05-24-2009, 06:16 AM
|
#1 (permalink)
|
|
The Acquainted
Join Date: May 2007
Location: Your G/F's Closet
Posts: 114
Thanks: 7
|
Admin Login?
Alright so working on a new project since i finished my other one and im trying some new concepts with this one. but it seems to not be working.
for some reason It wont read my database and log me in.
PHP Code:
<?php
/**
* @version 1.0
* @package RemixCMS
* @copyright Copyright (C) 2009 RemixCMS. All rights reserved.
* @license GNU/GPL, see LICENSE.php
* RemixCMS is free software. This version may have been modified pursuant
* to the GNU General Public License, and as distributed it includes or
* is derivative of works licensed under the GNU General Public License or
* other free or open source software licenses.
* See COPYRIGHT.php for copyright notices and details.
*/
require('../inc/configuration.php');
//start the session
session_start();
//log user in ---------------------------------------------------
function login($user, $pass){
//get data from form
$user = trim($_POST['user']);
$pass = trim($_POST['pass']);
//strip all tags from variable
$user = strip_tags($user);
$pass = strip_tags($pass);
// escape all data in variables to prevent mysql injection
$user = mysql_real_escape_string($user);
$pass = mysql_real_escape_string($pass);
$pass = md5($pass);
// check if the user id and password combination exist in database
$sql = "SELECT username FROM user WHERE username = '$user' AND password = '$pass'";
$result = mysql_query($sql) or die('Query failed. ' . mysql_error());
if (mysql_num_rows($result) == 1) {
// the username and password match,
// set the session
//get the memberID from database
$getid = mysql_query("SELECT * FROM user WHERE username = '$user'");
while($row = mysql_fetch_object($getid)){
//assign memberID to a variable
$memberID = $row->ID;
//set the session
$_SESSION['isloggedin'] = $memberID;
}
// reload the page
header('Location: '.$_SERVER['HTTP_REFERER']);
exit;
} else {
//make error message avalible outside of function
global $errorMessage;
// define an error message
$errorMessage = 'Uh Oh! It appears your username and/or password was incorrect.';
}
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<title>RemixCMS - Administrator Login</title>
<link href="css/login.css" rel="stylesheet" type="text/css" />
</head>
<body>
<div id="wrapper">
<div id="logo"><span>RemixCMS Administrative Login</span></div>
<?php
if (!isset($_SESSION['isloggedin'])){
?>
<div id="login">
<div id="login_banner"><span>Administrative Login</span></div>
<form action="#" method="POST" id="login_form" name="login">
<label>Username:
<input class="login_info" type="text" name="username" id="username" type="text" />
</label>
<label>Password:
<input class="login_info" type="password" name="password" id="password" type="text" />
</label>
<span id="forgot"><a href="#">forgot password?</a></span>
<input id="login_button" type="submit" name="slogin" value="" />
</form>
<div id="lock"><span>Secured</span></div>
</div>
<div id="footer">
<div id="copyright">
Copyright 2009 <a href="#">RemixCMS</a>.
</div>
</div>
<?php
}
if (isset($_POST['slogin'])){
login($user, $pass);
}
//if login failed
if (isset($errorMessage)) {
echo "<div class=\"warning\"><img src='images/noaccess.png' class='xicon' /><span class='warningtext'>$errorMessage</span></div>\n";
}
?>
</div>
</body>
</html>
it keeps giving my error message.
__________________
Real Programmers always confuse Christmas and Halloween because Oct31 == Dec25 - Andrew Rutherford
|
|
|
Join the friendly bunch on IRC...
Linear Mode
