1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90
| <?php
define('email','hhdfsd@yahoo.fr');
define('pasword','*');
session_start();
// Display HTTP Authentication Challenge
//$_SESSION['email'] = "email";
//$_SESSION['password'] = "password";
// Function to authenticate
function authenticated($email, $password) {
// Connect to Database Server
$link=mysql_connect ("*", "*", "*");
// Choose database
mysql_select_db("anoumane", $link);
// Build SQL query to:
// find row in database with
// matching $username and $password
$query = "SELECT email, password FROM blog_user where email='".$email."' and password='".$password."'";
$result = mysql_query($query, $link);
//$row = mysql_num_rows($result);
// IF number of rows is equal to one
// return true
if (mysql_num_rows($result) > 0)
{
//echo "AAAAAA";
//session_start();
$_SESSION['email'] = $email;
return true;
}
// ELSE
// return false
else return false;
}
// Assign username and password from $_SERVER global array
$email = $_SERVER["PHP_AUTH_USER"];
$password = $_SERVER["PHP_AUTH_PW"];
// Start, or find an existing session
// Check if there is an email value set in the $_SESSION variables
if (isset($_SESSION['email'])) {
// if a previous session exists
//session_start();
echo "Welcome back, " . $_SESSION['email'] .
". This session was activated ";
echo '<a href="index.php">index.php <br/></a>';
}
// Decide whether to show blog entry form, or deny access
elseif(empty($_SESSION['email'])) {
//session_start();
if (!authenticated($email, $password)) {
// Credentials either:
// not sent (1st time script is called)
// credentials do not match database
// Display HTTP Authentication Challenge
header("WWW-Authenticate: Basic Realm=\"<name>'s Blog Entry Form\"");
header("HTTP/1.1 401 Unauthorised");
// Print a message about incorrect credentials
echo "incoorrect credentials";
exit;
}
else {
// Correct credentials provided, print the blog entry form
// header( "Location: index.php" ) ;
echo '<a href="index.php">index.php <br/></a>';
}
}
echo '<a href="logout.php">logout!</a>';
?> |
Partager