Postingan lainnya
Permasalah Login Admin
Permisi, saya mau bertanya jadi kodingan login admin saya meskipun input username doang tetep bisa masuk halaman admin , mohon solusi nya agan agan.
<?php
include "../appConfig/conn.php";
function antiinjection($data){
$filter_sql = mysql_real_escape_string(stripslashes(strip_tags(htmlspecialchars($data,ENT_QUOTES))));
return $filter_sql;
}
$username = antiinjection($_POST['txtUsername']);
$pass = antiinjection(md5($_POST['txtPassword']));
$email = antiinjection($_POST['txtUsername']);
$waktu = time()+25200;
$expired=60;
$query=mysql_query("SELECT * FROM tbl_admin WHERE username_admin='$username'
OR email_admin='$email' AND password_admin='$pass' AND aktif='Y'");
$in=mysql_num_rows($query);
$r=mysql_fetch_array($query);
if ($in > 0){
session_start();
$_SESSION['kode_admin'] = $r['kode_admin'];
$_SESSION['username'] = $r['username_admin'];
$_SESSION['password'] = $r['password_admin'];
$_SESSION['nama_admin'] = $r['nama_admin'];
$_SESSION['avatar'] = $r['avatar'];
$_SESSION['timeout'] = $waktu+$expired;
$waktulog= time();
header('location:frame.php?load=dashboard');
}
else{
echo "<script type='text/javascript'>
window.alert('Username Atau Password Anda Salah');
window.location =('index.php')</script>";
}
?>
0
4 Jawaban:
coba diteliti lg gan kodenya.., itu agan ngeluarin datanya berupa array bukannya assoc. semoga membantu ^^
0
coba ini gan
$query=mysql_query("SELECT * FROM tbl_admin WHERE (username_admin='$username'
OR email_admin='$email') AND password_admin='$pass' AND aktif='Y'");
0
@dianarifr jadinya malah gabisa login samasekali gan
0
Pertama pemakaian OR nya masih salah gan
$query=mysql_query("SELECT * FROM tbl_admin WHERE (username_admin='$username'
OR email_admin='$email') AND password_admin='$pass' AND aktif='Y'");
Terus yg bagian array nya
$r=mysql_fetch_assoc($query);
0
