-
Notifications
You must be signed in to change notification settings - Fork 10
/
checklogin.php
35 lines (29 loc) · 1.15 KB
/
checklogin.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
<?php
session_start(); // Starting Session
$error=''; // Variable To Store Error Message
if (isset($_POST['submit'])) {
// Define $username and $password
$username=$_POST['username'];
$password=$_POST['password'];
// Establishing Connection with Server by passing server_name, user_id and password as a parameter
$conn = mysqli_connect("localhost", "root", "", "compsys");
// To protect MySQL injection for Security purpose
$username = stripslashes($username);
$password = stripslashes($password);
$username = mysqli_real_escape_string($conn, $username);
$password = mysqli_real_escape_string($conn, $password);
// Selecting Database
$query = "SELECT * FROM staff WHERE username = '$username' AND password = '$password'";
$valid = mysqli_query($conn, $query);
if (!$valid) {
$error = "Could not connect to the database!";
}
if (mysqli_num_rows($valid) == 1 ) {
$_SESSION['login_user'] = $username; // Initializing Session
header("location: dashboard.php"); // Redirecting To Other Page
} else {
$error = "Username or Password is invalid! Please re-enter...";
}
mysqli_close($conn); // Closing Connection
}
?>