<?php session_start();?><?phpsession_start();include ('connect.php');$us

1. <?php session_start();?>
2. <?php
3. session_start();
4. include ('connect.php');
5. $username = $_POST['username'];
6. $password = $_POST['password'];
7. if ($username&&$password)
8. {
9. $query = mysql_query("SELECT * FROM users WHERE username = '$username'");
10. $numrows = mysql_num_rows($query);
11. if ($numrows!=0)
12. {
13. // code to login
14. while ($row = mysql_fetch_assoc($query))
15. {
16.     $dbusername = $row['username'];
17.     $dbpassword = $row['password'];
18.     $dblevel = $row['user_level'];
19.     $dbaccess = $row['access'];
20. }
21. if ($username==$dbusername&&$password==$dbpassword&&$dbaccess=1)
22. {
23.     include("header.php"); 
24.     echo "<div id='rightnav'>Your Logged In $username! <a href='admin.php'>Click here</a> to go to the Administrators page. <br>
25.     Or <a href='index.php'>Click Here</a> to go to the home page.</div>";
26.     include("footer.php");
27.     $_SESSION['username']=$dbusername;
28.     $_SESSION['user_level']=$dblevel;
29.     $_SESSION['access']=$dbaccess;
30. }
31. elseif ($username==$dbusername&&$password==$dbpassword&&$dbaccess=1)
32. {
33.     include("header.php"); 
34.     echo "<div id='rightnav'>Your Logged In $username! <a href='admin.php'>Click here</a> to go to the Administrators page. <br></div>";
35.     include("footer.php");
36.     $_SESSION['username']=$dbusername;
37.     $_SESSION['user_level']=$dblevel;
38. }
39.  
40. else
41.     include("header.php");
42.     echo "<div id='rightnav'>Incorrect Username or Password!.</div>";
43.     include("footer.php");
44.     }
45. else
46.      include("header.php");
47.      echo "<div id='rightnav'>That user doesn't Exist!</div>";
48.      include("footer.php");
49. }
50. else
51.     include("header.php");
52.     echo "<div id='rightnav'>Please Enter a Username and Password.</div>";
53.     include("footer.php");
54. ?>