Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- require_once('API/mysql/mysql.constants.php');
- if(isset($_REQUEST['name']))
- $name = $_REQUEST['name'];
- elseif(isset($_REQUEST['saved_name']))
- $name = $_REQUEST['saved_name'];
- if(isset($_REQUEST['password']))
- $password = $_REQUEST['password'];
- else if( isset($_REQUEST['saved_password']))
- $password = $_REQUEST['saved_password'];
- if($name == '' || $password == '' || ! isset($name) || ! isset($password))
- {
- if($inName == '')
- {
- header('login_page.php');
- }
- else
- {
- header('login_page.php?name=' . urlencode($name));
- }
- return;
- }
- $db = Utilities::ensureDBOpen(0);
- $query = "SELECT * FROM Users WHERE Username =".$name;
- $result = $db->query($query);
- while($row = $result->fetch_assoc())
- {
- $dpass = $row['Password'];
- $level = $row['level'];
- }
- if ($dpass == $password)
- {
- $expire_time = time() + 10368000; /* 120 days */
- setcookie('saved_name', $name, $expire_time);
- setcookie('saved_password', $password, $expire_time);
- session_start();
- $_SESSION['user'] = $name;
- $_SESSION['level'] = $level;
- header( "Location: index.php" );
- }
- else
- {
- header('login_page.php?name=' . urlencode($name));
- }
- $db->close();
- ?>
Add Comment
Please, Sign In to add comment