Your IP : 216.73.216.40

Current Path : /var/www/html/mmishra/iws8/html/gian/
Upload File :
Current File : /var/www/html/mmishra/iws8/html/gian/session.inc

<?php
require("config.inc");
require("functions.inc");
require('class.gian.php');
require 'classes/PHPMailerAutoload.php';
//include "classes/editor.php"; 
//require 'classes/class.smtp.php';

date_default_timezone_set('Asia/Kolkata');
dbConnect("gian");

//some enumerated values

$genders = array('Male','Female');
$roles = array('Admin','Officer','Staff','Student','Guest');
$weekdays = array('Monday','Tuesday','Wednesday','Thursday','Friday','Saturday','Sunday'); 

$referer = $_SERVER['HTTP_REFERER'];
$url = substr($_SERVER['REQUEST_URI'],0,strpos($_SERVER['REQUEST_URI'],'?'));
$path = $_SERVER['PATH_INFO'];
$remoteip = getIP(); 

$year = date('Y');
if (date('m') < 7) $year--;
//echo $path;
//initialize session variables and session
session_start();

if (isset($_SESSION['sessionid'])) {
	//check session and session variables        
	$sessionid = $_SESSION['sessionid'];
	$user = $_SESSION['user'];
	$role = $_SESSION['role'];

} else if (isset($_POST['login']) && $_POST['txtID']) { 
	//authenticate sign in
	$uid = strtolower(trim($_POST['txtID']));
	$pwd = trim($_POST['txtPWD']);
        
	$role = strtolower((ldapAuth($uid, $pwd) ? localAuth($uid, $pwd) : 'public'));

	$sessionid = base64_encode($uid.'-'.$pwd);
	$_SESSION['user'] = "$uid";
    $_SESSION['role'] = "$role";
	$_SESSION['sessionid'] = "$sessionid";

    //session information
    //close previous unclosed sessions
	mysql_query("update websessions set logouttime=now() where timediff(now(),logintime)>'03:00:00' and isnull(logouttime)");
	mysql_query("update websessions set logouttime=now() where userid='$uid' and isnull(logouttime)");
	//start current session
    mysql_query("insert into websessions(sessionid,userid,remoteip,logintime) 
	values('$sessionid','$uid','$remoteip',now())");
    header("Location: .");
}

//check for singout signal
if ($_GET['logout'] == 1) {
    //close current session
    mysql_query("update websessions set logouttime=now(),duration=timediff(now(),logintime)
    where sessionid='$sessionid'");

    //reset session variables
    $_SESSION['user'] = "";
    $_SESSION['role'] = "";
    $user = "";
    $role = "";

	//finally destroy current session
	session_destroy();
	header("Location: .");
}

//log activity in access log database
accessLog($user, $referer, $url, $remoteip);

?>