Your IP : 216.73.216.40

Current Path : /var/www/html/mmishra/iws8/html/ilight/
Upload File :
Current File : /var/www/html/mmishra/iws8/html/ilight/session.inc

<?php
include('functions.inc');
require('classes/PHPMailerAutoload.php');
require("classes/class.phpmailer.php");
//include "classes/editor.php"; 
date_default_timezone_set('Asia/Kolkata');

dbConnect();

$statuss = array('Pending','Progress','Cencelled','Resolved','Closed');
$istatuss = array('Usable','Scrap');
$ostatuss = array('New','Old','Mix');
$roles = array('Admin','Officer','Staff','Guest');
$modes = array('Rupees','Units');
$itemtypes = array('Consumable','Returnable','Fixture','Machine','Tool','Equipment');
$units = array('No.','Piece','Meter','Feet','Kg','Gram','Liter','Packet','Dozen','Reel','Rim');

$remoteip = getIP(); 
$referer = $_SERVER['HTTP_REFERER'];
$url = $_SERVER['REQUEST_URI'];
//initialize session variables and session
session_start();

if (isset($_SESSION['sessionid'])) {
        //check session and session variables        
        $user = $_SESSION['user'];
        $role = $_SESSION['role'];
        $sessionid = $_SESSION['sessionid'];

} else if (isset($_POST['login']) && $_POST['txtID']) {
        //authenticate sign in
        $uid = trim($_POST['txtID']);
        $pwd = trim($_POST['txtPWD']);

        $role = strtolower((ldapAuth($uid, $pwd) ? localAuth($uid, $pwd) : 'public'));

        $sessionid = base64_encode($uid.'-'.$pwd);
        $_SESSION['user'] = "$uid";
        $_SESSION['role'] = "$role";
        $_SESSION['sessionid'] = "$sessionid";

        //session information
        //close previous unclosed sessions
	mysql_query("update websessions set logouttime=now() where timediff(now(),logintime)>'03:00:00'");
	mysql_query("update websessions set logouttime=now() where userid='$uid' and isnull(logouttime)");
	//start current session
        mysql_query("insert into websessions(sessionid,userid,remoteip,logintime) 
	values('$sessionid','$uid','$remoteip',now())");
        header("Location: .");
}

//check for singout signal
if ($_GET['logout'] == 1) {
        //close current session
        mysql_query("update websessions set logouttime=now(),duration=timediff(now(),logintime)
        where sessionid='$sessionid'");

        //abondon session
        session_unset();
        session_destroy();

        //reset session variables
        $HTTP_SESSION_VARS['user'] = '';
        $HTTP_SESSION_VARS['role'] = '';
        $HTTP_SESSION_VARS['sessionid'] = '';

        $user = '';
	$role = '';
	$sessionid = '';

        header("Location: .");
}

//log activity in access log database
accessLog($user, $referer, $url, $remoteip);

?>