//Login Script//Pull variables from form on home page $user = $_POST['user'];

1. //Login Script
2.  
3. //Pull variables from form on home page
4.     $user = $_POST['user'];
5.     $pass = $_POST['password'];
6.    
7. //SQL query to decrypt password with a salt
8.     $query = "SELECT * FROM personnel WHERE pers_user = '$user' AND AES_DECRYPT(pers_password, 'pol') = '$pass' LIMIT 0, 30 ";
9.     $result = mysql_query($query);
10.  
11. //If it returns a result, assign the sessions username as whats in the database
12.     if (@mysql_num_rows($result) > 0) {
13.         session_unset();
14.         session_start();
15.             while ($row = mysql_fetch_assoc($result)) {
16.                 $_SESSION['pers_cac'] = $row['pers_cac'];
17.                 $_SESSION['pers_id'] = $row['pers_id'];
18.                 $_SESSION['pers_fullname'] = $row['pers_fullname'];
19.                 $_SESSION['pers_rank'] = $row['pers_rank'];
20.             }
21.            
22. //Easy way to make sure a user is logged in, assign variable to 1
23.     $_SESSION['logged'] = 1;
24.    
25. //Content after submittion
26.     echo "<META HTTP-EQUIV=Refresh CONTENT='0; URL=index.php'>";
27.    
28. } else {
29.  
30. //Bad credentials
31.     echo "Incorrect password";
32. }