Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- include("db.php");
- session_start();
- if(isset($_SESSION['login_user'])){
- header("Location: welcome.php");
- }
- $error = '';
- if (isset($_POST['submit'])) {
- if (empty($_POST['username']) or empty($_POST['password'])) {
- $error = "Please enter your login details";
- } else {
- $username = mysqli_real_escape_string($conn, $_POST['username']);
- $password = md5($_POST['password']);
- $query = mysqli_prepare($conn, "SELECT password FROM workers WHERE user_name=?");
- mysqli_stmt_bind_param($query,"s",$username);
- mysqli_stmt_execute($query);
- mysqli_stmt_bind_result($query,$pass);
- if(mysqli_stmt_fetch($query)){
- if ($password == $pass){
- header('Location:welcome.php');
- $_SESSION['login_user'] = $username;
- }else {
- $error = "You typed the wrong password";
- unset($username, $password);
- }
- }else{
- $error = "User Login doesn't exists";
- unset($username,$password);
- }
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
