I'm currently attempting to create a simple CMS (really simple). It won't use database, but static html files. I managed to create a php file that updates those files using form Post. Now I want to hide it using a really simple login screen. I found this method which basically shows either the specific php page or the login screen.
My problem is I'm a noob in php, managing to build stuff through trial and error, and I'm dead scary of this method not being minimally safe.
I don't know much about this function, but shouldn't the login function have some sort of trim?
Thanks in advance...