Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if(isset($_POST["login"]))
- {
- require_once "db-connect.php";
- $db = db::get();
- $email = $db->escape($_POST["email"]);
- $password = $db->escape($_POST["password"]);
- if(empty($email) || (empty($password)))
- {
- header("Location: ../registration.php?login=empty");
- exit();
- }else
- {
- $selected_string= "SELECT id FROM users WHERE `user_email` ='".$email."' && `user_password` = '".md5($password)."'";
- $query = $db->numrows( $selected_string);
- if($query !=1)
- {
- header("Location: ../registration.php?login=queryproblem");
- exit();
- }else
- {
- session_start();
- $select_user_data = "SELECT * FROM users WHERE `user_email` = '".$email."' && `user_password` = '".md5($password)."'";
- $loginUser = $db->getRow($select_user_data);
- $_SESSION["id"]= $loginUser["id"];
- $_SESSION["user_email"]= $loginUser['user_email'];
- $_SESSION["username"]= $loginUser['username'];
- $_SESSION["profile_picture"]= $loginUser['profile_picture'];
- if(!is_null($loginUser["is_admin"]))
- {
- $_SESSION["admin"]=$loginUser['is_admin'];
- }
- header("Location: ../index.php");
- exit();
- }
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
