Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- $username = $_REQUEST["txt_username"];
- $password = $_REQUEST["txt_password"];
- $action = $_GET["action"];
- $host = "127.0.0.1";
- $user = "root";
- $pass = "12157114";
- try {
- $dbh = new PDO("mysql:host=$host;dbname=logansarchive", $user, $pass);
- $dbh->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- }
- catch(PDOException $e) {
- echo $e->getMessage();
- }
- // Log in
- $hashed_pass = hash("sha512", $password);
- $sql = "select count(*) as count, adminid, adminname, DATE_FORMAT(lastlogin, '%W, %M %e, %Y @ %h:%i %p' ) AS lastlogin from admin where adminname = :name and adminpass = :pass";
- $result = $dbh->prepare($sql);
- $result->bindParam(":name", $username);
- $result->bindParam(":pass", $hashed_pass);
- $stmt = $result->execute();
- $row = $result->fetch();
- if ($row["count"] == 1) {
- session_start();
- $_SESSION["adminid"] = $row["adminid"];
- $_SESSION["adminname"] = $row["adminname"];
- $_SESSION["lastlogin"] = $row["lastlogin"];
- $dbh = null;
- header("Location: /logansarchive/admin/index.php");
- }
- else {
- $dbh = null;
- header("Location: /logansarchive/admin/login.php?login_attempt=1");
- }
- if ($action == "out") {
- // Log out
- $_SESSION["adminid"] = null;
- $_SESSION["adminname"] = null;
- $_SESSION["lastlogin"] = null;
- header("Location: /logansarchive/admin/login.php?logged_out=1");
- };
- ?>
Add Comment
Please, Sign In to add comment
