mauirixxx
/
gwtt
1
0
派生 0
代码 工单 0 合并请求 0 版本发布 0 百科 动态
Just a web script to help track when, where, and what you got from the free treasures scattered about Nightfall in the game Guild Wars.
您最多选择25个主题 主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
199 提交
2 分支
176 KiB
 
 
 
目录树: 70a3974758
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 '70a3974758'
${ noResults }
gwtt/gw-login.php

62 行
2.4 KiB
原始文件 Blame 文件历史 

  1. <?php

  2. session_start();

  3. if (isset($_SESSION['userid']) && ($_SESSION['access'])){

  4. 	echo 'Proceed to character selection <A HREF="gw-toon.php">here</A><BR>'; //really should automate this

  5. } else {

  6. 	include_once 'gw-connect.php';

  7. 	$con = new mysqli(DATABASE_HOST, DATABASE_USER, DATABASE_PASS, DATABASE_NAME);

  8. 	$username = mysqli_real_escape_string($con, $_POST['username']); //enable this after username form is built

  9. 	//$username = 'mauirixxx'; //delete this line after the above is finished

  10. 	$password = mysqli_real_escape_string($con, $_POST['password']); //enable this after password form is built

  11. 	//$password = 'drx9175l';

  12. 	$password = md5($password);

  13. 	if ($con->connect_errno > 0){

  14. 		die ('Unable to connect to database [' . $db->connect_errno . ']');

  15. 	}

  16. 	$sqllogin = "SELECT * FROM users WHERE users.username = '$username' and password = '$password'";

  17. 	if (!$result = $con->query($sqllogin)){

  18. 		die ('There was an error running the query [' . $con->error . ']');

  19. 	}

  20. 	while ($row = $result->fetch_array()){

  21. 		$uname = $row['username'];

  22. 		$uid = $row['userid'];

  23. 		$access = $row['access'];

  24. 		$_SESSION['username'] = $uname;

  25. 		$_SESSION['userid'] = $uid;

  26. 		$_SESSION['access'] = $access;

  27. 		echo 'Your username is ' . $uname . '. Your userid is ' . $uid . '. Your access level is ' . $access . '.<BR />';

  28. 	}

  29. }

  30. # keeping the code below for references material only

  31. /* if(isset($_POST["submit"])){

  32. 	if(empty($_POST["username"]) || empty($_POST["password"])){

  33. 		$error = "Both fields are required.";

  34. 	} else {

  35. 		// Define $username and $password

  36. 		$username=$_POST['username'];

  37. 		$password=$_POST['password'];

  38.  

  39. 		// To protect from MySQL injection

  40. 		$username = stripslashes($username);

  41. 		$password = stripslashes($password);

  42. 		$username = mysqli_real_escape_string($con, $username);

  43. 		$password = mysqli_real_escape_string($con, $password);

  44. 		$password = md5($password);

  45.  

  46. 		//Check username and password from database

  47. 		$sql-login="SELECT userid FROM users WHERE users.username = '$username' and password = '$password'";

  48. 		$result=mysqli_query($con,$sql-login);

  49. 		$row=mysqli_fetch_array($result,MYSQLI_ASSOC);

  50.  

  51. 		//If username and password exist in our database then create a session.

  52. 		//Otherwise echo error.

  53.  

  54. 		if(mysqli_num_rows($result) == 1){

  55. 			$_SESSION['username'] = $login_user; // Initializing Session

  56. 			header("location: gw-toon.php"); // Redirecting To Other Page

  57. 		} else {

  58. 			$error = "Incorrect username or password.";

  59. 		}

  60. 	}

  61. } */

  62. ?>