Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- $connection = mysqli_connect("localhost", "root", "", "ecom_db");
- if(isset($_POST['login_button'])) {
- $email = filter_var($_POST['log_email'], FILTER_SANITIZE_EMAIL);
- $_SESSION['log_email'] = $email;
- $password = $_POST['log_password'];
- $stmt = $connection->prepare("SELECT email AND password FROM users WHERE email=? AND password=? AND com_code IS NULL");
- $stmt->bind_param('ss', $email, $password);
- $stmt->execute();
- $stmt->bind_result($email, $password);
- $stmt->store_result();
- if($stmt->execute()) {
- $result = $stmt->get_result();
- while ($row = $result->fetch_assoc()) {
- //result is in row
- }
- }
- if($stmt->num_rows == 1) {
- if($stmt->fetch()) {
- while (($row = $res->fetch_assoc()))
- $username = $row['username'];
- $closed = $connection->prepare("SELECT email AND password FROM users WHERE email=? AND user_closed=?");
- $closed->bind_param('ss', $email, "yes");
- $closed->execute();
- $closed->bind_result($email, "yes");
- $closed->store_result();
- $closed_res = $closed->get_result();
- if($closed->num_rows == 1) {
- $open = $connection->prepare("UPDATE users SET user_closed=? WHERE email=?");
- $open->bind_param('ss', "no", $email);
- $open->execute();
- $open->bind_result("no", $email);
- $open->store_result();
- }
- $_SESSION['username'] = $username;
- header("Location: ../public/member/index.php");
- exit();
- }
- else {
- set_message("Email or password was incorrect");
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement