fgdsgsd

1. <?php
2. // LOGOVANJE
3. function LoginUser($username, $password)
4. {
5. global $config;
6. global $string;
7.  
8. if (empty($username))
9. {
10. $_SESSION['error_msg'] = "Niste upisali korisnicku ime.";
11. }
12. else if(empty($password))
13. {
14. $_SESSION['error_msg'] = "Niste upisali korisnicku sifru.";
15. }
16.  
17. else if(isset($username) && isset($password))
18. {
19. $Username = mysql_real_escape_string($username);
20. $accpass = WhirlpoolHash($password);
21. $Password = mysql_real_escape_string($accpass);
22.  
23. $sql = "SELECT * FROM accounts WHERE `name` = '$Username' AND `password` = '$Password'";
24. $query = mysql_query($sql);
25.  
26. $sql2 = "SELECT * FROM accounts WHERE `name` = '$Username'";
27. $query2 = mysql_query($sql2);
28.  
29. if(mysql_num_rows($query2) == 1)
30. {
31. if(mysql_num_rows($query) == 1)
32. {
33. $_SESSION['logged'] = "true";
34. $_SESSION['username'] = $Username;
35. $_SESSION['error_msg'] = "Logirani ste.";
36. header("Location: panel.php");
37. exit();
38. }
39. else
40. {
41. $_SESSION['error_msg'] = "Pogresna sifra.";
42. return true;
43. }
44. }
45. else
46. {
47. $_SESSION['error_msg'] = "Korisnik <b>$Username</b> nije pronadjen.";
48. return true;
49. }
50. }
51. }