Ovo je code (code za formu i za login je na zajednickoj stranici index.php):
Forma
Code:
<form action="index.php" method="POST">
<input type="text" name="user_login" size="25" placeholder="username"/><p>
<input type="password" name="password_login" size="25" class="password" placeholder="password"/></p>
<input type="submit" name="submit" size="25" value="Log in"/>
</form>
<form action="index.php" method="POST">
<input type="text" name="user_login" size="25" placeholder="username"/><p>
<input type="password" name="password_login" size="25" class="password" placeholder="password"/></p>
<input type="submit" name="submit" size="25" value="Log in"/>
</form>
Login
Code:
if (isset($_POST["user_login"]) && isset($_POST["password_login"])) {
$user_login = preg_replace('#[^A-Za-z0-9]#i', '', $_POST["user_login"]);
$password_login = preg_replace('#[^A-Za-z0-9]#i', '', $_POST["password_login"]);
$password_loginmd5= md5($password_login);
$sql= mysql_query("SELECT id FROM users WHERE username='$user_login' AND password='$password_loginmd5' LIMIT 1") or die(mysql_error());
$usercount= mysql_num_rows($sql);
if($usercount==1){
while ($row = mysql_fetch_array($sql)) {
$id=$row["id"];
}
// $_SESSION["id"]=$id;
$_SESSION["user_login"]=$user_login;
//$_SESSION["password_login"]=$password_login;
header("location: home.php");
exit();
}else{
echo "Incorect user/password";
exit();
}
}
if (isset($_POST["user_login"]) && isset($_POST["password_login"])) {
$user_login = preg_replace('#[^A-Za-z0-9]#i', '', $_POST["user_login"]);
$password_login = preg_replace('#[^A-Za-z0-9]#i', '', $_POST["password_login"]);
$password_loginmd5= md5($password_login);
$sql= mysql_query("SELECT id FROM users WHERE username='$user_login' AND password='$password_loginmd5' LIMIT 1") or die(mysql_error());
$usercount= mysql_num_rows($sql);
if($usercount==1){
while ($row = mysql_fetch_array($sql)) {
$id=$row["id"];
}
// $_SESSION["id"]=$id;
$_SESSION["user_login"]=$user_login;
//$_SESSION["password_login"]=$password_login;
header("location: home.php");
exit();
}else{
echo "Incorect user/password";
exit();
}
}
index.php sadrzi include stranice header koja u sebi ima povezivanje na bazu i poziva session_start()
Header
Code:
session_start();
if(!isset($_SESSION["user_login"])){
$user ="";
}else{
$user =$_SESSION["user_login"];
header("location:home.php");
}
session_start();
if(!isset($_SESSION["user_login"])){
$user ="";
}else{
$user =$_SESSION["user_login"];
header("location:home.php");
}
I na kraju zasticena stranica
Home
Code:
<?php
include ('./inc/header.php');
echo "Hello".@$user ;
echo $_SESSION["user_login"];
?>
<table id="leftTable">
<tr>
<td><?php echo "Hello, ".@$user ;?></td><br>
<td><?php echo "<a href='logout.php'>Log out</a>";?></td>
</tr>
</table>
<?php
include ('./inc/header.php');
echo "Hello".@$user ;
echo $_SESSION["user_login"];
?>
<table id="leftTable">
<tr>
<td><?php echo "Hello, ".@$user ;?></td><br>
<td><?php echo "<a href='logout.php'>Log out</a>";?></td>
</tr>
</table>
U cemu gresim ?