Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- //login
- if($_GET["func"]=="login")
- {
- $connect = new mysqli($dbhost, $dbusername, $dbpassword, $dbname);
- if ($connect->connect_errno!=0) {
- echo "Error: ".$connect->connect_errno." Description: ".$connect->connect_error;
- }
- else {
- $login = $_POST["user"];
- $password = $_POST["passwd"];
- $query = "SELECT username, level FROM users WHERE username='$login' AND password='md5($password)'";
- if ($stmt = $connect->prepare($query)) {
- $stmt->execute();
- $stmt->bind_result($username, $password);
- while ($stmt->fetch()) {
- echo "{";
- echo '"username": "' . $username . '",';
- echo "}";
- }
- /* close statement */
- $stmt->close();
- }
- $connect->close();
- }
- }
- //register
- if($_GET["func"]=="register") {
- $connect = new mysqli($dbhost, $dbusername, $dbpassword, $dbname);
- if($connect->connect_errno!=0) {
- echo "Error: ".$connect->connect_errno." Descruption: ".$connect->connect_error;
- }
- else {
- $login = $_POST["user"];
- $password = md5($_POST["passwd"]);
- $sql = "INSERT INTO users VALUES(NULL, '$login', '$password')";
- if($result = $connect->query($sql)) {}
- else {
- echo "ERROR";
- }
- $connect->close();
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement