Created
May 30, 2017 18:50
-
-
Save Danushka96/df3641e3fdddcc7fa98dcaaa9edd8dbd to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php // Starting Session | |
$error=''; // Variable To Store Error Message | |
if (isset($_POST['submit'])) { | |
if (empty($_POST['username']) || empty($_POST['password'])) { | |
$error = "Username or Password is invalid"; | |
} | |
else | |
{ | |
//echo $_POST['username'],$_POST['password']; Define $username and $password | |
$username=$_POST['username']; | |
$password=$_POST['password']; | |
// Establishing Connection with Server by passing server_name, user_id and password as a parameter | |
include_once('../inc/connection.php'); | |
// To protect MySQL injection for Security purpose | |
$username = stripslashes($username); | |
$password = stripslashes($password); | |
//$username = mysqli_real_escape_string($username); | |
//$password = mysqli_real_escape_string($password); | |
// Selecting Database | |
//$db = mysqli_select_db("woodsart", $connection); | |
// SQL query to fetch information of registerd users and finds user match. | |
$query = mysqli_query($connection,"select * from users where password='$password' AND username='$username'"); | |
$rows = mysqli_num_rows($query); | |
if ($rows == 1) { | |
$userlevel=mysqli_fetch_array($query); | |
session_start(); | |
$_SESSION['login_user']=$username; | |
$_SESSION['login_level']=$userlevel['ulevel']; | |
$_SESSION['user_branch']=$userlevel['showroom']; | |
// Initializing Session | |
header("location: /woodarts/index.php"); // Redirecting To Other Page | |
} else { | |
$error = "Username or Password is invalid"; | |
} | |
mysqli_close($connection); // Closing Connection | |
} | |
} | |
?> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment