heres my coding for it.
<?php
$username = $_POST['username'];
$password = $_POST['password'];
if ($username&&$password)
{
//opens connection to mysql server
$connect = mysql_connect('localhost','root','password') or die ('Couldnt Connect to MySQL Server');
mysql_select_db('users') or die ('Couldnt find DB');
//query
$query = mysql_query("SELECT * FROM users WHERE username='$username' AND password='$password'");
$numrows = mysql_num_rows($query);
echo $numrows;
}
else
die('Please enter a username or password');if ($_POST['loginbtn']){
$username = strip_tags($_POST['username']);
$password = strip_tags($_POST['password']);
if ($username && $password){
require("scripts/connect.php");
$pass = md5(md5($password));
$query = mysql_query("SELECT * FROM users WHERE username='$username' AND password='$pass'");
$numrows = mysql_num_rows($query);
if ($numrows == 1){
$row = mysql_fetch_assoc($query);
$dbid = $row['id'];
$dbuser = $row['username'];
$active = $row['active'];
if ($active == 1){
$date = date("F d, Y");
mysql_query("UPDATE users SET last_login='$date' WHERE id='$dbid'");
$_SESSION['username'] = $dbuser;
$_SESSION['userid'] = $dbid;
}
else
echo "you must activate your account to login.";
}
else
echo "You login information was incorrect. $form";
}
else
echo "You did not fill in the entire form. $form";
}
else
echo "$form";
}
?>
<?php
$username = $_POST['username'];
$password = $_POST['password'];
if ($username&&$password)
{
//opens connection to mysql server
$connect = mysql_connect('localhost','root','password') or die ('Couldnt Connect to MySQL Server');
mysql_select_db('users') or die ('Couldnt find DB');
//query
$query = mysql_query("SELECT * FROM users WHERE username='$username' AND password='$password'");
$numrows = mysql_num_rows($query);
echo $numrows;
}
else
die('Please enter a username or password');if ($_POST['loginbtn']){
$username = strip_tags($_POST['username']);
$password = strip_tags($_POST['password']);
if ($username && $password){
require("scripts/connect.php");
$pass = md5(md5($password));
$query = mysql_query("SELECT * FROM users WHERE username='$username' AND password='$pass'");
$numrows = mysql_num_rows($query);
if ($numrows == 1){
$row = mysql_fetch_assoc($query);
$dbid = $row['id'];
$dbuser = $row['username'];
$active = $row['active'];
if ($active == 1){
$date = date("F d, Y");
mysql_query("UPDATE users SET last_login='$date' WHERE id='$dbid'");
$_SESSION['username'] = $dbuser;
$_SESSION['userid'] = $dbid;
}
else
echo "you must activate your account to login.";
}
else
echo "You login information was incorrect. $form";
}
else
echo "You did not fill in the entire form. $form";
}
else
echo "$form";
}
?>