Citation :
<title>Titre</title><?php
include('config.php');
if($username=='' || $password=='')
{
viewheader();
echo"<h3>$champsrequis</h3>";
view_login_form();
viewfooter();
exit;
}
db_connect();
$sql = "select password from $dbtable where username='$username'";
$req = mysql_query($sql) or die('Erreur SQL');
$rez = mysql_fetch_array($req);
if($rez['password'] != $password)
{
viewheader();
echo"<h3>$wrongident</h3>";
view_login_form();
viewfooter();
exit;
}
else
{
$ip = $REMOTE_ADDR;
$time = time();
$sql = "select * from $dbtable where username='$username'";
$req = mysql_query($sql) or die('Erreur SQL !<br>'.$sql.'<br>'.mysql_error());
$data = mysql_fetch_array($req);
$smartid = $data['id'];
mysql_query("UPDATE membres SET ip='$ip' WHERE username='$username'" );
//mysql_query("UPDATE membres SET ip='$ip', lastdate='$time' WHERE username='$username'" );
$expire = 365*24*3600; setcookie("username","$username",time()+$expire,"/","" );
setcookie("smartid","$smartid",time()+$expire,"/","" ); /*
session_start();
session_register('username');
session_register('smartid');
*/
$_SESSION['username'] = $username;
$_SESSION['smartid'] = $smartid;
header("Location: membres.php" );
}
?>
|