PHP4中session登录页面的应用
程序员文章站
2022-04-11 18:52:47
<?php
//这个脚本是用来给用户输入口令,并判断口令是否正确的。
//如果正确则转到欢迎页面。
if ($login){
include("../include/config.inc.php3");
session_start();
$right_enter='0';
$query="select * from user_define where user_login='$user_login' and user_pass=password('$user_pass')";
$result=@mysql_query($query,$dbconnect);
if ($user_array=@mysql_fetch_array($result)){
$user_id=$user_array[user_id];
$user_name=$user_array[user_info];
session_register("user_id");
session_register("user_name");
session_register("user_array");
if(($user_array[ticket_day]) and ($user_array[ticket_num])){
$right_enter='1';
}
else{
$error_message="对不起,您没有订票的权限!";
}
}
else{
$error_message="错误!用户名错,或口令错。请重新输入。";
}
$log_time=date("y-m-d h:i:s");
$query="insert into log_record (log_time,user_login,remote_addr,right_enter,enter_function) values ('$log_time','$user_login','$remote_addr','$right_enter','1')";
@mysql_query($query,$dbconnect);
if($right_enter){
header("location: welcome_reserve.php3");
exit;
}
}
if($logout){
session_start();
session_unregister("user_id");
session_unregister("user_name");
session_unregister("user_array");
}
?>
<!doctype html public "-//w3c//dtd html 4.0 transitional//en">
<html>
<head>
<title>用户登录</title>
<meta http-equiv="content-type" content="text/html; charset=gb2312">
<link rel="stylesheet" type="text/css" href="../include/njz_common.css">
</head><body>
<p> </p>
<form name="form1" method="post" action="<?php echo $php_self; ?>" >
<table width="289" border="1" cellspacing="0" cellpadding="1" bordercolor="#999999" align="center">
<tr bgcolor="#999999">
<td>
<div align="center"><font color="#ffffff" size="4">用户登录</font></div>
</td>
</tr>
<tr>
<td>
<table width="267" border="0" cellspacing="0" cellpadding="5" align="center">
<tr>
<td width="94">
<div align="right">用户:</div>
</td>
<td width="169">
<input type="text" name="user_login" size="16" maxlength="16" value="<?php echo $user_login; ?>">
</td>
</tr>
<tr>
<td width="94">
<div align="right">口令:</div>
</td>
<td width="169">
<input type="password" name="user_pass" size="16" maxlength="16">
</td>
</tr>
<tr>
<td colspan="2">
<div align="center">
<input type="submit" name="login" value=" 登 录 ">
<input type="button" name="return_index" value="返回首页" onclick="form1.action='../include/goto_page.php3?dist_page=../main.php3';form1.submit();return;">
</div>
</td>
</tr>
</table>
</td>
</tr>
</table>
</form>
<?php
if($error_message) echo "<center><font color='#ff0000'>$error_message</font></center>";
?>
<script language="javascript">document.form1.user_login.focus();
</script>
<p> </p>
<?php include("../footer.php3"); ?>
</body>
</html>
//这个脚本是用来给用户输入口令,并判断口令是否正确的。
//如果正确则转到欢迎页面。
if ($login){
include("../include/config.inc.php3");
session_start();
$right_enter='0';
$query="select * from user_define where user_login='$user_login' and user_pass=password('$user_pass')";
$result=@mysql_query($query,$dbconnect);
if ($user_array=@mysql_fetch_array($result)){
$user_id=$user_array[user_id];
$user_name=$user_array[user_info];
session_register("user_id");
session_register("user_name");
session_register("user_array");
if(($user_array[ticket_day]) and ($user_array[ticket_num])){
$right_enter='1';
}
else{
$error_message="对不起,您没有订票的权限!";
}
}
else{
$error_message="错误!用户名错,或口令错。请重新输入。";
}
$log_time=date("y-m-d h:i:s");
$query="insert into log_record (log_time,user_login,remote_addr,right_enter,enter_function) values ('$log_time','$user_login','$remote_addr','$right_enter','1')";
@mysql_query($query,$dbconnect);
if($right_enter){
header("location: welcome_reserve.php3");
exit;
}
}
if($logout){
session_start();
session_unregister("user_id");
session_unregister("user_name");
session_unregister("user_array");
}
?>
<!doctype html public "-//w3c//dtd html 4.0 transitional//en">
<html>
<head>
<title>用户登录</title>
<meta http-equiv="content-type" content="text/html; charset=gb2312">
<link rel="stylesheet" type="text/css" href="../include/njz_common.css">
</head><body>
<p> </p>
<form name="form1" method="post" action="<?php echo $php_self; ?>" >
<table width="289" border="1" cellspacing="0" cellpadding="1" bordercolor="#999999" align="center">
<tr bgcolor="#999999">
<td>
<div align="center"><font color="#ffffff" size="4">用户登录</font></div>
</td>
</tr>
<tr>
<td>
<table width="267" border="0" cellspacing="0" cellpadding="5" align="center">
<tr>
<td width="94">
<div align="right">用户:</div>
</td>
<td width="169">
<input type="text" name="user_login" size="16" maxlength="16" value="<?php echo $user_login; ?>">
</td>
</tr>
<tr>
<td width="94">
<div align="right">口令:</div>
</td>
<td width="169">
<input type="password" name="user_pass" size="16" maxlength="16">
</td>
</tr>
<tr>
<td colspan="2">
<div align="center">
<input type="submit" name="login" value=" 登 录 ">
<input type="button" name="return_index" value="返回首页" onclick="form1.action='../include/goto_page.php3?dist_page=../main.php3';form1.submit();return;">
</div>
</td>
</tr>
</table>
</td>
</tr>
</table>
</form>
<?php
if($error_message) echo "<center><font color='#ff0000'>$error_message</font></center>";
?>
<script language="javascript">document.form1.user_login.focus();
</script>
<p> </p>
<?php include("../footer.php3"); ?>
</body>
</html>