<?php
include 'head.php';
-$thisTxt = isSSL()?' with this Certificate':' via SQL';
-$otherTxt = isSSL()?' without a Certificate':' with a Certificate';
+$thisTxt = isSSL()?' using this Certificate':' using your MySQL Password';
?>
-<h2>Login</h2>
+<h3>Login</h3>
<?php printErrors($err); ?>
<?php if (!isSSL()): ?>
-<form method=post>
-<h3>Enter your SQL login:</h3>
-<p>username: <input type="text" name="u" value="<?=isset($i_u)?$i_u:''?>"></p>
+<form method=post action="<?=$URI?>">
+<p>Please enter your MySQL login information:</p>
+<p>username: <input type="text" name="u" value="<?=isset($i_u)?htmlentities($i_u):''?>"></p>
<p>password: <input type="password" name="p"></p>
<?php elseif (isSSL() && !empty($SSLCred)): ?>
-<form method=post>
-<h3>You are identified as: <?=$SSLUsername?></h3>
-<p><?=$SSLName?></p>
-<p><?=$SSLEmail?></p>
+<form method=post action="<?=$URI?>">
+<p>You are identified as: <?=htmlentities($SSLUsername)?></p>
+<p><?=htmlentities($SSLName)?></p>
+<p><?=htmlentities($SSLEmail)?></p>
<?php endif; ?>
<?php elseif (isSSL() && !is_null($SSLCred)): ?>
-<h3><a href="signup">Signup</a> to use this service.</h3>
+<p><a href="do/signup">Sign up</a> to use this service.</p>
<?php endif; ?>