$linkID = mysql_connect("localhost","walkingstore","ktm250") or die("No connection");
mysql_select_db("walkingstore") or die("No connection");
session_start(); // starting session
// session variables must be global
global $userid, $md5_passwd, $sess;
// registering session variables
session_register("userid");
session_register("md5_passwd");
session_register("sess");
//User table used to store valid username, and password
$query = "SELECT * FROM users WHERE username='$userid'";
$result = mysql_query($query);
$num_rows = mysql_numrows($result);
if($num_rows > 0)
{
$user = mysql_result($result, 0, "username");
$clear_pass = mysql_result($result, 0, "clear_password");
$md5_pass = mysql_result($result, 0, "md5_password");
}
// checking if user is not authenticated
if (!isset($userid) || $num_rows = 0 || $md5_pass != $md5_passwd)
{
// redirecting user to the login page
header("Location: http://www.teknistar.com/login.php");
exit;
}
else
{
// this way we store the time when user authorized in $sess["time"]
if (!isset($sess["time"]))
$sess["time"] = time();
echo "
User '$userid' authorized at ".date("D M j G:i:s T Y", $sess["time"])."
";
}
?>