<?php
session_set_cookie_params(5*10);
session_start();
?>
<html>
<head>
<title>Agenzia - Login</title>
<link href="agenzia.css" title="Agenzia" rel="stylesheet" type="text/css" />
<META NAME="author" CONTENT="Cavallin Luca">
<META NAME ="description" CONTENT="Pagina di accesso alla gestione dell'Agenzia.">
<META NAME ="copyright" CONTENT="Cavallin Luca">
<META NAME ="generator" CONTENT="Gedit">
<META NAME ="DC language" CONTENT="ita" SCHEME="RFC1766">
<META NAME="robots" CONTENT="index,nofollow">
<META NAME="viewport" CONTENT="user-scalable=no, width=device-width"/>
</head>
<body>
<div id="title">
Agenzia
</div>
<?php
$link = mysql_connect('localhost', 'lucagenzia', '');
if(!$link) {
die("<br><br>".mysql_error());
}
$db_selected = mysql_select_db('my_lucagenzia', $link);
if(!$db_selected) {
die('Impossibile usare il database! '.mysql_error());
}
if($_POST["username"]=="") {
print "<div id=\"login\">";
print "<b><center>Login</center></b><br>";
print "<form action=\"index.php\" method=\"post\">";
print "<table>";
print "<tr><td>Username:</td></tr>";
print "<tr><td><input type=\"text\" name=\"username\"/></td></tr>";
print "<tr><td>Password:</td></tr>";
print "<tr><td><input type=\"password\" name=\"password\"/></td></tr>";
print "<tr><td><input type=\"submit\" value=\"Login\"/></td></tr>";
print "</table>";
print "</form>";
print "</div>";
} else {
$username = $_POST["username"];
$password = $_POST["password"];
$password = md5($password);
$query = "SELECT * FROM admin WHERE username='$username' AND password='$password'";
$result = mysql_query($query);
if(mysql_num_rows($result)!=1){
print "<div id=\"login\">";
print "<b><center>Login</center></b><br>";
print "<form action=\"index.php\" method=\"post\">";
print "<table>";
print "<tr><td>Username:</td><td><input type=\"text\" name=\"username\"/></td></tr>";
print "<tr><td>Password:</td><td><input type=\"password\" name=\"password\"/></td>"; print "<td><input type=\"submit\" value=\"Login\"/></td></tr>";
print "</table></div>";
print "<br><span id=\"logerr\"><center><b>Nome utente o password errati!</b></center></span>";
print "</form>";
print "</div>";
}
else{
$_SESSION["username"]=$username;
header("Refresh:0; panel.php");
}
}
mysql_close($link);
?>
</body>
</html>