<?php
//I wanna make a login page
//This my logon.php which it gets data from my login.php and checks if (username,password)given exists in my Database, and if there are, it allows you to continue to view my index.php.
//I wanna do it with PDO prepared statements.
//Here is my connection to Database
$db_host="localhost";
$db_username="root";
$db_pass="";
$db_name="admin";
$db=new mysqli("$db_host","$db_username","$db_pass","$db_name");
echo $db->connect_errno;
if($db->connect_errno){
die("sorry we have some problems");
}
if($_SERVER ['REQUEST_METHOD']=='POST'){
$username=$_POST['username'];
$password=$_POST['password'];
$username=htmlspecialchars($username);
$password=htmlspecialchars($password);
//Here i try to check in my Database if the given username AND password exists and somehow check if i got any results.if i got 1,2,3...rows that matches the username and password
//this what i wanna do with PDO...please Help!
$pdo->prepare$sql=('SELECT * FROM members WHERE username = :username and password = :password' );
$pdo->execute(array(':username' => $username, ':password'=>$password));
//Here is what i wanna do if i got any results from my database
if($result){
$num_rows=mysqli_num_rows($result);
if($num_rows>0){
session_start();
$_SESSION['check']="1";
header ("Location:index.php");
}
else{
session_start();
$_SESSION['check']="";
header ("Location:index.php");
}
}
}
?>
