diff options
| author | Paul S. Owen <psotfx@users.sourceforge.net> | 2002-02-15 23:34:32 +0000 |
|---|---|---|
| committer | Paul S. Owen <psotfx@users.sourceforge.net> | 2002-02-15 23:34:32 +0000 |
| commit | acdf961314e4b3566baae14ca0c3826df7f70de2 (patch) | |
| tree | ad7a67638792dd41d605bf0b9c702becb79c3326 /phpBB | |
| parent | 06434eb0c535a6d292f9e7ce707891d56ff6f5ed (diff) | |
| download | forums-acdf961314e4b3566baae14ca0c3826df7f70de2.tar forums-acdf961314e4b3566baae14ca0c3826df7f70de2.tar.gz forums-acdf961314e4b3566baae14ca0c3826df7f70de2.tar.bz2 forums-acdf961314e4b3566baae14ca0c3826df7f70de2.tar.xz forums-acdf961314e4b3566baae14ca0c3826df7f70de2.zip | |
Minor updates, may fix bug #517876
git-svn-id: file:///svn/phpbb/trunk@2166 89ea8834-ac86-4346-8a33-228a782c2dd0
Diffstat (limited to 'phpBB')
| -rw-r--r-- | phpBB/login.php | 15 |
1 files changed, 6 insertions, 9 deletions
diff --git a/phpBB/login.php b/phpBB/login.php index f7a472ac9e..f480d4aaf2 100644 --- a/phpBB/login.php +++ b/phpBB/login.php @@ -54,29 +54,26 @@ if( isset($HTTP_POST_VARS['login']) || isset($HTTP_GET_VARS['login']) || isset($ $password = isset($HTTP_POST_VARS['password']) ? $HTTP_POST_VARS['password'] : ""; $sql = "SELECT user_id, username, user_password, user_active, user_level - FROM ".USERS_TABLE." + FROM " . USERS_TABLE . " WHERE username = '" . str_replace("\'", "''", $username) . "'"; - $result = $db->sql_query($sql); - if(!$result) + if ( !($result = $db->sql_query($sql)) ) { message_die(GENERAL_ERROR, "Error in obtaining userdata : login", "", __LINE__, __FILE__, $sql); } - $rowresult = $db->sql_fetchrow($result); - - if( count($rowresult) ) + if( $row = $db->sql_fetchrow($result) ) { - if( $rowresult['user_level'] != ADMIN && $board_config['board_disable'] ) + if( $row['user_level'] != ADMIN && $board_config['board_disable'] ) { header($header_location . append_sid("index.$phpEx", true)); } else { - if( md5($password) == $rowresult['user_password'] && $rowresult['user_active'] ) + if( md5($password) == $row['user_password'] && $row['user_active'] ) { $autologin = ( isset($HTTP_POST_VARS['autologin']) ) ? TRUE : 0; - $session_id = session_begin($rowresult['user_id'], $user_ip, PAGE_INDEX, FALSE, $autologin); + $session_id = session_begin($row['user_id'], $user_ip, PAGE_INDEX, FALSE, $autologin); if( $session_id ) { |