PHP登录session验证实例

<html>
<head>
<title>Login</title>
</head>
<body>
<form name="fangbei" method="post" action="check_session_login.php">
<div style="width:353">
<dl>
<dt></dt>
<dd>
<div align="left">
Username:
<input type="text" name="username" />
</div>
</dd>
<dd>
<div align="left">
Password :
<input type="password" name="pwd" />
</div>
</dd>
<dd>
<p align="center"> <input type="submit" name="Submit" value="Submit" /> <input type="reset" name="Reset" value="Reset" /> </p>
</dd>
</dl>
</div>
</form>
</body>
</html>

<?php
header("Content-Type: text/html; charset=utf-8");
$servername="localhost";
$username = "root";
$password = "";
$dbname = "paul";
$conn = new mysqli($servername, $username, $password, $dbname);
if ($conn->connect_error) {
die("Connection failed: " . $conn->connect_error);
}
$conn->query("SET NAMES utf8");
//获取输入的信息
$username = $_POST['username'];
$pwd = $_POST['pwd'];
//获取session的值
$sql = "select username,userflag from test_login where username = '$username' and pwd = '$pwd'";
$result = $conn->query($sql);
//判断用户以及密码
if ($result->num_rows > 0) {

session_start();
//判断权限
$row = $result->fetch_assoc();
if($row['userflag'] == 1 or $row['userflag'] == 0){
$_SESSION['username'] = $row['username'];
$_SESSION['userflag'] = $row['userflag'];
echo "<a href='welcome_session_login.php'>欢迎访问</a>";
}
else{
echo "迷之用户";
}

}
else{
echo "用户名或密码不正确";
}

<?php
header("Content-Type: text/html; charset=utf-8");
session_start();
if(isset($_SESSION['username']))
{
if($_SESSION['userflag'] == 1)
echo "欢迎管理员".$_SESSION['username']."登录";
if($_SESSION['userflag'] == 0)
echo "欢迎用户".$_SESSION['username']."登录";
}
else
{
echo "登录已过期";
}
unset($_SESSION['username']);
unset($_SESSION['pwd']);
unset($_SESSION['userflag']);
echo "<br>会话结束";