<?phpsession_start();require 'database/connect.php';require 'function/gener

1. <?php
2.  
3. session_start();
4.  
5. require 'database/connect.php';
6. require 'function/general.php';
7. require 'function/user.php';
8.  
9.  
10. $errors = array();
11. ?>
12.  
13. <?php
14.  
15. $username="root";
16. $password="";
17. $database="techfest";
18.  
19. mysql_connect('localhost', $username , $password);
20. @mysql_select_db($database)or die('connection to database fail');
21.  
22.  
23.  
24.  
25. ?>
26.  
27. <?php
28.  
29. function sanitize($data) {
30. return mysql_real_escape_string($data);
31.  
32. }
33. ?>
34.  
35. <?php
36.  
37.  
38.  
39. function user_exists($username){
40. $username= sanitize($username);
41.  
42. return (mysql_result(mysql_query("SELECT COUNT(`user_id`) FROM `users` WHERE `username` = '$username'"), 0) == 1) ? true : false ;
43. }
44.  
45.  
46. function user_active($username){
47. $username= sanitize($username);
48.  
49. return (mysql_result(mysql_query("SELECT COUNT(`user_id`) FROM `users` WHERE `username` = '$username' AND `active` = 1"), 0) == 1) ? true : false ;
50. }
51.  
52. function user_id_from_username($username) {
53. $username = sanitize($username) ;
54.  
55. return mysql_result(mysql_query("SELECT `user_id` FROM `users` WHERE `username` = '$username'"), 0, 'user_id');
56. }
57.  
58. function login($username, $password) {
59. $username = user_id_from_username($username);
60.  
61. $username = sanitize($username);
62. $password = sanitize($password);
63.  
64. return (mysql_result(mysql_query("SELECT COUNT(`user_id`) FROM `users` WHERE `username` = '$username' AND `password` = '$password'"),0) == 1) ? $user_id : false;
65.  
66. }
67.  
68.  
69. ?>
70.  
71. <?php
72.  
73. include 'core/init.php';
74. include 'includes/overall/header.php';
75.  
76. if (empty($_POST) === false) {
77. $username = $_POST['username'];
78. $password = $_POST['password'];
79.  
80. if(empty($username) || empty($password)){
81. $errors[] = 'you have to enter both username or password';
82. }
83. else if (user_exists($username) === false){
84. $errors[] = ' username not found, have you registered ' ;
85. }
86. else if (user_active($username) === false ) {
87. $errors[] = 'you have not activated you'r account, email activation required' ;
88.  
89. }
90. else{
91. $login = login($username, $password) ;
92. if ($login === false) {
93. $errors[] = 'the username n password combination you have entered is incorrect ' ;
94. }else {
95.  
96. echo 'ok! ' ;
97. }
98.  
99. }
100.  
101. print_r($errors);
102. }
103.  
104. include 'includes/overall/footer.php' ;
105.  
106. ?>