PDA

View Full Version : Need help with a login script



Dirt_Diver
08-14-2008, 12:12 AM
I have a working log in script but I don't like it. I want the index page to have the login fields but after login I want the boxes to disapear and display "logged in as user" what I would like to have is the username field on top of the password field, then underneath it all I would like a check box for remembering the users info. Is there anyone out there that a script I am looking for or could help me rewrite the one I have. Here is the login code I am using now.



<?php
// Connects to your Database
mysql_connect("localhost", "user", "password") or die(mysql_error());
mysql_select_db("database") or die(mysql_error());

//Checks if there is a login cookie
if(isset($_COOKIE['ID_my_site']))

//if there is, it logs you in and directes you to the members page
{
$username = ($_COOKIE['ID_my_site']);
$pass = ($_COOKIE['Key_my_site']);
$check = mysql_query("SELECT * FROM users WHERE username = '$username'")or die(mysql_error());
while($info = mysql_fetch_array( $check ))
{
if ($pass != $info['password'])
{
}
else
{
header("Location: index.php"); /*not sure if I should have this here for the new script*/

}
}
}

//if the login form is submitted
if (isset($_POST['submit'])) { // if form has been submitted

// makes sure they filled it in
if(!$_POST['username'] | !$_POST['pass']) {
die('You did not fill in a required field.');
}
// checks it against the database

if (!get_magic_quotes_gpc()) {
$_POST['email'] = addslashes($_POST['email']);
}
$check = mysql_query("SELECT * FROM users WHERE username = '".$_POST['username']."'")or die(mysql_error());

//Gives error if user dosen't exist
$check2 = mysql_num_rows($check);
if ($check2 == 0) {
die('That user does not exist in our database. <a href=add.php>Click Here to Register</a>');
}
while($info = mysql_fetch_array( $check ))
{
$_POST['pass'] = stripslashes($_POST['pass']);
$info['password'] = stripslashes($info['password']);
$_POST['pass'] = md5($_POST['pass']);

//gives error if the password is wrong
if ($_POST['pass'] != $info['password']) {
die('Incorrect password, please try again.');
}
else
{

// if login is ok then add a cookie
$_POST['username'] = stripslashes($_POST['username']);
$hour = time() + 3600;
setcookie(ID_my_site, $_POST['username'], $hour);
setcookie(Key_my_site, $_POST['pass'], $hour);

//redirects them to the members area
header("Location: index.php"); /*again not sure if the new code should have this*/
}
}
}
else
{

// if they are not logged in
?>


<form action="<?php echo $_SERVER['PHP_SELF']?>" method="post">
<table width="151" border="0">
<tr><td width="162">
Username:
<input type="text" name="username" maxlength="40">
</td></tr>
<tr><td>
Password:<br>
<input type="password" name="pass" maxlength="50">
</td></tr>
<tr><td align="right"><input type="submit" name="submit" value="Login"></td>
</tr>
</table>
<br>
Don't have an account? <a href="add.php">Sign up</a></form>
<?php
}

motormichael12
08-14-2008, 01:57 AM
What are all these [icode] and [html] tags in there for?

Dirt_Diver
08-14-2008, 02:08 AM
What are all these [icode] and [html] tags in there for?

I don't see any icode tags but I added the html tags so I didn't have to break up the code on submit. I didn't think the form mattered but I didn't know so I left it in.. Do you have a solution for it?

Dirt_Diver
08-14-2008, 12:32 PM
anyone?

Dirt_Diver
08-25-2008, 12:36 PM
I got this fixed...