[SOLVED] User Login Page Help?

[jbingman]

Hey I'm fairly new to php and i just created a user login page which works. However, I don't know how to get them to a new password requiring page after they press the submit button. How do I go about getting them there?

[madspof]

Do you mean once they have typed in their details and pressed enter you want the user to be redirected to a page which can only be seen by some one logged in

[darkfreaks]

http://www.phpeasystep.com/phptu/21.html

 

easy forgot password tutorial

[jbingman]

Yeah thats exactly what i want to do.

[madspof]

what the tutorial or my suggestion

 

[jbingman]

your suggestion..i dont want the forgotten password. just want to know how when they enter their information they get to a page only they can see when they are logged in.

[madspof]

Okay well how does your login work. Does it use a db or txt and is it session based or cookie based

[darkfreaks]

login tutorial is what you need then

 

 

http://www.trap17.com/index.php/php-simple-login-tutorial_t7887.html

[Jessica]

You'll need to store something in the session which says they are logged in. On the page, check if the session variable is set. If not, redirect them back to the login screen.

[darkfreaks]

jessi that tutorial above me uses sessions

[jbingman]

what i have right now is...

 

<?php

$connect = mysql_connect("localhost","username","password");

$db = mysql_select_db("database");

if(isset($_POST['login'])) {

if(mysql_num_rows(mysql_query("SELECT username, password FROM accounts WHERE username = '".$_POST['username']."' && password = '".$_POST['password']."' ")) >0) {

if(mysql_num_rows(mysql_query("SELECT id FROM accounts WHERE username = '".$_POST['username']."' && password = '".$_POST['password']."' ")) > 0 ) {

        $_SESSION['logged'] = true;

        $_SESSION['username'] = $_POST['username'];

        $_SESSION['password'] = $_POST['password'];

        echo "<p style=\"color:green;font-size:12px\">You have successfully logged in!</p>";

  }else{ //if the username and password aren't from the same account but does exist

     echo "<p style=\"color:red;font-size:12px\" align=\"center\"> Incorrect login! Please try again</p>";

  }

}else{ //username/password doesn't exist

  echo "<p style=\"color:red;font-size:12px\" align=\"center\">Username/Password doesn't exist!</p>";

}

}

 

 

?>

 

[Jessica]

Did you bother to look at the tutorials or research anything we said?

[darkfreaks]

Honestly using the session tutorial will teach you alot.

[jbingman]

Yes, on that one tutorial, trap17, is it possible not to use the register? because i want to be only one user login.

[darkfreaks]

$user="abc123"

 

pass="pass"

[madspof]

Where you have [echo "<p style=\"color:green;font-size:12px\">You have successfully logged in!</p>";] replace that with header( 'Location: login.html' ) and that will as soon as they have login in redirect you to what ever page you want.

 

<?php
$connect = mysql_connect("localhost","username","password");
$db = mysql_select_db("database");
if(isset($_POST['login'])) {
if(mysql_num_rows(mysql_query("SELECT username, password FROM accounts WHERE username = '".$_POST['username']."' && password = '".$_POST['password']."' ")) >0) {
if(mysql_num_rows(mysql_query("SELECT id FROM accounts WHERE username = '".$_POST['username']."' && password = '".$_POST['password']."' ")) > 0 ) {
         $_SESSION['logged'] = true;
         $_SESSION['username'] = $_POST['username'];
         $_SESSION['password'] = $_POST['password'];
         echo header( 'Location: login.html' );
   }else{ //if the username and password aren't from the same account but does exist
      echo "<p style=\"color:red;font-size:12px\" align=\"center\"> Incorrect login! Please try again</p>";
   }
}else{ //username/password doesn't exist
   echo "<p style=\"color:red;font-size:12px\" align=\"center\">Username/Password doesn't exist!</p>";
}
}


?>

And then you need to go about creating a page that checks the session to see if they you are logged in which is shown in the tutorials