"; echo "Return
"; exit(); } // trim the vars $name = trim($_POST['name']); $pass = trim($_POST['password']); // get stuff from the database $sql = mysql_query("SELECT password FROM users WHERE name='".$name."'"); $sql = mysql_fetch_array($sql); $db_pass = $sql['password']; // compare the users password to the password in the database if($pass == $db_pass){ // correct logged in // create a SSO ticket $rand1 = mt_rand(100000,999999); $rand2 = mt_rand(10000,99999); $rand3 = mt_rand(10000,99999); $rand4 = mt_rand(10000,99999); $rand5 = mt_rand(10000,99999); $rand6 = mt_rand(0,9); $ticket = "ST-".$rand1."-".$rand2.$rand3.$rand4.$rand5."-holo-fe".$rand6; // set the SSO ticket session $_SESSION['sso'] = $ticket; // write SSO ticket to the database mysql_query("INSERT INTO sso (name,ticket,ipaddress) VALUES ('".$name."','".$ticket."','".$_SERVER['REMOTE_ADDR']."')"); // show popup echo ""; // exit script to prevent showing the login form again exit(); } else { // dont show the onLoad popup thing, just the body tag echo ""; // error message echo "Incorrect password, try again.
"; echo "Return
"; // exit script to prevent showing the login form again exit(); } } // handle the error(s) // error "sso" -> If somene acces the loader page without a SSO ticket if($_GET['error'] == "sso"){ echo "First login under here."; } ?>

Username:
Password: