Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- mysql_connect("localhost","faniste1_us","us") or die (mysql_error());
- mysql_select_db("fansite1_us") or die (mysql_error());
- $uname = $_SESSION['session_user'];
- $pword = $_SESSION['session_pass'];
- $user = mysql_query("SELECT * FROM `users` WHERE `username` = '$uname' AND `password` = '$pword'");
- $user = mysql_fetch_array($user);
- if(isset($_GET['login'])) {
- $username = mysql_real_escape_string($_POST['username']);
- $password = md5($_POST['password']);
- $check = mysql_query("SELECT * FROM `users` WHERE `username` = '$username'")
- while($c = mysql_fetch_array($check)) {
- if($password != $c['password'] || $find == "0") {
- echo("Incorrect username or password!");
- }else
- if($password != $c['password'] || $find == "0") {
- session_start();
- $_SESSION['session_user'] = $username;
- $_SESSION['session_pass'] = $password;
- header("Location: main.php");
- }
- }
- }else{
- echo("<form method='post'>Username: <input name='username' type='text' />
- <br />Password: <input name='password' type='password' /><br />
- <input type='submit' name='submit' value='Login' /></form>");
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement