Help with User Control Panel
Posted: Wed Jan 28, 2015 1:22 pm
Hey,
I'm not very good when it comes to PHP. However I'm scripting a game using the PAWN language. I use MySQL to save the players data and sha1 to save the players password. I have a UCP, and when I try to login with the correct user and pass, it doesn't log me in, it says Wrong username or password.
Here is part of the code,
I don't get what's wrong with it. How am I able to fix this problem?
I'm not very good when it comes to PHP. However I'm scripting a game using the PAWN language. I use MySQL to save the players data and sha1 to save the players password. I have a UCP, and when I try to login with the correct user and pass, it doesn't log me in, it says Wrong username or password.
Here is part of the code,
Code: Select all
if($submit) //if he press submit button
{
if($username && $password) //if he type both of username and password not just one of them
{
$query = mysql_query("SELECT user, password FROM playerdata WHERE user = '$username'"); //selecting user name and password, change it to your field names, chage users to your table name, $username means username that he type...
if(mysql_num_rows($query) == 1) //if user exists
{
while($row = mysql_fetch_assoc($query)) //loop thought table that we select in mysql_query
{
$dbusername = $row['username']; //setting dbusername as variable from table, change 'username' to your field!
$dbpassword = $row['password']; //setting dbpassword as variable from table, change 'password' to your field!
hash('sha1', $dbpassword);
}
if($username == $dbusername && $password == $dbpassword) //if username is same as one from table and if password is the same as one from table...
{
$_SESSION['username'] = $dbusername; //setting session username to one from table, this is useful if you login, that restart your browser and than you go in url where is your profile.php... Anyway this is useful :D
echo header('location: profile.php'); //redirecting user to his profile page (profile.php)
}
else echo header("Location:login.php"); //else if user type wrong password he will get this...
}
else echo header("Location:login.php"); //if username doesn't exist in table user will get this
}
else echo header("Location:login.php"); //else if user doesn't type all fields he will get this...
}Code: Select all
hash('sha1', $dbpassword);