49 lines
1.1 KiB
PHP
49 lines
1.1 KiB
PHP
<?php
|
|
session_start();
|
|
$loginOK = false;
|
|
|
|
mysql_connect("localhost", "root", "");
|
|
mysql_select_db("wars");
|
|
|
|
if ( isset($_POST) && (!empty($_POST['login'])) && (!empty($_POST['password'])) ) {
|
|
|
|
extract($_POST);
|
|
|
|
$login = addslashes($_POST['login']);
|
|
$sql = "SELECT * FROM user WHERE pseudo = '".$login."'";
|
|
$req = mysql_query($sql) or die('Erreur SQL : <br />'.$sql);
|
|
|
|
if (mysql_num_rows($req) > 0) {
|
|
$data = mysql_fetch_assoc($req);
|
|
|
|
$password = $_POST['password'];
|
|
if ($password == $data['mdp']) {
|
|
$loginOK = true;
|
|
}
|
|
}
|
|
}
|
|
|
|
if ($loginOK) {
|
|
|
|
$_SESSION['id'] = $data['id'];
|
|
|
|
$z = mysql_query("SELECT galaxy, ss, pos FROM planete WHERE id='".$data['id']."' AND nb=1");
|
|
$donnees = mysql_fetch_array($z);
|
|
|
|
$_SESSION['galaxy'] = $donnees['galaxy'];
|
|
$_SESSION['ss'] = $donnees['ss'];
|
|
$_SESSION['pos'] = $donnees['pos'];
|
|
|
|
$w = mysql_query("SELECT race FROM user WHERE id='".$data['id']."' AND pseudo = '".$login."'");
|
|
$donnees = mysql_fetch_array($w);
|
|
|
|
$_SESSION['race'] = $donnees['race'];
|
|
|
|
|
|
@header("Location: b_index.php");
|
|
}
|
|
|
|
else {
|
|
echo 'Mauvais pseudo ou mot de passe, veuillez réessayer !<br><br><a href=index.html>Login</a>';
|
|
}
|
|
?>
|