i made a code that checks if user name and user password matches what i have in databases table then it moves user name into another file
Code: Select all
<?php header("Content-Type: text/html; charset=utf-8");
session_start();
$errorMessage = '';
if (isset($_POST['txtUserId']) && isset($_POST['txtPassword'])) {
$dbhost = 'localhost';
$dbuser = ' ';
$dbpass = ' ';
$dbname = 'loginai';
$conn = mysql_connect($dbhost, $dbuser, $dbpass) or die
('Error connecting to mysql');
mysql_select_db($dbname);
$userId = mysql_real_escape_string($_POST['txtUserId'];);
$password = mysql_real_escape_string($_POST['txtPassword'];);
$sql = "SELECT uname
FROM vartotojai
WHERE uname = '$userId'
AND upass = '$password'";
$result = mysql_query($sql)
or die('Query failed. ' . mysql_error());
if (mysql_num_rows($result) == 1) {
echo '<form method="post" action="2.php">';
echo '<input name="user" type="hidden" value="'; echo "$userId";'">';
echo '</form>';
} else {
$errorMessage = 'Neteisingas vartotojo vardas arba slaptažodis';
}
mysql_close($conn);
}
?>