Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- if((!isset($_POST['login'])) || (!isset($_POST['pass'])))
- {
- header('Location: index.php');
- exit();
- }
- require_once "connect.php";
- $connect= new mysqli($host, $db_user, $db_password, $db_name);
- if($connect->connect_errno!=0)
- {
- echo "ERROR: ".$connect->connect_errno;
- }
- else
- {
- $login = $_POST['login'];
- $pass= $_POST['pass'];
- $login = htmlentities($login, ENT_QUOTES, "UTF-8");
- $pass = htmlentities($pass, ENT_QUOTES, "UTF-8");
- if ($rezultat = @$connect->query(
- sprintf("SELECT * FROM users WHERE user='%s'",
- mysqli_real_escape_string($connect, $login))))
- {
- $ilu_userow = $rezultat->num_rows;
- if($ilu_userow>0)
- {
- $wiersz = $rezultat->fetch_assoc();
- if (password_verify($pass, $wiersz['pass']))
- {
- $_SESSION['zalogowany'] = true;
- $_SESSION['id'] = $wiersz['id'];
- $_SESSION['user'] = $wiersz['user'];
- unset($_SESSION['blad']);
- $rezultat->free_result();
- header('Location: index_l.php');
- }
- else
- {
- $_SESSION['blad'] = '<span style="color:red">Something wrong</span>';
- header('Location: login_page.php');
- }
- } else {
- $_SESSION['blad'] = '<span style="color:red">Something wrong</span>';
- header('Location: login_page.php');
- }
- }
- $connect->close();
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement