Login    Password      "; $rowNum = 4; // if user is already logged in, don't show the login screen if(isset($HTTP_SESSION_VARS["album_user"])) { //if(isset($album_user)) { $tblRows = "

Hey, whatdya know - you're already logged in. Go do something :

Edit Events/Images | Upload Images | Overwrite Uploaded Images | Edit Image Description | Add Events | Add Journal Entry
"; $rowNum = 1; } elseif (isset($HTTP_POST_VARS["frmAction"]) && $HTTP_POST_VARS["frmAction"] == "sent") { $usr_name = $HTTP_POST_VARS["usr_name"]; $usr_pw = $HTTP_POST_VARS["usr_pw"]; //print("

user info: $usr_name $usr_pw

"); $db_query = "select id, user_name from album.album_user where user_name = '$usr_name' and password = '$usr_pw'"; $link = mysql_connect($db_host, $db_user, $db_pw) or die ("can't connect"); $rs = mysql_query($db_query, $link); while($row = mysql_fetch_array($rs)) { $usr_id = $row["id"]; } if ($usr_id != "") { // print("

user id: " . $usr_id); $album_user = Array("usr_id" => $usr_id, "usr_name" => $usr_name); //$HTTP_SESSION_VARS["album_user"]["usr_id"] = $usr_id; //$HTTP_SESSION_VARS["album_user"]["usr_name"] = $usr_name; session_register("album_user"); // print('

http_session_vars:' . $HTTP_SESSION_VARS["album_user"]); $tblRows = "
Login successful.

Edit Events/Images | Upload Images | Add Events | Add Journal Entry "; $rowNum = 1; } else { $err_msg = "Your user name and password could not be found. Try logging in again."; $tblRows = "
$err_msg
"; $rowNum = 1; } mysql_close($link); } $pgeTitle = "Album Login"; $pgeKeywords = "online photo album login"; $pgeContent = "Online photo album: Login"; $pgeJavascript = " "; $rowSpan = $rowNum + 6; $pgeContent = "

$tblRows
User Login
"; include("$incrp/template.inc"); ?>