if (param())
{
print "Content-type: text/html\n\n";
use CGI::Carp qw(fatalsToBrowser);
$username = (param('form_user'));
$userpass = (param('form_pass'));
$userpass = md5_hex($userpass);
#check the database
print "test
";
my $dbh = DBI->connect("DBI:mysql:$edt_dbase", $mysql_user, $mysql_pass) or print DBI->errstr;
my $sth = $dbh->prepare("SELECT * FROM $users_table WHERE username = '$username' AND user_password = '$userpass'");
$sth->execute;
print "test2
";
if ($sth->rows < 1)
{
print "Content-type: text/html\n\n";
print "Login information incorrect.";
$dbh->disconnect;
print "\n";
exit;
}
else
{
print "test3
";
while ($data = $sth->fetchrow_hashref)
{
print "test4
";
$u_id = $$data{"user_id"};
my $auth_user = new CGI::Cookie(-name => 'user_id',
-value => $u_id);
my $auth_pass = new CGI::Cookie(-name => 'user_pass',
-value => $userpass);
#$cookieset = $auth_user . ";" . $auth_pass;
print "Set-Cookie: $auth_user\n";
print "Set-Cookie: $auth_pass\n";
print "Content-type: text/html\n\n";
print "Welcome " . $username . ", you have successfully logged in.\n";
print "$u_id = UID";
print "\n";
}
}
$dbh->disconnect;
}