Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- //ok
- include 'common.php';
- session_start();
- $sn = session_id();
- //echo $sn;
- $expire_period = time()+60*60;
- //$login_success = false;
- if(isset($_COOKIE['login_success'])){
- if ($_COOKIE['login_success']==true && !isset($_GET['logout'])){
- $extra = "store.php?s=".$_COOKIE['session_id'];
- header("Location: ".directoryURL($extra));
- }
- }
- if(isset($_POST['loginName'])){
- $loginName = $_POST['loginName'];
- $pw = $_POST['pw'];
- //MySQL
- include 'mysqlQuery.php';
- $connet=mysqlConnect();
- //check login Name
- $query = "SELECT pw FROM users WHERE loginName='".$loginName."';";
- $rs=mysqlQuery($query,$connet);
- $errMsg = $errMsg . mysql_error();
- $pws = mysql_fetch_row($rs);
- $rpw = $pws[0];
- mysqlClose($connet);
- //end my SQL
- setcookie("login_success", false, $expire_period);
- if($pw == $rpw){
- //$login_success = true;
- //session_regenerate_id();
- //echo $sn;
- setcookie("login_success", true, $expire_period);
- setcookie("login_time", date(DATE_COOKIE), $expire_period);
- setcookie("session_id", $sn, $expire_period);
- $_SESSION['loginName']=$loginName;
- $extra = "store.php?s=".$sn;
- header("Location: ".directoryURL($extra));
- exit();
- }
- else{
- header( "Location:".$_SERVER['PHP_SELF']."?error=1");
- //echo "fail";
- }
- }
- if(isset($_GET['logout'])&& $_GET['logout']==1){
- setcookie("login_success", '', time()-3600);
- setcookie("login_time", '', time()-3600);
- session_regenerate_id();
- setcookie("session_id", '', time()-3600);
- session_destroy();
- header( "Location:".$_SERVER['PHP_SELF']."?logout=0" );
- exit();
- }
- ?>
- <html>
- <header>
- <title>321 Apparel Shopping Store</title>
- <link rel="stylesheet" href="css/style.css" type="text/css" />
- <script type="text/javascript" src="./js/form_login.js"></script>
- <script type="text/javascript">
- /*function display() {
- var xmlhttp = new XMLHttpRequest();
- xmlhttp.onreadystatechange=function() {
- if (xmlhttp.readyState==4 && xmlhttp.status==200) {
- document.getElementById("imageDiv").innerHTML=xmlhttp.responseText;
- }
- };
- var dt = new Date( ).valueOf();
- xmlhttp.open("GET", "advertisement.php"+ "?dt=" + dt, true);
- xmlhttp.send();
- setTimeout("display();", 3000);
- }*/
- </script>
- </header>
- <body onLoad="display()">
- <h1>
- Welcome to 321 Apparel Shopping Store
- </h1>
- <p class = "description" align="center">
- <img src = "fashion.jpg"/><br><br>
- Please login to continue <a href="registration.php">New User?</a> </p>
- <form name="frm_login" method="POST" action="<?php echo $_SERVER['PHP_SELF']; ?>">
- <table class="login" align="center">
- <tr>
- <td rowspan="4" scope="col"><div align="center" id="imageDiv" ></div></th>
- <td id="lgn">Username : </td>
- <td><input name="loginName" type="text"></td>
- </tr>
- <tr>
- <td id="pw" >Password : </td>
- <td><input name="pw" type="password"></td>
- </tr>
- <tr>
- <td><input type="submit" value="Login" onClick="return validate()"></td>
- <td></td>
- </tr>
- <tr>
- <td class="red" height = '40' colspan='2'><?php
- if(isset($_GET['error'])){
- echo "Wrong Login name or password.";
- }
- if(isset($_GET['logout'])){
- echo "You have logged out sucessfully.";
- }
- if(isset($_GET['expired'])){
- echo "Your login session has expired.";
- }
- ?></td>
- </tr>
- </table>
- </form>
- </div>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement