Chestia e ca m-am blocat la verificarea logarii userului. Am construit o pagina de inregistrare care functioneaza cum trebuie, o pagina de login care functioneaza cum trebuie, dar la verificarea pe index daca userul este logat sau nu, imi este afisat din nou acel formular...m-am blocat si nu vad ce am gresit.
index.php arata asa:
Code: Select all
<?php
session_start();
include('config.php');
?>
<html>
<head>
<title>Online bookmark organizing - FRONTPAGE</title>
</head>
<div align="center">
<br /><br />
<?php
if($_SESSION['logged']!==1){
echo '
<strong>Please enter your credentials:</strong> <br /><br /><br />
<form action="login.php" method="POST">
Username: <input type="text" name="user" /> <br />
Password: <input type="password" name="pwd" /><br />
<input type="submit" value="LOGIN" />
</form>
<button onclick="window.location.href=\'register.php\'">REGISTER</button>
<br />
';} else {
echo '<div align="center">Esti deja logat, buna usere! :)</div>';
}
?>
<br /><br /><br /><br />© Marius Popa - 2012 . Made for West <strong>University of Timsioara</strong></div>
</html>
Code: Select all
<?php
// requiring the config file
require_once('config.php');
// getting data with $_POST via website's form
$user=$_POST['user'];
$name=$_POST['name'];
$email=$_POST['email'];
$pass=$_POST['pwd'];
$pwd= md5($pass);
// username verification
$verify = mysql_query("SELECT * FROM users WHERE username = '". $user ."' ");
$row = mysql_fetch_array($verify);
$rows_number = mysql_num_rows($verify);
if($rows_number==0){
mysql_query("INSERT INTO users (username, password, realname, email)
VALUES ('$user', '$pwd', '$name','$email')");
/* mail($email,
"'.$name.', your registration is now complete!",
"'.$name.', thank you for registering :-)! \n\n Below these line are your login credentials: \n\n\n User: '.$user.' \n Password: '.$pwd.' \n"); */
echo '<div align="center">You\'ve been registered into the system. Press <a href="login.php">here</a> to go to the LOGIN page or press <a href="index.php">here</a> to get back to the homepage</div>';
} else {
echo '<center><font color="red"><b>Sorry, this name already exists in the database! Please <a href="register.php">try again</a>!</b></font></center>';
}
?>
Code: Select all
<?php
require_once('config.php');
ob_start();
if($_SESSION['logged']!==1){
$user = $_POST['user'];
$pwd = $_POST['pwd'];
$q = mysql_query("SELECT * FROM users WHERE username = '".$user."' AND password = md5('".$pwd."')");
$rowz = mysql_fetch_array($q);
$n = mysql_num_rows($q);
if($n == 1){
$_SESSION['logged']=1;
echo 'logat, mars pe <a href="index.php">homepage</a>';
} else {
echo '<center><font color="red"><b>Please check your credentials again!</b></font></center>';
}
}
ob_end_flush();
?>