1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32
|
<?php
session_start();
$validation=0;
if(isset($_POST['email']) && isset($_POST['motdepasse'])){
$_SESSION['email'] = $_POST['email'];
$_SESSION['motdepasse'] = $_POST['motdepasse'];
$sql="select USER_ID,EMAIL,MOTDEPASSE from S_USER where EMAIL='".$_SESSION['email']."' and MOTDEPASSE='".AddSlashes($_SESSION['motdepasse'])."' and ACTIF=1";
$result = mysql_query($sql,$db);
if ($myrow = mysql_fetch_array($result))
{
$validation=1;
$user_id=$myrow['USER_ID'];
$_SESSION['user_id']=$myrow['USER_ID'];
}
} else {
if(isset($_SESSION['email']) && isset($_SESSION['motdepasse']) && isset($_SESSION['user_id'])){
$sql="select USER_ID,EMAIL,MOTDEPASSE from S_USER where EMAIL='".$_SESSION['email']."' and MOTDEPASSE='".AddSlashes($_SESSION['motdepasse'])."' and ACTIF=1";
$result = mysql_query($sql,$db);
if ($myrow = mysql_fetch_array($result))
{
$validation=1;
$user_id=$myrow['USER_ID'];
}
}
}
if ($validation==0){
echo "Message d'erreur";
exit;
}
?> |
Partager