Return Posted August 22, 2013 Share Posted August 22, 2013 * I have a field in a db table called "name", as would be helping me to record it in a session to be viewing this page? * Here is the code that the user uses to login. <?php include ('smarty/libs/Smarty.class.php');$smarty = new Smarty(); $smarty->template_dir = "smarty/demo/templates"; $smarty->compile_dir = "smarty/demo/templates_c"; $smarty->config_dir = "smarty/demo/configs"; $smarty->cache_dir = "smarty/demo/cache"; ?> <?php session_start(); if($_POST) { include ('config.php'); $username = $_POST['username']; $password = $_POST['password']; $conn = mysql_connect($dbhost,$dbuser,$dbpass) or die ('Error connecting to mysql'); mysql_select_db($dbname); $query = sprintf("SELECT COUNT(id) FROM users WHERE UPPER(username) = UPPER('%s')AND password='%s'", mysql_real_escape_string($username), mysql_real_escape_string(md5($password))); $result = mysql_query($query); list($count) = mysql_fetch_row($result); if($count >= 1) { $_SESSION['authenticated'] = true; $_SESSION['username'] = $username; $query = sprintf("SELECT COUNT(id) FROM users WHERE UPPER(username) = UPPER('%s')AND confirmed='1'", mysql_real_escape_string($username), mysql_real_escape_string(($confirmed))); $result = mysql_query($query); list($count) = mysql_fetch_row($result); if($count == 1) { $query = sprintf("UPDATE users SET last_login = NOW() WHERE UPPER(username) = UPPER('%s') AND password = '%s'", mysql_real_escape_string($username), mysql_real_escape_string(md5($password))); mysql_query($query); $query = sprintf("SELECT is_admin FROM users WHERE UPPER(username) = UPPER('%s') AND password='%s'", mysql_real_escape_string($username), mysql_real_escape_string(md5($password))); $result = mysql_query($query); list($is_admin) = mysql_fetch_row($result); if($is_admin == 1) { print"<script> window.location='';</script>"; } else { print"<script> window.location='';</script>"; } } $error = ''; }else{ $error = ''; } } $smarty->assign('error',$error); $smarty->assign('message',$message); $smarty->display('login.tpl'); ?> Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.