AND password='$password'");
- $id_user = mysql_fetch_array($user);
- if (empty($id_user['id'])){
- $log_pass_error = "Неверный логин/пароль";
- echo "$log_pass_error";
- }
- else {
- $row = mysql_fetch_array(mysql_query("SELECT * FROM characters WHERE username='$login'"));
- if($row){
- echo "Есть персонажи<br/>";
- $user_pers = '+';
- echo $row['Character'];
- }else{
- echo "Нет персонажей";
- $user_pers = '-';
- }
- $log_pass_error = "";
- $_SESSION['password'] = $password;
- $_SESSION['user_pers'] = $user_pers;
- $_SESSION['pers1'] = $row['Character'];
- $_SESSION['pers2'] = $pers2;
- $_SESSION['pers3'] = $pers3;
- $_SESSION['login'] = $login;
- $_SESSION['id'] = $id_user['id'];
- }
- /*if(empty($login) and empty($password)){*/
- if ($password == ''){
- $log_pass_error = "";
- }
- $_SESSION['login_error'] = ($login_error);
- $_SESSION['password_error'] = ($password_error);
- $_SESSION['log_pass_error'] = ($log_pass_error);
- $server = $_SERVER['HTTP_REFERER'];
- echo $server;
- echo "<meta http-equiv='Refresh' content='0; URL=$server'>";
- ?>
Add Comment
Please, Sign In to add comment