$username = mysql_escape_string($_POST['username']);
$sql = "SELECT * FROM table WHERE username = '$username'";
// osv...
session_start();
include "connect.php";
$username = $_SESSION['username'];
$getname = $_GET['n'];
if (!$getname == '') {$name = $getname;} else {if (!$username == '') {$name = $username;} else {$name = 'standard';}}
$query = "SELECT username, role FROM kiusers WHERE username='$username' LIMIT 1";
$result = mysql_query($query);
$row = mysql_fetch_array($result, MYSQL_ASSOC);
$userelevation = $row['role'];
///////////////////////////////////////
#Stuff for starting the script properly
///////////////////////////////////////
session_start();
include 'connect.php';
///////////////////////////////////////
#POST information
///////////////////////////////////////
$username = $_POST['username'];
$password = $_POST['password'];
///////////////////////////////////////
#Debug information
///////////////////////////////////////
#echo "username - $username <br> password - $password";
///////////////////////////////////////
#Query to database
///////////////////////////////////////
$query = "SELECT username, password, ip, password FROM kiusers WHERE username='$username' LIMIT 1";
$result = mysql_query($query);
///////////////////////////////////////
#Set results to readable variables
///////////////////////////////////////
while($row = mysql_fetch_array($result, MYSQL_ASSOC))
{$databaseusername = $row['username'];
$databasepassword = $row['password'];}
if ($databasepassword == $password) {
$_SESSION['username'] = $databaseusername;
$sessionusername = $_SESSION['username'];
} else {
echo "Error, wrong password. Please try again";echo '<head>
<meta>
</head>'; die;}
///////////////////////////////////////
#Debug information
///////////////////////////////////////
#echo "<br><br>username - $databaseusername <br> password - $databasepassword";
echo "<br><br>username now in the session is $sessionusername. You will now be redirected back to the index";
include 'disconnect.php';
echo '<head>
<meta>
</head>';
?>
Registrerte brukere: Google [Bot]