if (strlen($username) < 4) { $message = "Username is required."; $validate = false; } else { if (strlen($_POST['token']) < 4) { $message = "Password is required."; $validate = false; } } // ** Check if user wants to change the password $newpassword = ""; if (isset($_POST['nPass1']) && isset($_POST['nPass2'])) { if ($_POST['nPass1'] == $_POST['nPass2']) { $newpassword = substr($_POST['nPass1'], 0, 12); } else { $user->login_matchFalse(); exit; //To ensure security } } // ** User LOGIN process if $validate is true if ($validate) { $loginAttempt = $user->login(substr($_POST['user'], 0, 30), substr($_POST['token'], 0, 12), $newpassword); if ($loginAttempt == 1) { $message = "Login Success."; header("Location: " . $forwardPage); exit; //To ensure security } else { if ($loginAttempt == 0) { $l = 1 + $user->loginAttempts - $user->fAtmp;