[Resolved] Auth Problem

fean0r

Hiyas

I use 2 cookies to store a username and another to store a password, everytime a user joins a page in the members area I include a page with the below code, I thought everything was working well until I removed the date on the cookie but the people canstill access the page!

<?php
if(!isset($_COOKIE['test1'])) header("Location: login.php");
if(isset($_COOKIE['test1'])) {
include("dbconnect.php");
$sql = "SELECT ID FROM " . user . " WHERE username='" . addslashes($test1) . "' AND password='" . md5($test2) . "' LIMIT 1";
if(!($result = mysql_query($sql))) die(mysql_error());
if(mysql_num_rows($result) == 1) {
}
}

First it checks that the cookie is there then it checks the information on each cookie is correct but it does nt seem to wrok 🙁

Any ideas?

dalecosp

if ($_COOKIE['test1']) {
   $test1=$_COOKIE['test1']; // You forgot this...check the FAQ!
   $test2=$_COOKIE['test2']; // ditto
   include("dbconnect.php"); // write your error code into this file...
   $sql = "SELECT ID FROM " . user . " WHERE username='" . addslashes($test1) . "' AND password='" . md5($test2) . "' LIMIT 1"; 
   $result=mysql_query($result); 
   if(mysql_num_rows($result) == 1) { 
      $auth='true';
      } 
   else {
   header("login.php"); 
   }
} else {
   header("login.php"); 
   }
}

HTH, 🙂

fean0r

Parse error: parse error in /home/fean0r/public_html/season_3/mcheck.php on line 18

nope does nt seem to work, I tried playing witht he code and just got other errors..

fean0r

I changed the way I check the pass and username totally and its now working!

Thanks for your help.