mauirixxx
/
gwtt
1
0
Forka 0
Codice Problemi 0 Pull Requests 0 Rilasci 0 Wiki Attività
Just a web script to help track when, where, and what you got from the free treasures scattered about Nightfall in the game Guild Wars.
Non puoi selezionare più di 25 argomenti Gli argomenti devono iniziare con una lettera o un numero, possono includere trattini ('-') e possono essere lunghi fino a 35 caratteri.
199 Commit
2 Rami (Branch)
176 KiB
 
 
 
Albero (Tree): 70a3974758
Rami (Branch) Tag
${ item.name }
Crea branch ${ searchTerm }
da '70a3974758'
${ noResults }
gwtt/gw-login.php

62 righe
2.4 KiB
Originale Blame Cronologia 

  1. <?php

  2. session_start();

  3. if (isset($_SESSION['userid']) && ($_SESSION['access'])){

  4. 	echo 'Proceed to character selection <A HREF="gw-toon.php">here</A><BR>'; //really should automate this

  5. } else {

  6. 	include_once 'gw-connect.php';

  7. 	$con = new mysqli(DATABASE_HOST, DATABASE_USER, DATABASE_PASS, DATABASE_NAME);

  8. 	$username = mysqli_real_escape_string($con, $_POST['username']); //enable this after username form is built

  9. 	//$username = 'mauirixxx'; //delete this line after the above is finished

  10. 	$password = mysqli_real_escape_string($con, $_POST['password']); //enable this after password form is built

  11. 	//$password = 'drx9175l';

  12. 	$password = md5($password);

  13. 	if ($con->connect_errno > 0){

  14. 		die ('Unable to connect to database [' . $db->connect_errno . ']');

  15. 	}

  16. 	$sqllogin = "SELECT * FROM users WHERE users.username = '$username' and password = '$password'";

  17. 	if (!$result = $con->query($sqllogin)){

  18. 		die ('There was an error running the query [' . $con->error . ']');

  19. 	}

  20. 	while ($row = $result->fetch_array()){

  21. 		$uname = $row['username'];

  22. 		$uid = $row['userid'];

  23. 		$access = $row['access'];

  24. 		$_SESSION['username'] = $uname;

  25. 		$_SESSION['userid'] = $uid;

  26. 		$_SESSION['access'] = $access;

  27. 		echo 'Your username is ' . $uname . '. Your userid is ' . $uid . '. Your access level is ' . $access . '.<BR />';

  28. 	}

  29. }

  30. # keeping the code below for references material only

  31. /* if(isset($_POST["submit"])){

  32. 	if(empty($_POST["username"]) || empty($_POST["password"])){

  33. 		$error = "Both fields are required.";

  34. 	} else {

  35. 		// Define $username and $password

  36. 		$username=$_POST['username'];

  37. 		$password=$_POST['password'];

  38.  

  39. 		// To protect from MySQL injection

  40. 		$username = stripslashes($username);

  41. 		$password = stripslashes($password);

  42. 		$username = mysqli_real_escape_string($con, $username);

  43. 		$password = mysqli_real_escape_string($con, $password);

  44. 		$password = md5($password);

  45.  

  46. 		//Check username and password from database

  47. 		$sql-login="SELECT userid FROM users WHERE users.username = '$username' and password = '$password'";

  48. 		$result=mysqli_query($con,$sql-login);

  49. 		$row=mysqli_fetch_array($result,MYSQLI_ASSOC);

  50.  

  51. 		//If username and password exist in our database then create a session.

  52. 		//Otherwise echo error.

  53.  

  54. 		if(mysqli_num_rows($result) == 1){

  55. 			$_SESSION['username'] = $login_user; // Initializing Session

  56. 			header("location: gw-toon.php"); // Redirecting To Other Page

  57. 		} else {

  58. 			$error = "Incorrect username or password.";

  59. 		}

  60. 	}

  61. } */

  62. ?>