by ggilir » 23. September 2012 13:59
<?php
require("plugin/core.php");
$hent = mysql_query("select * from users where username='$_POST[username]' and password='" . securePassword($_POST[password]) . "'");
$hent = mysql_fetch_array($hent);
if (strtolower($hent[username]) == strtolower($_POST[username])) {
$_SESSION[username] = $hent[username];
$_SESSION[lastmove] = 0;
$sid = substr(md5(session_id()), 0, 5);
mysql_query("update users set ip='$_SERVER[REMOTE_ADDR]' where username='$hent[username]'");
mysql_query("update users set sessionid='$sid' where username='$hent[username]'");
?><a onclick="newwindow=window.open('chatframe.php','chatten','height=620,width=920', 'resizable=no');">Åben chatten</a><?
} else {
echo "Næh";
}
?>