Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- // init.php
- <?php
- session_start();
- //error_reporting(0);
- require 'config.php';
- require 'general.php';
- require 'users.php';
- ?>
- //users.php
- <?php
- function user_exists($username) {
- $username = sanitize($username);
- $query = mysql_query("SELECT COUNT(`uid`) FROM `users` WHERE `username` = '$username'");
- return (mysql_result($query, 0) == 1) ? true : false;
- }
- function user_active($username) {
- $username = sanitize($username);
- $query = mysql_query("SELECT COUNT(`uid`) FROM `users` WHERE `username` = '$username' AND `active` = 1");
- return (mysql_result($query, 0) == 1) ? true : false;
- }
- function uid_from_username($username) {
- $username = sanitize($username);
- $query = mysql_query("SELECT `uid` FROM `users` WHERE `username` = '$username'");
- return mysql_result($query, 0, 'uid');
- }
- function login($username, $password) {
- $uid = uid_from_username($username);
- $username = sanitize($username);
- $password = md5($password);
- $query = mysql_query("SELECT COUNT (`uid`) FROM `users` WHERE `username` = '$username' AND `password` = '$password'");
- return (mysql_result($query, 0) == 1) ? $uid : false;
- }
- ?>
- //general.php
- <?php
- function sanitize ($data) {
- return mysql_real_escape_string($data);
- }
- ?>
- //login.php
- <?php
- include 'init.php';
- //if (user_exists('sertac') === true ) {
- // echo 'exists';
- //} else {
- // echo 'no';
- //}
- //die();
- if (empty($_POST) === false) {
- $username = $_POST['username'];
- $password = $_POST['password'];
- if (empty($username) === true || empty($password) === true) {
- $errors[] = 'You need to enter a username and password.';
- } else if (user_exists($username) === false) {
- $errors[] = 'We can\'t find that username. Have you registered?';
- } else if (user_active($username) === false) {
- $errors[] = 'You haven\'t activated your account';
- } else {
- $login = login($username, $password);
- if ($login === false) {
- $errors[] = 'That username/password combination is incorrect.';
- } else {
- //echo 'ok';
- //die($login);
- $_SESSION['uid'] = $login;
- header('location: index.php');
- exit();
- }
- }
- print_r($errors);
- }
- ?>
Add Comment
Please, Sign In to add comment