Untitled

<?php


ini_set('display_errors',1);


error_reporting(E_ALL);


if($_SERVER["REMOTE_ADDR"] == "1.1.1.1") { die("IP BAN"); }


session_start();


require("db.php");


if(isset($_SESSION["user"])) {


  header("location: members.php");


}


else {


  if(isset($_COOKIE["save_user"]) && isset($_COOKIE["save_pass"])) {


    $query = mysql_query("SELECT username FROM users WHERE username = '".mysql_real_escape_string($_COOKIE["save_user"])."' AND password = '".mysql_real_escape_string($_COOKIE["save_pass"]));


    if($query != False) {


      $_SESSION["user"] = $_COOKIE["save_user"];


      header("location: members.php");


    }


  }


}


if (isset($_POST['submit'])) {


  if(!$_POST['username'] | !$_POST['pass']) {


    $error= 'You did not fill in a required field.';


  }


  else {


    $check = mysql_query("SELECT * FROM users WHERE username = '".mysql_real_escape_string($_POST['username'])."'")or die(mysql_error());


    $check2 = mysql_num_rows($check);


    if ($check2 == 0) {


      $error = 'That user does not exist in our database. <a href=register.php>Click Here to Register</a>';


      }


    else {


      $info = mysql_fetch_array( $check );


      $_POST['pass'] = stripslashes($_POST['pass']);


      $info['password'] = stripslashes($info['password']);


      $_POST['pass'] = sha1(md5($_POST['pass']));


      if ($_POST['pass'] != $info['password']) {


        $error = 'Incorrect password, please try again.';


        }


      else


      {


        $_POST['username'] = stripslashes($_POST['username']);


        $month = time() + 3600*24*30;


        $_SESSION['user'] = $_POST['username'];


        header("location: members.php");


      }


    }


  }


}


?>

<html>

<head><title>Pokemon Fire</title>

<link rel="stylesheet" type="text/css" href="outerlayout.css">

<script type="text/javascript" src="jquery.js"></script>

<script type="text/javascript" src="java.js"></script>

</head>

<body>

<div class="banner"><a href="index.php" ><img src="images/banner.png"></a></div>

<div class="leftmenu"><img src="images/layout/tabs/navigation.gif"></div>

<div class="rightmenu"><ul><li class="r_tab"><img src="images/layout/tabs/navigation.gif"></li></ul></div>

<div class="centerbox"><ul><li class="img"><img src="images/layout/tabs/centerbar.gif"></li>

<li>


<?php echo (isset($error)? "<p>".$error."</p>":Null); ?>

If you don't have an account, please register with <a href="register.php">this link</a>. If you already have an account please login with your info and continue with your adventure.

<br /><br />


<form action="<?php echo $_SERVER['PHP_SELF']?>" method="post">


Username:<br /><input type="text" name="username" maxlength="40"><center>


Password:<br /><input type="password" name="pass" size="15" maxlength="24"><br />

<input type="submit" name="submit" value="Login">

</form>


</li></ul></div>

<div class="popup_1"><ul><li class="popheader"><img src="images/layout/tabs/navigation.gif"></li>

<li class="navte"><a href="login.php"><img src="images/layout/tabs/login.gif"></a></li>

<li class="navte"><a href="register.php"><img src="images/layout/tabs/register.gif"></a></li>

<li class="navte"><a href="about.php"><img src="images/layout/tabs/about.gif"></a></li></ul></div>

</body>

</html>