script.php
<?php
session_start();
//database server
define('db_server', 'localhost');
//user, password, and database variables
$db_user = 'user';
$db_password = 'password';
$db_dbname = 'people';
/**
* Run MySQL query and output
* results in a HTML Table
*/
function outputQueryResults() {
$username=$_POST['name'];
$password=$_POST['pass'];
$count=0;
$rowcount=0;
//run a select query
$select_query = "SELECT * FROM names WHERE username= '".$username."' AND password = '".$password."'";
$result = mysql_query($select_query);
//output data in a table
while ($row = mysql_fetch_row($result))
{
// echo "<table>\n";
//echo "<tr>\n";
foreach ($row as $val)
{
$_SESSION[$rowcount] = $val;
//echo "<td>$val</td>\n";
$rowcount=$rowcount+1;
$count=$count+1;
}
//echo "</tr>\n";
}
if(is_null($row)||empty($row)&& $count==0)
{
if (!empty($_SERVER['HTTPS']) && ('on' == $_SERVER['HTTPS']))
{
$uri = 'https://';
}
else
{
$uri = 'http://';
}
$uri .= $_SERVER['HTTP_HOST'];
header('Location: '.$uri.'/error.html');
}else{
//echo '</table>';
//echo "Session row 1 = ".$_SESSION[0]."<br />";
//echo "Session row 2 = ".$_SESSION[1]."<br />";
//echo "Session row 3 = ".$_SESSION[2]."<br />";
//echo "Session row 4 = ".$_SESSION[3];
if (!empty($_SERVER['HTTPS']) && ('on' == $_SERVER['HTTPS']))
{
$uri = 'https://';
}
else
{
$uri = 'http://';
}
$uri .= $_SERVER['HTTP_HOST'];
header('Location: '.$uri.'/index.php');
}
}
//connect to the database server
$db = mysql_connect(db_server, $db_user, $db_password);
if (!$db) {
die('Could Not Connect: ' . mysql_error());
} else {
echo "Connected Successfully...\n";
}
//select database name
mysql_select_db($db_dbname);
//run query and output results
outputQueryResults();
//close database connection
mysql_close($db)
?>
index.php
<?php
session_start();
if(!isset($_SESSION[1])){
echo "help1";}else{$var=$_SESSION[1];
}
echo $_SESSION[1];
echo $var;
?>