I am having trouble with the php statements in session.php to recognize the result of the correct $user and $pass.
I have a MySQL table called “register” with usernames and passwords,
session.php
<?php
$result="";
$user = filter_input(INPUT_POST, "user");
$pass = filter_input(INPUT_POST, "pass");
if ($user!=null And $pass!=null){
$conn = mysql_connect(connectionstring works);
mysql_select_db('db1');
$sql = "SELECT * FROM register WHERE username=$user And password=$pass;";
$result = mysql_query($sql, $conn);
}
if ($result==null) {
return header("Location: http://www.philosophaie.com/htmlphp/secure_login.htm");
}
?>