27 lines
663 B
PHP
27 lines
663 B
PHP
<?php
|
|
if (!$_COOKIE['session'] && ($_POST['do'] !== "authenticate")) {
|
|
echo "Please login:";
|
|
include "login_form.inc";
|
|
break;
|
|
} else {
|
|
require "dbconnect.php";
|
|
|
|
$sql = "SELECT id,username FROM users WHERE username='$_POST[username]' and password=PASSWORD('$_POST[password]')";
|
|
$result = mysql_query($sql) or die (mysql_error());
|
|
|
|
# echo "Results: " . mysql_num_rows($result);
|
|
|
|
if (mysql_num_rows($result) === 1) {
|
|
unset($_POST['do']);
|
|
$_COOKIE['session'] = 1;
|
|
setcookie('session',$_COOKIE['session']);
|
|
} else {
|
|
unset($_POST['do']);
|
|
# $_COOKIE['session']++;
|
|
echo "Login failed. Please try again.";
|
|
include("login_form.inc");
|
|
break;
|
|
}
|
|
}
|
|
?>
|