Ik heb in mijn login script een header location staan, maar als je inlogt gaat hij niet daar heen..
Hij werkt anders wel met een meta refresh redirect script..
PHP CODE:
PHP
<?php /* ------------------------- */
include("_include-config.php");
if(isset($_POST['login'],$_POST['pass'])) {
$login = mysql_real_escape_string($_POST['login']);
$pass = mysql_real_escape_string($_POST['pass']);
$dbres = mysql_query("SELECT `login`,`activated` FROM `[users]` WHERE `login`='{$_POST['login']}' AND `pass`=('{$_POST['pass']}')");
if(($data = mysql_fetch_object($dbres)) && $data->activated == 1) {
$validate = (rand(0,1000));
setcookie("login",$data->login,time()+60*60*24,"/",".crime-killer.nl/");
setcookie("validate",$validate,time()+60*60*24,"/",".crime-killer.nl/");
mysql_query("REPLACE INTO `[online]`(`time`,`login`,`IP`,`validate`) values(NOW(),'{$_SERVER['REMOTE_ADDR']}','{$data->login}','$validate')");
$_SESSION['login'] = $data->login;
$_SESSION['IP'] = $_SERVER['REMOTE_ADDR'];
$dbres = mysql_query("SELECT *,UNIX_TIMESTAMP(`signup`) AS `signup` FROM `[users]` WHERE `login`='{$_SESSION['login']}'");
$_SESSION['data'] = mysql_fetch_object($dbres);
}
}
if($_GET['x'] == "logout") {
mysql_query("DELETE FROM `[online]` WHERE `login`='{$_COOKIE['login']}' AND `validate`='{$_COOKIE['validate']}' AND `IP`='{$_SERVER['REMOTE_ADDR']}'");
setcookie("login",'',time()-24*60*60,"/",".crime-killer.nl/");
setcookie("validate",'',time()-24*60*60,"/",".crime-killer.nl/");
unset($_SESSION['login']);
unset($_SESSION['IP']);
unset($_SESSION['data']);
}
if(isset($_COOKIE['login'],$_COOKIE['validate'])) {
setcookie("login",$_COOKIE['login'],time()+24*60*60,"/","");
setcookie("validate",$_COOKIE['validate'],time()+24*60*60,"/","");
}
/* ------------------------- */ ?>
<?php /* ------------------------- */
if($_GET['x'] == "logout")
print "<td width=200>Je bent nu uitgelogd!</td><meta http-equiv=Refresh content=2;url=index.php>
<meta http-equiv=Refresh content=2;url=index.php> </tr></td> \n";
else if($_GET['x'] == "lostpass") {
print " \n";
if(isset($_GET['id'],$_GET['code'])) {
$dbres = mysql_query("SELECT `login` FROM `[temp]` WHERE `id`='{$_GET['id']}' AND `code`='{$_GET['code']}' AND `area`='lostpass'");
if($data = mysql_fetch_object($dbres)) {
$dbres = mysql_query("SELECT `login`,`email` FROM `[users]` WHERE `login`='{$data->login}'");
$data = mysql_fetch_object($dbres);
$newpass = rand(100000,999999);
mysql_query("UPDATE `[users]` SET `pass`=('$newpass') WHERE `login`='{$data->login}'");
mysql_query("DELETE FROM `[temp]` WHERE `id`='{$_GET['id']}'");
mail($data->email,"Ghettostreetz.nl password","Je wachtwoord is gereset, je kan nu inloggen met: $newpass","From: Ghettostreetz.nl <[email protected]>\n");
print "Je nieuwe wachtwoord is ge-emailed naar {$data->email} als je hem niet in je normale postvak ontvangt kijk dan even in je ongewenste e-mail map dan staat hij daar.\n";
}
}
else if(isset($_POST['email'],$_POST['login'])) {
$dbres = mysql_query("SELECT `login`,`email` FROM `[users]` WHERE `login`='{$_POST['login']}' AND `email`='{$_POST['email']}'AND `activated`=1");
if($data = mysql_fetch_object($dbres)) {
$code = rand(100000,999999);
mysql_query("INSERT INTO `[temp]`(`login`,`code`,`area`,`time`) values('{$data->login}',$code,'lostpass',NOW())");
$id = mysql_insert_id();
mail($data->email,"Ghettostreetz.nl password","Er is een aanvraag binnengekomen om je wachtwoord te resetten. Als jij dit niet hebt aangevraagd, negeer deze email dan. Heb jij dit wel gedaan, klik dan op deze link: http://www.ghettostreetz.nl/login.php?x=lostpass&id=$id&code=$code","From: Ghettostreetz.nl <[email protected]>");
print " Je nieuwe wachtwoord is ge-emailed naar {$data->email} als je hem niet in je normale postvak ontvangt kijk dan even in je ongewenste e-mail map dan staat hij daar.\n";
}
else
print "<br> Er is geen combinatie gevonden van de <br>gebruikersnaam en het e-mailadres!\n";
}
print <<<ENDHTML
<br><br><tr>
<td>
<form method="post">
<table align=center>
<tr><td>Login:</td> <td><input type="text" name="login"></td></tr>
<tr><td>E-Mail:</td> <td><input type="text" name="email"></td></tr>
<tr><td></td><td align="right"><input type="submit" value="Ok" style="width: 100"></td></tr>
</table>
</form>
</td>
</tr>
ENDHTML;
}
else if($data) {
if($data->activated == 0)
print " <tr><td class=\"mainTxt\">Je account is nog niet geactiveerd!</td></tr>\n";
if($data->level == 1337)
print "Jij kan niet inloggen omdat je <b>verbannen</b> bent!<BR>Reden: {$data->redenban}\n";
else
mysql_query("INSERT INTO `[zendlogs2]`(`time`,`van`,`naar`,`cdonatie`,`login`,`ip`) values(NOW(),'Geen','Geen','Geen','{$data->login}','{$_SERVER['REMOTE_ADDR']}')");
mysql_query("UPDATE `[users]` SET `logincheck`=`logincheck`+1 WHERE `login`='{$data->login}'");
header("location: nav.php");
}
else {
print " \n";
if(isset($_POST['login'],$_POST['pass']))
print " Verkeerde login of wachtwoord\n";
print <<<ENDHTML
</table>
<form method="post">
<table width="75%" align="center">
<tr><td width=100>Gebruikersnaam:</td> <td><input type="text" name="login" maxlength=16 style="width: 150;"></td></tr>
<tr><td width=100>Wachtwoord:</td> <td><input type="password" name="pass" maxlength=16 style="width: 150;"></td></tr>
<tr><td colspan="2"><a href="publiccomp.php">Openbare computer:</a> <input name="open" type="checkbox"></td></tr>
<tr><td></td><td align="left"><input type="submit" name="submit" style="width: 100;" value="Login"></td></tr>
</table>
</form>
<table width="75%" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td colspan='2' style='text-align: center; padding-top: 25px;'>
<a href='login.php?x=lostpass'>Wachtwoord vergeten?</a>
</td>
ENDHTML;
}
/* ------------------------- */ ?>
ENDHTML;
?>
</div>
</body>
</html>