Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $dbhost = 'localhost';
- $dbuser = 'trimentus_quatt';
- $dbpass = 'knowledge';
- $dbname = 'quatt';
- $conn_str = mysql_connect($dbhost,$dbuser,$dbpass);
- mysql_select_db($dbname, $conn_str) or die ('Could not select Database.');
- $myusername=$_POST['uname'];
- $mypassword=$_POST['pwd'];
- $sql="SELECT * FROM users";
- $num_rows = mysql_num_rows($sql);
- $res=mysql_query($sql);
- $a=0;
- while($row = mysql_fetch_array($res))
- {
- if(($row[username]==$myusername) && ($row[password]==$mypassword) && $row[user_level] == 1)
- {
- header("location:members.php?id=$row[id]");
- $a=1;
- }
- elseif(($row[username]==$myusername) && ($row[password]==$mypassword) && $row[user_level] == 2)
- {
- header("location:admin.php?id=$row[id]");
- $a=1;
- }
- elseif(($row[username]==$myusername) &&($row[password]!=$mypassword))
- {
- $error = "Incorrect password!";
- header("location:index.php");
- $a=1;
- }
- else {echo "Sorry something is wrong"; }
- }
- if($a==0)
- {
- echo "Hooo!, You are not registered user!!";
- }
- ?>
Add Comment
Please, Sign In to add comment