<?php
session_start();
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>Simple login system</title>
<link rel="stylesheet" type="text/css" href="style.css" />
</head>
<body>
<div id="main">
<div id="header">
<form action="" method="POST">
<label for="kasutaja">User:</label>
<input type="text" name="kasutaja" id="kasutaja" />
<label for="parool">Pass:</label>
<input type="password" name="parool" id="parool" />
<button type="submit" name="login">Login</button>
<?php
if ( isset($_SESSION['logged_user']) ) {
echo "<button type=\"submit\" name=\"logout\">LogOut</button>";
echo "Logged in: <b>".$_SESSION['logged_user']."</b>";
}
else {
echo "Welcome, guest";
}
?>
</form>
<?php
if ( isset($_POST['login']) ) {
if( (!empty($_POST['kasutaja'])) && (!empty($_POST['parool'])) ) {
$db_addr = "localhost";
$db_user = "root";
$db_pass = "";
$db_name = "membership";
$user = $_POST['kasutaja'];
$pass = $_POST['parool'];
$con = mysql_connect($db_addr, $db_user, $db_pass) or die( mysql_error() );
mysql_select_db($db_name) or die( mysql_error() );
$query = "SELECT userNames,passWords FROM accounts";
$selected = mysql_query($query) or die( mysql_error() );
while( $account = mysql_fetch_array($selected) ) {
if (($user==$account['userNames']) && ($pass==$account['passWords'])) {
$_SESSION['logged_user'] = $user;
break;
}
}
}
}
?>
</div>
</div>
</body>
</html>
Okay, I've got a robust login system here, but there are some problems.
For example, when I enter correct username and password and hit "Login", it registers a $_SESSION variable named 'logged_user'. But the username will be visible after I hit the login button and refresh a page, I'd like to do a "normal" login system that I click "login" and it logs in - it means I have to rebuild a system, but how?
--it's my first login system so it may seem quite weird.
--Second problem is - how to build a LogOut button?
Thanks