/
login.php
63 lines (46 loc) · 1.24 KB
/
login.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<title>Login</title>
<link rel="stylesheet" type="text/css" href="mystyle.css">
<link href='https://fonts.googleapis.com/css?family=Roboto:400,100,300,300italic' rel='stylesheet' type='text/css'>
</head>
<body>
<header>
<a href="./index.php"> <img id="logo" src="logo.png" alt="Quora"/> </a>
</header>
<div class="center post-display" >
<?php if($_SERVER['REQUEST_METHOD'] === 'POST') : ?>
<?php
$email = $_POST["email"];
$password = md5($_POST["password"]);
require_once('../../mysqli-connect.php');
$sql = "SELECT * FROM Users WHERE email='" . htmlspecialchars($email) . "'";
$response = $conn->query($sql);
if($response) {
if($row = mysqli_fetch_array($response)) {
if($row["password"] === htmlspecialchars($password)) {
session_start();
$_SESSION["loggedin"] = true;
$_SESSION["id"] = $row["id"];
echo "Login success.<br />";
} else {
echo "Invalid login credentials.<br />";
}
} else {
echo "Login error.<br />";
}
} else {
echo "Login error.<br />";
}
mysqli_free_result($response);
$conn->close();
echo "Click <a href=\"./index.php\">here</a> to go to the index page.";
?>
<?php else : ?>
Error.
<?php endif; ?>
</div>
</body>
</html>