-5

我有这个welcome.php,管理员在通过身份验证时会被重定向,我有另一个hostess.php,我希望它只显示给管理员,我的意思是,除非他或她登录,否则没有人应该有权访问。

Welcome.php 文件包含以下小代码:

我怎样才能在那里插入hostess.php?

<?php include('lock.php'); ?> 
<body> 
<div id="menu">  
<ul> 
<li><a href="logout.php">log out</a></li> 
</ul> 
</div> 
<h1> Welcome <?php echo $login_session; ?> </h1>
</body>

登录页面代码:

<?php
include("config.php");
session_start();
if($_SERVER["REQUEST_METHOD"] == "POST")
{
// username and password sent from Form
$myusername=addslashes($_POST['username']);
$mypassword=addslashes($_POST['password']);

$sql="SELECT id FROM admin WHERE username='$myusername' and passcode='$mypassword'";
$result=mysql_query($sql);
$row=mysql_fetch_array($result);
$active=$row['active'];
$count=mysql_num_rows($result);


// If result matched $myusername and $mypassword, table row must be 1 row
if($count==1)
{
session_register("myusername");
$_SESSION['login_user']=$myusername;

header("location: welcome.php");
}
else
{
$error="Your Login Name or Password is invalid";
}
}
?>
<form action="" method="post">
<label>UserName :</label>
<input type="text" name="username"/><br />
<label>Password :</label>
<input type="password" name="password"/><br/>
<input type="submit" value=" Submit "/><br />
</form>
4

1 回答 1

0

如果您想进行条件包含,那么您应该只添加一个检查以查看用户是否已登录并包含该文件(如果是)。我不知道您是如何实现登录和身份验证的,但根据您提供的信息,它会是这样的:

<body> 
    <?php include('lock.php'); 
    if($login_session != 'admin') { // or however else you would check the login status
        echo "<h1> Please Log In </h1>";
    } else {
        include('hostess.php'); // include and display all the rest of the stuff
        // display the stuff
    ?>
    <div id="menu">  
        <ul> 
            <li><a href="logout.php">log out</a></li> 
        </ul>
    </div>
    <h1> Welcome <?php echo $login_session; ?> </h1>
    <?php } // close else ?>
</body>
于 2012-06-15T14:39:50.337 回答