Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $error = '';
- include('include/connection.inc.php');
- session_start();
- if(isset($_POST['login'])) {
- $username = mysqli_real_escape_string($connection, $_POST['username']);
- $password = mysqli_real_escape_string($connection, $_POST['password']);
- if(empty($username) || empty($password)) {
- $error = 'Username or password cannot be empty';
- } else{
- $sql = "SELECT * FROM users WHERE username='$username'";
- $result = mysqli_query($connection, $sql);
- $row = mysqli_fetch_assoc($result);
- $hashedPwdCheck = password_verify($password, $row['password']);
- if($hashedPwdCheck){
- $_SESSION['username'] = $row['username'];
- $_SESSION['password'] = $row['password'];
- header("Location: dashboard.php");
- } else {
- $error = 'Username or password incorrect';
- }
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement