I realise this question has been answered before however each are all specific to everyone's code. I would appreciate it if someone could tell me why both if and else statements are executing. The script is part of a login script for a piece of forum software I am developing. Thanks Robbie
<?php
$username = $_POST['username'];
$password = md5($_POST['password']);
session_start();
include($_SERVER['DOCUMENT_ROOT']."/forum/config.php");
$connect = mysqli_connect($DBHOST,$DBUSER,$DBPASS,$DBNAME);
if ($connect->connect_errno) {
die('Connection Error: ' . $connect->connect_errno);
}
$query = $connect->query("SELECT * FROM forum_users");
while($row = $query->fetch_array()){
if (($row['username'] == $username) AND ($row['password'] == $password)) {
$_SESSION['username']=$username;
echo '<script language="javascript">';
echo 'window.location.href = "../forum/"';
echo '</script>';
} else {
echo '<script language="javascript">';
echo 'window.location.href = "../forum/login?password=wrong"';
echo '</script>';
}
}
?>