Файл: login.php
Строк: 27
<?php
/*
author: SBeka
http://masteram.us/id580
*/
include ('system/mysql.php');
include ('system/sys_func.php');
if (isset($user)) header('Location: pages/personal/');
$error = false;
$errort = '';
if (isset($_POST['submit'])) {
$login = mysql_real_escape_string($_POST['login']);
$password = mysql_query("SELECT `pass` FROM `users` WHERE `login` = '$login' LIMIT 1");
if (mysql_num_rows($password) == 1) {
$pass = mysql_real_escape_string($_POST['pass']);
$user = mysql_query("SELECT `id` FROM `users` WHERE `login` = '$login' AND `pass` = '$pass' LIMIT 1");
if (mysql_num_rows($user) == 1) {
header("Location: /?login=$login&pass=$pass");
exit;
} else {
$error = true;
$errort .= '<div class="err">Неправильный логин или пароль.</div>';
}
} else {
$error = true;
$errort .= '<div class="err">Неправильный логин или пароль.</div>';
}
}
$title = 'Вход';
include ('system/head.php');
echo '<div class="title">Вход</div>
'. $errort;
echo '<form method="post">
Логин: <br><input type="text" name="login" />
<br>Пароль: <br>
<input type="password" name="pass" />
<br><input type="submit" name="submit" value="Войти в аккаунт" />
</form>';
foot();
?>