Database-based login working for user/new.php.

2013-08-10 01:17:23 -04:00 · 2013-08-10 01:17:23 -04:00 · 4dd163139f
commit 4dd163139f
parent c7a1d05e4f
1 changed files with 10 additions and 19 deletions
--- a/includes/login.inc
+++ b/includes/login.inc
@ -1,35 +1,26 @@
 <?php
-$_COOKIE['monkey'] = '1';
-setcookie('monkey',$_COOKIE['monkey']);
-if (!$_COOKIE['monkey']) {
-	echo "First attempt.";
+if (!$_COOKIE['session'] && ($_POST['do'] !== "authenticate")) {
+	echo "Please login:";
 	include "login_form.inc";
 	break;
 } else {
-#if ($_POST['do' == "authenticate") {
 	require "dbconnect.php";
-
+ 
 	$sql = "SELECT id,username FROM users WHERE username='$_POST[username]' and password=PASSWORD('$_POST[password]')";
 	$result = mysql_query($sql) or die (mysql_error());

-	echo "Results: " . mysql_num_rows($result);
-#	$_POST[results]=mysql_num_rows($result);
+#	echo "Results: " . mysql_num_rows($result);

-	if (mysql_num_rows($result) == 1) {
-#		echo "<p>You are a valid user!<br />";
-#		echo "Your username is $_POST[username]<br />";
-#		echo "Your password is $_POST[password]</p>";
-		$_COOKIE['monkey'] = '1';
-		setcookie('monkey',$_COOKIE['monkey']);
-		session_start();
-		session_register[login];$_SESSION[login] = '1';
-		session_register[count];$_SESSION[count]++;
+	if (mysql_num_rows($result) === 1) {
+		unset($_POST['do']);
+		$_COOKIE['session'] = 1;
+		setcookie('session',$_COOKIE['session']);
 	} else {
 		unset($_POST['do']);
-		echo "<p>You are not authorized. Please try again.</p>";
+#		$_COOKIE['session']++;
+		echo "Login failed. Please try again.";
 		include("login_form.inc");
 		break;
 	}
-
 }
 ?>