<?php

	session_start();
	
	include("conn.php");
	
	
	//$checkuser = "Select * FROM users WHERE username='$user' and password='$pw' ";
	
	//$result = $conn->query($checkuser);
	
	//if(!result) {
	//	echo $conn->error;
		//}

	
	//$num = $result->num_rows;
	
	//if($num>0){
	//	$id=$_SESSION['40127651_id'];
	
			
	//	header('Location: account.php');
	//} else {
	//	header('location: login.php');
	//}
	

//if(isset($user)){

//$read = "SELECT * FROM user WHERE username = '$username'";

//$result = $conn->query($read);
//}
//if(!$result) {
//echo $conn->error;
//}


 
$user = $_POST['username'];
$pass = $_POST['pw'];
 
$checkuser = "SELECT * FROM users WHERE username = '$user' AND password = '$pw' ";
 
$result = $conn -> query($checkuser);
 
if (!$result) {
  echo $conn->error;
}
 
$num = $result ->num_rows;
 
if ($num > 0) {
	$id = -1;
	while ($row = $result->fetch_assoc()){
		$id = $row['id'];
	}
  $_SESSION['40127651_user'] = $user;
  $_SESSION['user_id'] = $id;
 
  header('Location: account.php');
} else {
  header('Location: account.php');
}
 
 ?>