Simple Login Help

ph8edsicness

Okay, I'm using a php script: login.php to process login information. Since I am only having 3 users I do not need a database and passwords will be changing constantly anyway. Here's my login.php script.

<?php
$passwords = array("user1" => "pass1",
		 "user2" => "pass2",
		 "user3" => "pass3");
if ($password == $passwords[$username])
{
    setcookie("username", $username, time()+1200);
//redirect to secure page
}
else
{
    setcookie("username", "", time()-3600);
//redirect to login
}
?>

What I need is help with code that redirects the user to a secure page if the login is correct or back to the page containing the login form if it's incorrect. I know it's simple but it keeps messing up on me. Also, I need something that runs a check to see if a user is currently logged in so that no one else may log-in with someone else's information.

Thanks for the help!

DigitalExpl0it

here is some help....
in the same directory as this script make a subdirectory called tmp, and give it full access, so n unix/linux do a chmod 777


<?
function form() {
?>
<form name="login" method="post" action="<? echo $PHP_SELF; ?>">
<table width="300" border="0" align="center" cellpadding="0" cellspacing="0">
  <tr>
    <td bgcolor="#000000"><table width="100%" border="0" align="center" cellpadding="0" cellspacing="1">
        <tr bgcolor="#FFFFFF"> 
          <td width="40%" bgcolor="#A5C1CF"><strong><font color="#000000">&nbsp;&nbsp;&nbsp;Username</font></strong></td>
          <td width="60%" bgcolor="#CADBE3"><font color="#000000"> &nbsp;&nbsp; 
            <input name="name" type="text" id="name">
            </font></td>
        </tr>
        <tr bgcolor="#FFFFFF"> 
          <td bgcolor="#A5C1CF"><strong><font color="#000000">&nbsp;&nbsp;&nbsp;Password</font></strong></td>
          <td bgcolor="#CADBE3"><font color="#000000"> &nbsp;&nbsp; 
            <input name="pass" type="password" id="pass">
            </font></td>
        </tr>
        <tr align="center" bgcolor="#A5C1CF"> 
          <td colspan="2"><font color="#000000">&nbsp;</font><font color="#000000"> 
            <input type="submit" name="Submit" value="Submit">
            <input type="reset" name="Submit2" value="Reset">
            </font></td>
        </tr>
      </table></td>
  </tr>
</table></form>
<?
}
?>
<html>
<head>
<title>Login | No database</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>

<body>

<?
if ($_REQUEST["Submit"] == "Submit") {
/***** Set usernames and paswords here *****/
$passwords = array("user1" => "pass1",
         "user2" => "pass2",
         "user3" => "pass3");

$username = $_REQUEST["name"];

if ($_REQUEST["pass"] == $passwords[$username]) {
   /***** check login info *****/     

		$check_file = "tmp/".$username;
		 if( $fp = @fopen("$check_file", "r") ) {
  			 print "User by this name is already logged in.";
  			 @fclose($fp);
  		 } else {
   /***** Save login info *****/
		  $filename = "tmp/".$username;
		  touch ($filename);

	  setcookie("username", $_REQUEST["name"], time()+1200);

	  /***** Now to redirect to secure.php page *****/
	  echo "<meta http-equiv=\"refresh\" content=\"0;url=secure.php\">";
	  echo $_COOKIE["username"].", you have logged in";			
		@fclose($fp);
	}

//redirect to secure page
} else {
      setcookie("username", "", time()-3600);
//redirect to login
echo "<br>Something went wrong<br>";
form();
}
return;
}

/***** Load form *****/
form();
?>
</body>
</html>

ph8edsicness

Thanks a lot man!