Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- if(isset($_POST['login'])) {
- include_once("db.php");
- $username = strip_tags($_POST['username']);
- $password = strip_tags($_POST['password']);
- $username = stripslashes($username);
- $password = stripslashes($password);
- $username = mysqli_real_escape_string($username);
- $password = mysqli_real_escape_string($password);
- $password = md5($password);
- $sql = "SELECT * FROM users WHERE username='$username' LIMIT 1";
- $query = mysqli_query($db, $sql);
- $row = mysqli_fetch_array($query);
- $id = $row['id'];
- $db_password = $row['password'];
- if($password == $db_password){
- $_SESSION['username'] = $username;
- $_SESSION['id'] = $id;
- header ("Location: index.php");
- } else {
- echo "Incorrecto";
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement