From 4dd163139f9b86962c3f86cd5f331436b3514778 Mon Sep 17 00:00:00 2001
From: Elyrith <elyrith@gmail.com>
Date: Sat, 10 Aug 2013 01:17:23 -0400
Subject: [PATCH] Database-based login working for user/new.php.

---
 includes/login.inc | 29 ++++++++++-------------------
 1 file changed, 10 insertions(+), 19 deletions(-)

diff --git a/includes/login.inc b/includes/login.inc
index 5a9184e..8e62561 100644
--- a/includes/login.inc
+++ b/includes/login.inc
@@ -1,35 +1,26 @@
 <?php
-$_COOKIE['monkey'] = '1';
-setcookie('monkey',$_COOKIE['monkey']);
-if (!$_COOKIE['monkey']) {
-	echo "First attempt.";
+if (!$_COOKIE['session'] && ($_POST['do'] !== "authenticate")) {
+	echo "Please login:";
 	include "login_form.inc";
 	break;
 } else {
-#if ($_POST['do' == "authenticate") {
 	require "dbconnect.php";
-
+ 
 	$sql = "SELECT id,username FROM users WHERE username='$_POST[username]' and password=PASSWORD('$_POST[password]')";
 	$result = mysql_query($sql) or die (mysql_error());
 
-	echo "Results: " . mysql_num_rows($result);
-#	$_POST[results]=mysql_num_rows($result);
+#	echo "Results: " . mysql_num_rows($result);
 
-	if (mysql_num_rows($result) == 1) {
-#		echo "<p>You are a valid user!<br />";
-#		echo "Your username is $_POST[username]<br />";
-#		echo "Your password is $_POST[password]</p>";
-		$_COOKIE['monkey'] = '1';
-		setcookie('monkey',$_COOKIE['monkey']);
-		session_start();
-		session_register[login];$_SESSION[login] = '1';
-		session_register[count];$_SESSION[count]++;
+	if (mysql_num_rows($result) === 1) {
+		unset($_POST['do']);
+		$_COOKIE['session'] = 1;
+		setcookie('session',$_COOKIE['session']);
 	} else {
 		unset($_POST['do']);
-		echo "<p>You are not authorized. Please try again.</p>";
+#		$_COOKIE['session']++;
+		echo "Login failed. Please try again.";
 		include("login_form.inc");
 		break;
 	}
-
 }
 ?>