Pozz svima ja sam novi na forumu i poceo sam uciti php prije tjedan dana i dosao sam do jednog dijela koji mi nije jasan. Ovako imam u root folderu index.php i mapu inc/css. U inc mapi mi je connect.php za spajanje na bazu i to radi odlicno, medjutim index.php izgleda ovako
<?php
include ("inc/connect.php");
include ("inc/settings.php");
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<meta name="description" content="" />
<meta name="author" content="" />
<meta name="keywords" content="" />
<meta name="copyright" content="" />
<meta name="generator" content="" />
<title>Testing PHP</title>
<link href="css/style.css" rel="stylesheet" type="text/css" />
</head>
<body>
<div id="container">
<div id="header"><h1>PHP dinamic pages</h1></div>
<div id="nav">Navigation</div>
<div id="main">
<div id="sidebar"><?php include ("inc/login.php"); ?></div>
<div id="content"><?php include ("inc/news.php"); ?></div>
</div>
<div id="footer">
<p>Copyright © 2013 by PHP dinamic pages</p>
</div>
</div>
</body>
</html>
a u inc folderu se nalazi connect, login, setting, news. Problem se javlja sa loginom, prvo kada se logiram i sesija zapocne kada upisem u link localhost/cms/inc/login.php izbaci mi formu iako sam logiran. A i ovaj kod login.php mi isto javlja seljedece greske kada ne upisem nista i kliknem na submit buton radi ono sto sam htjeo trazi da se oba polja popune, ako upisem samo password trazi da se oba polja popune, a kad upisem samo username pise da korisniko ime ne postoji u bazi iako nisam upisao lozinku i ako upisem tocno lozinku i korisnicko ime pise mi invalid username password combination. U bazu podataka sam dodao manual korisniko ime i lozinku sha1 evo code pa pls recite sta nevalja
<?php
include ("connect.php");
// check if user is logged
if (isset($_SESSION['logged'])) {
echo "Welcome <b>" . " " . $us;
} else {
// if is pressed submit button
if (isset($_POST['submit'])) {
if (isset($_POST['username']) && isset($_POST['password'])) {
$user = htmlentities($_POST['username']);
$pass = sha1($_POST['password']);
// check if both fields are filled
if (empty($user) || empty($pass)) {
echo "Both fields are required!";
} else {
// check if username exist in database
$checkuser = mysql_query("SELECT `username` FROM `users` WHERE `username` = '".mysql_real_escape_string($user)."'") or die (mysql_error());
if (mysql_fetch_array($checkuser)) {
// check if username and password is match
$checkuserpass = mysql_query("SELECT * FROM `users` WHERE `username` = '".mysql_real_escape_string($user)."' AND `password` = '".mysql_real_escape_string($pass)."'") or die (mysql_error());
$r = mysql_fetch_array($checkuserpass);
if ($r == 1) {
// if all ok log user and start session
$_SESSION['logged'] = 1;
$us = $r['username'];
} else {
echo "Invalid username, password combination!
Please try again.";
}
} else {
echo "That username don't exist in database!
Please register.";
}
}
}
}
?>
<!-- is user not logged show login form -->
<form action="" method="POST">
<input type="text" name="username" placeholder="Username">
<input type="password" name="password" placeholder="Password">
<input type="submit" name="submit" value="Login">
</form>
<?php
}
?>