MyBB Community Forums

Quote:<?php

session_start();

require_once 'db.php';

$page_mode = isset($_POST['page_mode']) ? $_POST['page_mode'] : '';

$error_string = '';

if ($page_mode == 'login')
{
$username = $_POST['username'];
$password = $_POST['password'];
$salt = $_POST['salt'];

if (trim($username) == '' || trim($password) == '')
$error_string .= 'Please enter your username and password.<br>';
else
{
$result = db_query("SELECT username,password,salt FROM mybb_users WHERE username='" . mysql_real_escape_string($username) . "'");
if (!($row = mysql_fetch_assoc($result)))
$error_string .= 'The username was not found.<br>';
elseif ($row['password'] != md5(md5($row['salt']).$password))

$error_string .= 'The password did not match.<br>';
else
{
$_SESSION['user_id'] = $row['id'];
$_SESSION['username'] = $row['username'];
$_SESSION['password'] = $row['password'];
$_SESSION['salt'] = $row['salt'];
header('Location: index.php');
exit();
}
}
}

?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
<title>Register</title>
<style type="text/css">
.error_text {
color: #FF0000;
width: 400px;
text-align: center;
}
.left_box {
float: left;
width: 150px;
text-align: right;
padding-right: 5px;
}
.right_box {
clear: right;
}
</style>
</head>
<body>
<div class="error_text"><?php echo $error_string; ?></div>

<form action="login.php" method="post">
<input type="hidden" name="page_mode" value="login">

<div class="left_box">Username</div>
<div class="right_box"><input type="text" name="username" size="30" maxlength="255" value="<?php if (isset($username)) echo $username; ?>"></div>

<div class="left_box">Password</div>
<div class="right_box"><input type="password" name="password" size="30"></div>

<div class="left_box">&nbsp;</div>
<div class="right_box"><input type="submit" value="Log In" size="30"></div>

</form>
<?php
echo "From database: " . $row['password'] . "<br />";
echo "From database-salt: " . $row['salt'] . "<br />";
echo "Input: " . md5($password);?>
</body>
</html>

ksclans Wrote:somewhere is....where ??

<?php
require './global.php'; // assuming your file is in the same directory as the forum

//... the rest of your code...

<?php
chdir('forum/'); // the path to your forum directory.
require './global.php'; // doesn't change

//... the rest of your code...

define("IN_MYBB", 1);

// Check to see if a user is logged in
if($mybb->user['username'] == "")
{
	echo('Welcome Guest.<br /><br />');
			
	// Show log in form.
	echo('<div class="subheading">Login</div>');
	echo("<div class=\"general\">
	<form action=\"{$conf_forumurl}/member.php\" method=\"post\">
	Username:<br /><input type=\"text\" name=\"username\" size=\"15\" maxlength=\"30\" /><br />
	Password:<br /><input type=\"password\" name=\"password\" size=\"15\" />
	<input type=\"hidden\" name=\"action\" value=\"do_login\" />
	<input type=\"hidden\" name=\"url\" value=\"YOUR_RETURN_URL\" />
	<br /><input type=\"submit\" class=\"submit\" name=\"submit\" value=\"Login\" /></form></div><br />");
			
	echo("<div class=\"subheading\">Actions</div>
	<ul>
	<li><a href=\"{$conf_forumurl}/member.php?action=register\">Register</a></li>
	</ul>");
}
else
{
	echo("Welcome {$mybb->user['username']}<br /><br />");
}