// User Login Code
Code:
if(isset($_POST["user_login"]) && isset($_POST["password_login"])) {
$user_login = preg_replace('#[^A-Za-z0-9]#i', '', $_POST["user_login"]); // filter everything but numbers and letters
$password_login = preg_replace('#[^A-Za-z0-9]#i', '', $_POST["password_login"]); // filter everything but numbers and letters
$password_login_md5 = md5($password_login);
$sql = mysql_query("SELECT id FROM users WHERE username='$user_login' AND password='$password_login_md5' LIMIT 1"); // query
//Check for their existance
$userCount = mysql_num_rows($sql); //Count the number of rows returned
if ($userCount == 1) {
while($row = mysql_fetch_array($sql)){
$id = $row["id"];
}
$_SESSION["user_login"] = $user_login;
header("location: index.php");
exit();
} else {
echo 'That information is incorrect, try again';
exit();
}
}
}
?> <div style="width: 800px; margin: 0px auto 0px auto;"> <table> <tr> <td width="60%" valign="top"> <h2>Already a Member? Sign In!</h2> <form action="http://bytes.com/" method="post"> <input type="text" name="user_login" size="25" placeholder="Username" /><br /><br /> <input type="text" name="password_login" size="25" placeholder="Password" /><br /><br /> <input type="submit" name="login" value="Login"> </form>
Comment