PHP/MySQL Login for My Site

bshafer

Hi, I am in need of a PHP and MySQL section on my site for login and member area etc. which is far too advanced for me (i am an extreme begginer!) . I know it's a big ask but would anyone be interested in creating what I want for me. I am willing to pay a small fee via PayPal.

If you are interested email me at: bshafer@movieraves.com

THANKS BEN 😃

HoneyBee

I think you should create a data table. This data table will contain id, user name and password. Then, you use php and sql to query data in this data table... try it, I hope it will goes smooth.
Regards.
dannis yang

corruption

I have a good already made set of code that I could send you. It's a good starting block and is easily modifiable.

bshafer

Oh that would be great, thanks my email is bshafer@movieraves.com where should I send the fee?

Thanks Ben

spstieng

I have a very simple login script.
Don't think it's very secure though 🙂

I'll worry about that later.
Unless someone here can comment on it

<?php

session_start();
header("Cache-control: private"); // IE6 fix

include_once('config.php');
include (DIR_INCLUDE.'initDB.php');

# Get username and password from login page
	$username = $HTTP_POST_VARS['username']; 
	$password = md5($HTTP_POST_VARS['password']); 
	$location = $HTTP_POST_VARS['location']; 

if(!get_magic_quotes_gpc()) 
{ 
    $username = addslashes($username); 
} 

# SQL query to get the user from database
	$result = @mysql_query('SELECT empID, empFname, empLname, empPsw FROM employee WHERE empUsrName="'.$username.'"') or die (mysql_error());
	$row = mysql_fetch_array($result);


//check if the username is in database 
    if(mysql_numrows($result) != 1) 
    { 
        echo ' ERROR - User not found'; 
    } else {
	  if ($row['empPsw'] == $password)
	  {
	    $_SESSION['_userID'] = $row['empID']; 
	    $_SESSION['_username'] = $row['empFname'].' '.$row['empLname']; 

	# If username and password matches, go to a defined page.
    header("Location: main.php?page=".$location."");

  } else {  echo 'Incorrect Password'; }
}

  mysql_free_result($result);
?>