#!/usr/bin/perl
use CGI::Carp qw(fatalsToBrowser);
use CGI qw(:all);
use CGI::Cookie;
use DBI;
use Digest::MD5 qw(md5_hex);
require("../funcs.cgi");
require("../con.cgi");
%cookies = fetch CGI::Cookie;
##################
# THEY ARE ALREADY LOGGED IN
# SKIP THIS PAGE
###################
if (defined($cookies{'user_id'}))
{
print "Content-type: text/html\n\n";
print "You are already logged in.";
print "\n";
exit;
}
##################
# THE FORM HAS BEEN SUBMITTED
#
###################
if (param())
{
print "Content-type: text/html\n\n";
use CGI::Carp qw(fatalsToBrowser);
$username = (param('form_user'));
$userpass = (param('form_pass'));
$userpass = md5_hex($userpass);
#check the database
print "test
";
my $dbh = DBI->connect("DBI:mysql:$edt_dbase", $mysql_user, $mysql_pass) or print DBI->errstr;
my $sth = $dbh->prepare("SELECT * FROM $users_table WHERE username = '$username' AND user_password = '$userpass'");
$sth->execute;
print "test2
";
if ($sth->rows < 1)
{
print "Content-type: text/html\n\n";
print "Login information incorrect.";
$dbh->disconnect;
print "\n";
exit;
}
else
{
print "test3
";
while ($data = $sth->fetchrow_hashref or die $sth->errstr)
{
print "test4
";
$u_id = $$data{"user_id"};
my $auth_user = new CGI::Cookie(-name => 'user_id',
-value => $u_id);
my $auth_pass = new CGI::Cookie(-name => 'user_pass',
-value => $userpass);
#$cookieset = $auth_user . ";" . $auth_pass;
print "Set-Cookie: $auth_user\n";
print "Set-Cookie: $auth_pass\n";
print "Content-type: text/html\n\n";
print "Welcome " . $username . ", you have successfully logged in.\n";
print "$u_id = UID";
print "\n";
}
}
$dbh->disconnect;
exit;
}
else
{
##################
# NOTHING IS HAPPENING SO LET'S
# PRINT THE FORM
###################
{
print "Content-type: text/html\n\n";
print qq~
~;
}
}
#print "(..)";