include_once "connect.php";if (!empty($_POST['user']) && !empty($_POST['pass'])

1. include_once "connect.php";
2. if (!empty($_POST['user']) && !empty($_POST['pass'])) {
3. $user = $_POST['user'];
4. $pass = $_POST['pass'];
5. $_user = mysqli_escape_string($conn, $user);
6. $_pass = mysqli_escape_string($conn, $pass);
7. $query = "SELECT * FROM supa WHERE user='$_user' AND pass='$_pass'";
8. $result = mysqli_query($conn, $query);
9. if (mysqli_fetch_assoc($result) > 0) {
10. setcookie("token", random_int(111, 8942));
11. $ok = $_COOKIE['token'];
12. $conn->query("INSERT INTO token (token) VALUES ('$ok')");
13. echo "<script>location.href = "panel.php"</script>";
14. } else {
15. echo "Wrong Cridentials";
16. }
17. }
18.  
19. include_once 'connect.php';
20. if (!empty($_COOKIE['token'])) {
21. $token = $_COOKIE['token'];
22. $query = "SELECT * FROM token WHERE token='$token'";
23. $result = mysqli_query($conn, $query);
24. if (mysqli_fetch_assoc($result) > 0) {
25.  
26. } else {
27. echo "<script>location.href = "/";</script>";
28. }
29. } else {
30. echo "<script>location.href = "/";</script>";
31. }