-
Notifications
You must be signed in to change notification settings - Fork 0
/
loginProcess.php
78 lines (76 loc) · 3.08 KB
/
loginProcess.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
<?php
include_once("includes/connection.php");
$error = array();
// $error[]= null;
if(isset($_POST['submit']))
{
// echo '<pre>';
// print_r($_POST);exit;
$username=$_POST['username'];
$pwd=$_POST['password'];
$usertype = $_POST['usertype'];
if($username=='' || $pwd=='' || $usertype == '')
{
echo $usertype;exit;
session_start();
$error[] = "Please Enter Username and password.";
$_SESSION['error'] = $error;
}else if($username && $pwd && $usertype){
if($usertype == 'admin'){
$sql = "select * from admin where email='".$username."'";
$result = $dbh->query($sql);
if($result->rowCount()){
foreach($result as $row){
if($row['password'] == md5($pwd)){
session_start();
$_SESSION['email'] = $username;
$_SESSION['first_name'] = $row['first_name'];
$_SESSION['last_name'] = $row['last_name'];
$_SESSION['middle_name'] = $row['middle_name'];
$_SESSION['admin_id'] = $row['admin_id'];
$_SESSION['usertype'] = 'admin';
header('Location:index.php');
die();
}else{
session_start();
$error[] = "Password is incorrect";
$_SESSION['error'] = $error;
}
}
}else{
session_start();
$error[] = "Email is not exist";
$_SESSION['error'] = $error;
}
}else{
$sql = "select * from client where contact_email='".$username."'";
$result = $dbh->query($sql);
if($result->rowCount()){
foreach($result as $row){
if($row['password'] == md5($pwd)){
session_start();
$_SESSION['email'] = $username;
$_SESSION['first_name'] = 'Client';
$_SESSION['last_name'] = '';
$_SESSION['middle_name'] = 'a';
$_SESSION['admin_id'] = $row['client_id'];
$_SESSION['usertype'] = 'client';
header('Location:index.php');
die();
}else{
session_start();
$error[] = "Password is incorrect";
$_SESSION['error'] = $error;
}
}
}else{
session_start();
$error[] = "Email is not exist";
$_SESSION['error'] = $error;
}
}
}
}
header('Location:login.php');
die();
?>