1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77
|
<?php
session_start();
?>
//Récupération des deux variables renvoyées par le formulaire de la page de l identification
$login = $_POST['login'];
$password = $_POST['password'];
$loginOK = false;
//ouverture de la connexion
include ("connexion.php");
?>
<?php
// on sélectionne la base
mysql_select_db('mabasededonnés',$db);
$sql = "SELECT ID_PERSONNES, nom, prenom, tel, NICKNAME, email, photo, id_type_personne, pers_password FROM personnes WHERE NICKNAME = '".addslashes($login)."'
AND STATUS_PERSONNE = '1' ";
// on envoie la requête
$req = mysql_query($sql) or die('Erreur SQL !<br>'.$sql.'<br>'.mysql_error());
// On vérifie que l'utilisateur existe bien
if (mysql_num_rows($req) > 0) {
$data = mysql_fetch_assoc($req);
// On vérifie que son mot de passe est correct
if ($password == $data['pers_password'])
{
$loginOK = true;
//temp
$_SESSION['SESS_LOGINOK'] = $loginOK;
$_SESSION['SESS_NOM'] = $data['nom'];
$_SESSION['SESS_ID_PERSONNES'] = $data['ID_PERSONNES'];
$_SESSION['SESS_PRENOM'] = $data['prenom'];
$_SESSION['SESS_TYPE'] = $data['tel'];
$_SESSION['SESS_NICKNAME'] = $data['NICKNAME'];
$_SESSION['SESS_EMAIL'] = $data['email'];
$_SESSION['SESS_ID_TYPE_PERSONNE'] = $data['id_type_personne'];
$_SESSION['SESS_PERS_PASSWORD'] = $data['pers_password'];
$id_personnes = $data['ID_PERSONNES'];
}
}
if ( $loginOK==true )
{
$sql = "INSERT INTO interventions
(id_interventions, id_personnes, ip_intervention, page, action, nickname_personne)
VALUES('','$id_personnes','$ip_adresse','index','login','$login ')" ;
$req = mysql_query($sql) or die('Erreur SQL !<br>'.$sql.'<br>'.mysql_error());
?>
<script language="javascript" type="text/javascript">
<!--
window.location.replace("Home_page2.php");
-->
</script>
<?php
}
else
{
?>
<script language="javascript" type="text/javascript">
<!--
window.location.replace("index_4_err_login.php");
-->
</script>
<?PHP
}
?>
<?
//close de la connexion
mysql_close();
?> |
Partager