include("include/config.php");
require($url_hash);
switch($_GET["session"])
{
case 1:
if($_POST["s_login"]){
$username = $_POST["username"];
$password = $_POST["password"];
$hash = md5($password);
$sql = "SELECT user_id FROM ".$dbTable."users WHERE username='".$username."' AND password='".$hash."'";
$result = mysql_query($sql) or die (mysql_error()." Error 101");//query***********
$num_rows = mysql_num_rows($result);
if($num_rows <> 1){
$error1 = "Käyttäjätunnuksesi tai salasanasi oli väärin. Ole hyvä, ja kirjaudu uudelleen.
\n";
}elseif($num_rows == 1){
$user_array = mysql_fetch_array($result);
$uid = $user_array["user_id"];
$hashvar = 6879364678467846846789403758356732221544;
$hashvar .= $uid;
$sessionhash = md5(md5($hashvar));
$sql = "UPDATE ".$dbTable."sessions SET session_cookie='".$sessionhash."' WHERE user_id=".$uid;
mysql_query($sql) or die (mysql_error()." Error 102");
$sql = "SELECT session_cookie FROM ".$dbTable."sessions WHERE user_id=".$uid;
$query = mysql_query($sql) or die (mysql_error());
$result = mysql_fetch_array($query);
$cookie_value = $result["session_cookie"];
SetCookie($cookie_var,$cookie_value,time()+3600 * 24 * 7 * 8);
$login_aware = "Kirjaudutaan sisään, odota hetki...";
echo $meta_refresh;
}
}
break;
}
html_header();
echo $NP_error;
?>
echo $error1 ?> echo $error2 ?> echo $login_aware ?> | |
Administrative Login | |
Salasana: | |
Need a username and password? - Signup Here |