Full login script

kickme21

I have 4 different file for log in and log out. I was wondering on how to condence it to 1.

at the mo to log on u goto logon.php

OpenTable();
echo "<font face=\"arial\" size=\"2\"><b>\"All fields marked with a are required:\"<br>
<form enctype=\"multipart/form-data\" action=\"login2.php\" method=\"post\">
<table width='50%' border=0>
<tr><td> User Name:<font color=\"#ff0000\"></font></td>
<td>
<input type=text name='text_login'></td></tr>
<tr><td> Password:<font color='#ff0000'>*</font></td>
<td>
<input type=Password name='text_password'></td></tr>
</table>
<input type='submit' value='Submit Form'> <input type=reset value='Clear Form'></form>";
CloseTable();

then login2 contains

//Begin SQL
$query = "SELECT password FROM users WHERE username='$username'";
// to do the above, you got to make sure that username is unique, and no 2 username are alike
// this could be imposed during user user registration...
$result = mysql_db_query(f1racers, $query);
$myinfo = mysql_fetch_array($result);
$total_found = mysql_num_rows($result);

if ($total_found == "0") {
echo "Incorrect login name or password. Please try again.";

} else {

$my_password = $myinfo['password'];
// the password from ur db, and its md5ed
#$md5_password = md5($password);
// validating for a match 
if ($password == $my_password) { 
    session_start(); 
    $_SESSION['register'] = $user; 
    echo "Login Successfull!"; 
} else { 
    echo "Incorrect login name or password. Please try again."; 
} 
}

can anyone help

yelvington

if($_POST['submit'] == 'Submit form'){

// do your input handling

} else {

// print out the login form

}

kickme21

thanks for that but I am a really big n00b to programing. what would the action be???

yelvington

The form should post the information back to itself.

kickme21

I tried it before I change the action section and I get a blank scren then when I put the action bit in I get an error.

if($_POST['submit'] == 'Submit form'){
//check if already registared
$check = "select id from users where username = '$username';";

$qry = mysql_query($check) or die ("Could not match data because ".mysql_error());
$num_rows = mysql_num_rows($qry);

if ($num_rows != 0) {

echo "Sorry, there the User Name: $username is already taken.<br>";
echo "<a href=/?register>Try again</a>";
exit;

} else {

// insert the data
$query="insert into users (username,name,password,email,homepage,userlevel,laston,money,turns,carpoints,pitmen,sponsers,technitions,vendors,gearbox,aero,engine,brakes,suspention,aids,strat) values ('$username','$name','$password','$email','$homepage','$userlevel','$laston','$money','$turns','$carpoints','$pitmen','$sponsers','$technitions','$vendors','$gearbox','$aero','$engine','$brakes','$suspention','$aids','$strat')"
or die("Could not insert data because ".mysql_error());
mysql_query($query);

// print a success message
echo "Your user account has been created!<br>";

echo "Now you can <a href=/?login>log in</a>";

}
} else {

// print out the login form
OpenTable();
echo "<font face=\"arial\" size=\"2\"><b>\"All fields marked with a are required:\"<br>
<form enctype=\"multipart/form-data\" action = \"<?php echo _SERVER["PHP_SELF"]; ?>\"> method=\"post\">;
<table width='50%' border=0>
<tr><td> User Name:<font color=\"#ff0000\"></font></td>
<td>
<input type=text name='text_username'></td></tr>
<tr><td> Name:</td>
<td>
<input type=text name='text_name'></td></tr>
<tr><td> Password:<font color='#ff0000'></font></td>
<td>
<input type=password name='text_password'></td></tr>
<tr><td> E-Mail:<font color='#ff0000'></font></td>
<td>
<input type=email name='text_email'></td></tr>
<tr><td> Homepage:</td>
<td>
<input type=text name='text_homepage'></td></tr>
</table>
<input type='submit' value='Submit Form'> <input type=reset value='Clear Form'></form>";
CloseTable();
}

I can't seem to get it to work.

thewalluk

I would suggest you have a login page & then an authentication page for the log in. I have read a book (PHP In Easy Steps by Mike McGrath) & it has a good section on creating a user log in script.

Create your basic log in page and have the form action point to a checker file (e.g. checkuser.php)

In your checker file put a basic check to see if the fields are empty & if they are go back to the log in page. If they are complete then have it connect and check the database using a similiar syntax (i apologise if its the wrong se of the word)

$sql=select * from yourtable where youruserfield=\"$user\" and password = password(\"$password\")";

Then have it count the number of users with that password and use something like this

if($num !=0){
$msg = "Welcome...."; else {
header (Location:$HTTP_REFERER"); exit();}

Then in the body

<?php echo($msg); ?>

I tried this and it worked ok I had to tweak a bit. I do not know a lot about sessions so i can not help with the log out bit. A good place to try is http://www.dmcinsights.com/phpadv it has lots of useful scripts including a community with a similiar thing to what you maybe looking for