09-10-2012, 22:50
Jest na sesji
a to jest login
Kod:
<div id="title">
<h1>USER AREA</h1>
<h2><?php if(isset($_SESSION['success'])) echo "Welcome back ".$_SESSION['username']; ?></h2>
</div>
<?php
if(isset($_SESSION['success']))
echo '<section>
<ul>
<li><a href="#">Account</a></li>
<li><a href="/admin">Admin Panel</a></li>
<li><a href="destroy.php">Logout</a></li>
</ul>
</section>';
else
echo '
<div id="form">
<form method="POST" action="login.php">
<input type="text" class="input"name="username" value="" placeholder="username" autocomplete="off" />
<input type="password" class="input" name="password" value="" placeholder="password" /><br /><br /><br />
<input type="submit" class="submit" value=""/>
</form>
</div>';
?>
</div>
</div>a to jest login
Kod:
<?php
session_start(); //start session
include('connect.php'); //connection
// username and password sent
$username=$_POST['username'];
$password=$_POST['password'];
$encrypted=md5($password);
// protection againt SQL injection
$username = stripslashes($username);
$encrypted = stripslashes($encrypted);
$username = mysql_real_escape_string($username);
$encrypted = mysql_real_escape_string($encrypted);
$sql="SELECT * FROM users WHERE username='$username' and password='$encrypted'";
$result=mysql_query($sql);
$count=mysql_num_rows($result);
if($count==1){
session_start();
$_SESSION['success'] = 1;
$_SESSION['username'] = $username;
header("location:index.php");
}
else {
echo "Wrong Username or Password";
}
?>
