jackbenny/simplog
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Worked out a new login and install system since the MySQL PASSWORD function didn't work out

Browse Source
This commit is contained in:
Jack-Benny Persson
2014-06-26 19:09:30 +02:00
parent 72808dd6d5
commit 0e072a2152
2 changed files with 31 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
includes/login.inc
View File

@@ -13,7 +13,8 @@ else if (isset($_POST['do']) == "authenticate")
# Attempt login # Attempt login
require "dbconnect.php"; require "dbconnect.php";
$sql = "SELECT id,username FROM blog_users WHERE username='$_POST[username]' and password=PASSWORD('$_POST[password]')"; $pass = md5($_POST['password']);
$sql = "SELECT id,username FROM blog_users WHERE username='$_POST[username]' and password='$pass'";
$result = mysql_query($sql) or die (mysql_error()); $result = mysql_query($sql) or die (mysql_error());
# echo "Results: " . mysql_num_rows($result); // Debugging line # echo "Results: " . mysql_num_rows($result); // Debugging line

39
install.php
View File

@@ -5,8 +5,18 @@ include "includes/config.php";
?> ?>
<h1>Installer</h1> <h1>Installer</h1>
<form method="post" action="<?php $_SERVER[PHP_SELF] ?>">
Desired password for admin: <input type="password" name="password">
<br />
<input type="submit" value="Create admin">
</form>
<?php <?php
if (!isset($_POST['password']))
{
die("No password entered yet");
}
$pw = md5($_POST['password']);
# Test connection to database server # Test connection to database server
$link = mysql_connect($host, $user, $password) $link = mysql_connect($host, $user, $password)
@@ -20,28 +30,37 @@ mysql_select_db($database)
$sql = "CREATE TABLE `blog` (`postnumber` int(11) NOT NULL AUTO_INCREMENT,`date` date NOT NULL,`title` text COLLATE utf8_unicode_ci NOT NULL,`posttext` text COLLATE utf8_unicode_ci NOT NULL, PRIMARY KEY (`postnumber`)) ENGINE=InnoDB AUTO_INCREMENT=7 DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;"; $sql = "CREATE TABLE `blog` (`postnumber` int(11) NOT NULL AUTO_INCREMENT,`date` date NOT NULL,`title` text COLLATE utf8_unicode_ci NOT NULL,`posttext` text COLLATE utf8_unicode_ci NOT NULL, PRIMARY KEY (`postnumber`)) ENGINE=InnoDB AUTO_INCREMENT=7 DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;";
#$result = mysql_query($sql) or die (mysql_error()); #$result = mysql_query($sql) or die (mysql_error());
$result = mysql_query($sql); $result = mysql_query($sql);
if (mysql_error()) { if (mysql_error())
{
echo mysql_error() . ".<br />"; echo mysql_error() . ".<br />";
} else { }
else
{
echo "Table 'Blog' created successfully.<br />"; echo "Table 'Blog' created successfully.<br />";
} }
# Try to create 'blog_users' table # Try to create 'blog_users' table
$sql = "CREATE TABLE `blog_users` (`id` int(11) NOT NULL AUTO_INCREMENT,`username` varchar(20) NOT NULL,`name` varchar(40) NOT NULL,`password` varchar(64) NOT NULL,`session` int(64), PRIMARY KEY (`id`)) ENGINE=InnoDB AUTO_INCREMENT=1 DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;"; $sql = "CREATE TABLE `blog_users` (`id` int(11) NOT NULL AUTO_INCREMENT,`username` varchar(20) UNIQUE NOT NULL,`name` varchar(40) NOT NULL,`password` varchar(64) NOT NULL,`session` int(64), PRIMARY KEY (`id`)) ENGINE=InnoDB AUTO_INCREMENT=1 DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;";
$result = mysql_query($sql); $result = mysql_query($sql);
if (mysql_error()) { if (mysql_error())
{
echo mysql_error() . ".<br />"; echo mysql_error() . ".<br />";
} else { }
else
{
echo "Table 'Users' created successfully.<br />"; echo "Table 'Users' created successfully.<br />";
} }
# Try to create 'admin' user # Try to create 'admin' user
$sql = "INSERT INTO `blog_users` (`id`, `username`, `name`, `password`, `session`) VALUES (NULL, 'admin', 'Admin', PASSWORD('admin'), NULL);"; $sql = "INSERT INTO `blog_users` (`id`, `username`, `name`, `password`, `session`) VALUES (NULL, 'admin', 'Admin', '$pw', NULL);";
$result = mysql_query($sql); $result = mysql_query($sql);
if (mysql_error()) { if (mysql_error())
echo "User 'admin' already exists.<br />"; {
} else { echo mysql_error() . ".<br/>";
echo "User 'admin/admin' created successfully.<br />"; }
else
{
echo "User 'admin' created successfully.<br />";
} }
end_html(); end_html();