ok, seguendo quello che hai scritto sono arrivato a questo
giusto?Codice PHP:<?php
function controlloDB($usr, $pass){
$trovato=false;
$conn_string = "host=localhost port=5432 dbname=x user=y password=z";
$dbconn = pg_connect($conn_string) or die ("Impossibile connettersi al database PostGres --> " . pg_last_error($conn));
$result2 = pg_query($dbconn,'SET CHARACTER SET utf8');
$sql = "SELECT count(*),nickname FROM utenti where nick_norm='".$usr."' AND password='".$pass."' GROUP BY id_utente";
$result = pg_query($dbconn,$sql);
while ($row = pg_fetch_row($result)) {
if ($row[0]>0){
$trovato=true;
$_SESSION['user']=$row[1];
}
}
pg_close($dbconn);
return $trovato;
}
session_start(); //si inizia o continua la sessione
//controllo user e passwd da login
if(IsSet($_POST['user']) && IsSet($_POST['psw']))
{
$pass= md5($_POST['psw']);
$usr= $_POST['user'];
$usr= strtolower($usr);
$login_user= controlloDB($usr,$pass);
if ($login_user)
header('location: /index.php');
else
echo "username o password sbagliata";
}
//logout
if($_GET['logout']==1)
{
$_SESSION=array();
session_destroy();
header('Location: /index.php');
}
?>
<FORM METHOD=POST ACTION="">
username:
<INPUT TYPE=TEXT NAME=user>
password:
<INPUT TYPE=PASSWORD NAME=psw>
<INPUT TYPE=SUBMIT NAME=SUBMIT VALUE="Login">
Rispondi quotando