header('Location: ./'); } elseif (isset($_POST['wrap_login'])) { header('Location: ' . $_SERVER['HTTP_REFERER'] . ''); } } elseif (isset($row['User_Username']) && $row['User_Status'] == 0) { $err[] = 'User not confirmed email yet'; } elseif (!isset($row['User_Username'])) { $err[] = 'Wrong username and/or password!'; } } } if (!username_existed($_SESSION['username'])) { session_name('kms'); session_unset(); session_destroy(); } elseif (username_existed($_SESSION['username'])) { session_name('kms'); session_start(); } /* End Auth */ $p = isset($_GET['p']) ? rawurldecode($_GET['p']) : 'home'; $pid = get_pid_from_url($p); $uid = substr($p, 5); $username = get_username_from_url($p); $week = get_week_from_url($p); $course_week = get_course_week_from_url($p); $cid = isset($course_week) ? $course_week['cid'] : (isset($_POST['cid']) ? $_POST['cid'] : get_cid_from_url($p)); $cids = $_SESSION['rid'] == 1 ? cids_load_all() : user_cids_load_all($_SESSION['uid']); $pids = user_pids_load_all($_SESSION['uid']); $user = user_load($_SESSION['uid']); $post = post_load($pid);
</table> </form> <?php } else { ?> <?php $username = $_POST["username"]; $password = $_POST["password"]; $username = cleanup_text($username); $query = "select password in users where username = '******'"; if (check_password($link, $username, $password)) { $userid = get_userid($link, $username); $_SESSION[$session] = $userid; echo "Logged in successfully!<br>"; } else { if (username_existed($link, $username)) { die("Wrong password!"); } else { die("Username does not exist!"); } } ?> <?php } ?> <?php include_once 'foot.php';