Your IP : 216.73.216.40

Current Path : /var/www/html/mmishra/indem/phq/
Upload File :
Current File : /var/www/html/mmishra/indem/phq/login.php

<?
$tbl = 'z_users';
session_start();
if ($_REQUEST['url'] == 'search'){
  $s_login_id = $_SESSION["s_login_id"];
  $s_full_name = $_SESSION["s_full_name"];
  $s_role = $_SESSION["s_role"];
  $s_scope_level = $_SESSION["s_scope_level"];
  $s_scope_value = $_SESSION["s_scope_value"];
  $s_login_time = $_SESSION["s_login_time"];
  $s_logged_in = 'TRUE';
}else{
  $s_login_id = $_POST['login_id'];
  $s_upwd = $_POST['upwd'];
}

if (isset($_GET['LOGOUT'])){
  session_unset();
  session_destroy();
  $s_login_id = "";
  $s_full_name = "";
  $s_role = "";
  $s_scope_level = "";
  $s_scope_value = "";
  $s_login_time = "";
  $s_logged_in = "";
  //setcookie("auto_login", "", time()-3600);
  header("Location: index.php");
  exit;
}

if (isset($_POST['LOGIN'])){
  $s_login_id = $_POST['login_id'];
  $s_upwd = $_POST['upwd'];
  $rs = mysql_query("select * from $tbl where login_id='$s_login_id' and login_pass=password('$s_upwd')", $link);
  if ($rs){
    $o = mysql_fetch_object($rs);
    $s_full_name = $o->full_name;
    $s_role = $o->role;
    $s_scope_level = $o->scope_level;
    $s_scope_value = $o->scope_value;
    $s_system_ip = $o->system_ip;
    $s_status = $o->status;
    $s_logged_in = 'TRUE';
    $s_login_time = date("H:i");
    if ($s_status == 'offline') $err = 'Account is offline';
    //if ($s_system_ip != $_SERVER['REMOTE_ADDR']) $err = "Can not login from this system";
    if ($err){
      header("Location: index.php?msg=$err");
    }else{
      mysql_query("update $tbl set time_of_login=now() where login_id='$s_login_id'", $link);
      session_register("s_logged_in","s_login_id","s_full_name","s_role","s_scope_level","s_scope_value","s_login_time");
      if ($s_role == 'admin') {
        header("Location: admin/index.php");
      }elseif ($s_role == 'operator') {
        header("Location: operator/index.php");
      }else {
        header("Location: index.php");
      }
    }
    exit;
  }
}elseif ($session_continue == 'TRUE'){
  if ($s_full_name == ''){
    header("Location: index.php");
  }elseif ($s_role == 'admin') {
    header("Location: admin/index.php");
  }elseif ($s_role == 'operator') {
    header("Location: operator/index.php");
  }else {
    header("Location: index.php");
  }
  exit;
}
?>