Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- public function login($name, $pass)
- {
- global $mysql;
- $name = @mysqli_real_escape_string($mysql->db_link_auth, stripslashes($name));
- $pass = @mysqli_real_escape_string($mysql->db_link_auth, stripslashes($pass));
- $checkexist = mysqli_query($mysql->db_link_auth, "SELECT * FROM account WHERE username = '".$name."'");
- $checkexist = mysqli_num_rows($checkexist);
- if ($checkexist == '0')
- {
- return 'Account doesn\'t exist' . false . exit();
- }
- else if ($checkexist == '1');
- {
- $sha_pass = sha1(strtoupper($name).":".strtoupper($pass));
- $accountsql = mysqli_query($mysql->db_link_auth, "SELECT id, username FROM account WHERE username = '".$name."' AND sha_pass_hash = '".$sha_pass."'");
- $accountarr = mysqli_fetch_assoc($accountsql);
- $accountid = $accountarr['id'];
- $gmlevelsql = mysqli_query($mysql->db_link_auth, "SELECT gmlevel FROM account_access WHERE id = '".$accountid."' AND RealmID = '1'");
- unset ($accountarr, $accountid);
- if(!$accountsql)
- {
- echo 'Error in SQL code ' . mysqli_error($mysql->db_link_auth);
- exit;
- }
- else if (!$gmlevelsql)
- {
- echo 'Error in SQL code ' . mysqli_error($mysql->db_link_auth);
- exit;
- }
- else if ($accountsql and $gmlevelsql)
- {
- $checklog = mysqli_num_rows($accountsql);
- // account doesn't exist - end
- if ($checklog == '0')
- {
- header("location:index.php?bad_log");
- }
- // account extist - continue
- else if ($checklog == '1')
- {
- $accountarr = mysqli_fetch_array($accountsql);
- $gmlevelarr = mysqli_fetch_array($gmlevelsql);
- $checkgm = mysqli_num_rows($gmlevelsql);
- if ($checkgm == '0')
- {
- return 'You\'re not GameMaster!' . false . exit();
- }
- else if ($checkgm > '1')
- {
- @session_start();
- $_SESSION["Username"] = $accountarr["username"];
- $_SESSION["ID"] = $accountarr["id"];
- $_SESSION["GMLevel"] = $gmlevelarr["gmlevel"];
- $_SESSION["Logged"] = true;
- header("location:in/index.php");
- }
- }
- }
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement