<?php$username= $_POST['username'];$password= $_POST['password'];fun

1. <?php
2.  
3. $username= $_POST['username'];
4. $password= $_POST['password'];
5.  
6.  
7. function login()
8. {
9. $username= $_POST['username'];
10. $password= $_POST['password'];
11.  
12. // CONTROLLO PASSOWORD
13. if ($username == NULL)
14. {
15. die("please insert a username");
16. }
17. if ($password == NULL)
18. {
19. die("please insert a password");
20. }
21. //ESCAPE DEI CARATTERI
22. $username = mysql_real_escape_string($username);
23. $password = mysql_real_escape_string($password);
24. //ENTRIAMO NEL DATABASE
25. $query = "SELECT id FROM users WHERE username ='$username' AND password = md5('$password')";
26. $result = mysql_query($query);
27. //CONTROLLO SE LA QUERY E' ESATTA
28. if (!$result)
29. {
30. die("Controlla la query al database");
31. }
32. $record = mysql_fech_array($result);
33. // CONTROLLO, UNA VOLTA MODIFICATO IL VALORE IN ROW SE ESISTE
34. if (!$record)
35. {
36. die("Username or Password sbagliati");
37. }
38. else
39. {
40. die("Benvenuto" . $username ."Hai effettuato il Login alle: " . date(Y-m-d));
41. };
42. };
43.  
44.  
45.  
46.  
47.  
48.  
49.  
50. $connection = mysql_connect("localhost","sparkon","");
51. mysql_select_db("my_sparkon");
52.  
53. if (!$connection)
54. {
55. die("Cannot connect to the database" . mysql_error());
56. }
57. else
58. {
59. login($username,$password);
60. };
61.  
62. ?>
63.  
64. <html>
65. <head>
66. <title>LOGIN</title>
67. </head>
68. <body>
69. <form action="login.php" method="post">
70. <table>
71. <tr><td>
72. Username : <input type="text" name="username" />
73. </tr></td>
74. <tr><td>
75. Password : <input type="password" name="password" />
76. </tr></td>
77. </table>
78. <input type="button" name="submit" value="Submit" />
79. </form>
80. </body>
81. </html>