User LogIn
Posted: Tue Jul 30, 2002 12:35 pm
for some reason my code seems to be checking the username when nothing has been submitted. heres my code
Code: Select all
<?php
if('$submit'){
switch ($action) {
case login:
process_login();
die();
case logout:
}
global $username;
global $password;
$db = @mysql_connect("$dbhost", "$dbuname", "$dbpage");
if (!$db) {
echo( "<p>Unable to connect to the " .
"database server at this time.</p>" );
exit();
}
mysql_select_db("$dbname", $db);
if (! @mysql_select_db("$dbname") ) {
echo( "<p>Unable to locate the members " .
"database at this time.</p>" );
exit();
}
$query3 = "SELECT id FROM membersdb WHERE "
. "username='$username'";
$result3 = mysql_query($query3)
or die("Query failed at userid retrieval stage.");
$num_rows = mysql_num_rows($result3);
$myrow = mysql_fetch_array($result3);
$user_id = $myrowї0];
if ($id == "") {
print ("<font color=red> Sorry, but the username you submitted was wrong. Sort it out.</font>");
print "<form method=post action="$PHP_SELF">";
print " <b>User Name</b>:<input type=text name=username size=15 maxlength=10 class=textbox>";
print " <b>Password</b>:<input type=password size=15 maxlength=10 name=password class=textbox>";
print " <input type=submit value=Login class=button>";
print "</form>";
print ("<p>");
print ("<font class=rm>Not a member? <a href=join.php class=rm>Click Here</a></font>");
} elseif ($password == "") {
$query3 = "SELECT password "
. " FROM membersdb "
. " WHERE username='$username'";
$result3 = mysql_query($query3)
or die("Query failed at userid retrieval stage.");
$encryptedpassword = md5($password);
$myrow = mysql_fetch_array($result3);
$password = $myrowї0];
if ($encryptedpassword == $password) {
setcookie ("ck_username", $username);
setcookie("ck_password", $password);
setcookie("ck_id", $id);
print ("Welcome $username: ї<a href=members?action=edit&id=".$myrowї'id'].">Settings</a>|Logout]");
} else {
print ("<font color=red> Sorry, but the password you submitted was wrong. Sort it out.</font>");
print ("<form method=post action="$PHP_SELF">");
print (" <b>User Name</b>:<input type=text name=username size=15 maxlength=10 class=textbox>");
print (" <b>Password</b>:<input type=password size=15 maxlength=10 name=password class=textbox>");
print (" <input type=submit value=Login class=button>");
print ("</form>");
print ("<p>");
print ("<font class=rm>Not a member? <a href=join.php class=rm>Click Here</a></font>");
}
}
} else {
print ("<form method=post action="$PHP_SELF">");
print (" <b>User Name</b>:<input type=text name=username size=15 maxlength=10 class=textbox>");
print (" <b>Password</b>:<input type=password size=15 maxlength=10 name=password class=textbox>");
print (" <input type=submit value=Login class=button>");
print ("</form>");
print ("<p>");
print ("<font class=rm>Not a member? <a href=join.php class=rm>Click Here</a></font>");
}
?>