Before the customer is allowed into checkout area, I would like checkout.php to verify that they are logged in. If not, it redirects them to login.php.
Here is my login verification page:
Code: Select all
<?php
session_start();
header("Cache-control: private");/* IE6 fix */
include('../blank/common.php');
$user = $_POSTї'username'];
$pass = $_POSTї'password'];
$sql = mysql_query("SELECT * FROM users WHERE uname='$user' AND pword='$pass'");
$login = mysql_num_rows($sql);
echo mysql_error();
if($login > 0){
$_SESSIONїusername] = $user;
$_SESSIONїpassword] = $pass;
header("Location: http://www.blank.com/blank/checkout.php");
exit();
}else{
echo "That username does not exist!<br>";
include 'login.php';
}
?>Code: Select all
<?php
session_start();
header("Cache-control: private");/* IE6 fix */
include('../blank/common.php');
$user = $_SESSIONї'username'];
$pass = $_SESSIONї'password'];
$sql = mysql_query("SELECT * FROM users WHERE uname='$user' AND pword='$pass'");
$login = mysql_num_rows($sql);
echo mysql_error();
if ($login == 0){
header("Location: http://www.blank.com/blank/login.php");
exit();
}else{
***REST OF CODE***