<?phpinclude('database.php');include('../login.php');session_start();

1. <?php
2. include('database.php');
3. include('../login.php');
4.  
5. session_start();
6.  
7. $username = $_POST['username'];
8. $password = $_POST['password'];
9.  
10. $result = $con->query("select * from accounts where username='$username' and password='$password'")
11. or die("Failed to query database ".mysql_error());
12.  
13.  
14. $date = date('Y-m-d H:i:s');
15. $query = $con->query("UPDATE accounts SET last_login='$date' WHERE username='$username'")
16. or die("Failed to query database ".mysql_error());
17.  
18. $row = $result->fetch_array(MYSQLI_ASSOC);
19. if ($row['username'] == $username && $row['password'] == $password){
20. $_SESSION['naam'] = $row['username'];
21. $_SESSION['login_error'] = "";
22. header("Location:../userpage.php");
23. } else {
24. header("Location:../login.php");
25. $_SESSION['login_error'] = "Onjuist wachtwoord of gebruikersnaam";
26.  
27.  
28. }
29. ?>