<!-- dbase.php --><!-- To connect between php scripting and database. --><?php

1. <!-- dbase.php -->
2. <!-- To connect between php scripting and database. -->
3. <?php
4.  
5. define("DATABASE_HOST", "localhost");
6. define("DATABASE_USER", "root");
7. define("DATABASE_PASSWORD", "");
8.  
9. // To establish a connection to database and save in $conn
10. $conn = mysql_connect(DATABASE_HOST,DATABASE_USER, DATABASE_PASSWORD);
11.  
12. // If connection failed then display mysql error
13. if (!$conn){
14. die( "Could not connect to database" );
15. }
16.  
17. // To select one particular database to be used
18. mysql_select_db("internship", $conn) or die( "Could not open PEMS database" );
19.  
20. ?>
21.  
22. <?php
23. /*
24. Filename: authenticatoraAdmin.php
25. Purpose: To verify user identity in accessing this website.
26. Note: Include this file in every protected page to avoid
27. unauthorized user enter.
28. */
29. //Start session
30. session_start();
31.  
32. //Check whether the login status is true or not
33. if(!isset($_SESSION['STATUS_ADMIN']) || !$_SESSION['STATUS_ADMIN'] == true) {
34. header("location: login-failed.html");
35. exit();
36. }
37. ?>
38.  
39. <?php
40. /*
41. Purpose: To handle login information and create a session for that user.
42. */
43.  
44. // Start session
45. session_start();
46.  
47. // Validation error flag
48. $errflag = false;
49.  
50. // Input Validations
51. if($_POST['username'] == '') {
52. $errmsg_arr[] = 'Username missing';
53. $errflag = true;
54. }
55. if($_POST['password'] == '') {
56. $errmsg_arr[] = 'Password missing';
57. $errflag = true;
58. }
59.  
60. // If there are input validations, redirect back to the login form
61. if($errflag) {
62. $_SESSION['ERRMSG_ARR'] = $errmsg_arr;
63. session_write_close();
64. header("location: index.php");
65. exit();
66. }
67.  
68. // to make a connection with database
69. $conn = mysql_connect("localhost", "root", "") or die(mysql_error());
70.  
71. // to select the targeted database
72. mysql_select_db("internship", $conn) or die(mysql_error());
73.  
74. // to create a query to be executed in sql
75. $username = $_POST['username'];
76. $password =$_POST['password'];
77. $query = "SELECT * FROM admin WHERE id_no = '$username' AND password = '$password'";
78.  
79. // to run sql query in database
80. $result = mysql_query($query, $conn) or die(mysql_error());
81.  
82. // Check whether the query was successful or not
83. if(isset($result)) {
84. if(mysql_num_rows($result) == 1 ) {
85. // Login Successful
86. session_regenerate_id();
87. $member = mysql_fetch_assoc($result);
88. $_SESSION['SESS_USERNAME'] = $member['id_no'];
89. $_SESSION['SESS_NAME'] = $member['admin_name'];
90. $_SESSION['STATUS_ADMIN'] = true;
91. session_write_close();
92. header("location: pageAdmin.php");
93. exit();
94. }
95. else {
96. // Login failed
97. header("location: login-failed.html");
98. exit();
99. }
100. }
101. else {
102. die("Query failed");
103. }
104.  
105. ?>
106.  
107. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
108. <html xmlns="http://www.w3.org/1999/xhtml">
109. <head>
110.  
111. <link rel="stylesheet" type="text/css" href="splitmenubuttons.css" />
112.  
113. <script type='text/javascript' src='https://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js'></script>
114.  
115. <script src="splitmenubuttons.js">
116.  
117. /* Split Menu Buttons: created: Aug 8th, 2012 by DynamicDrive.com. This notice must stay intact for usage
118. * Author: Dynamic Drive at http://www.dynamicdrive.com/
119. * Visit http://www.dynamicdrive.com/ for full source code
120. */
121.  
122. </script>
123.  
124. <script>
125.  
126. jQuery(function(){ // on document load
127. $('a[data-showmenu]').splitmenubuttonMenu() // Add split button menu to links with "data-showmenu" attr
128. })
129.  
130. </script>
131.  
132.  
133. <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
134. <title>#</title>
135. <meta name="keywords" content="global, business, css templates, website templates, CSS, HTML" />
136. <meta name="description" content="Global - free CSS template provided by templatemo.com" />
137. <link href="templatemo_style.css" rel="stylesheet" type="text/css" />
138. <script type="text/JavaScript" src="js/slimbox2.js"></script>
139. <script type="text/javascript" src="js/jquery.js"></script>
140. <script type="text/javascript" src="js/cufon-yui.js"></script>
141. <script type="text/javascript" src="js/arial.js"></script>
142. <script type="text/javascript" src="js/cuf_run.js"></script>
143. <script type="text/javascript" src="js/radius.js"></script>
144.  
145. <script>
146. function Validate()
147. {
148. if (document.loginForm.username.value == '')
149. {
150. alert('Please insert your username!');
151. document.loginForm.username.select();
152. document.loginForm.username.focus();
153. return false;
154. }
155. if (document.loginForm.password.value == '')
156. {
157. alert('Please insert your password!');
158. document.loginForm.password.select();
159. document.loginForm.password.focus()
160. return false;
161. }
162. if (document.loginForm.leveling.value == '')
163. {
164. alert('Please select your categories!');
165. document.loginForm.leveling.focus();
166. return false;
167. }
168. return true;
169. }
170. </script>
171.  
172. <script>
173. function LoginCategory()
174. {
175. if(document.loginForm.leveling.value=="Admin")
176. {
177. document.loginForm.action="sessionHandlerAdmin.php";
178. document.loginForm.submit()
179. return (true);
180. }
181. else if(document.loginForm.leveling.value=="User")
182. {
183. document.loginForm.action="sessionHandlerUser.php";
184. document.loginForm.submit()
185. return (true);
186. }
187. }
188. </script>
189.  
190. </head>
191. <body>
192. <div id="templatemo_wrapper">
193. <div id="templatemo_header">
194. <div id="templatemo_menu">
195.  
196.  
197. </div> <!-- end of templatemo_menu -->
198. <div id="site_title">
199. <h1>&nbsp;</h1>
200. <table width="900" height="200" border="0" align="right" cellpadding="0" cellspacing="0">
201.  
202. </table>
203. <h1><br />
204. </h1>
205. </div> <!-- end of site_title --></div> <!-- end of templatemo_header -->
206. <div id="templatemo_main">
207. <table width="869" border="0" align="center" cellpadding="0" cellspacing="0">
208.  
209. </table>
210. <div class="content">
211. <div id="form_wrapper" class="form_wrapper"></div>
212. <div class="clear"></div>
213. </div>
214. <table width="310" height="313" border="1" align="center">
215. <br />
216. <br />
217. <tr>
218. <td width="300"height="200"><form method = "post" id = "loginForm" name="loginForm" onsubmit="return Validate()"
219. style = "font-size: 12pt">
220. <p align="left"><strong>Username:</strong>
221. <input id = "username" name = "username" class="text" />
222. <br />
223. <br />
224. <strong>Password:</strong>
225. <input id = "password" name = "password" class="text" type="password" />
226. <br />
227. <br />
228. <strong>Category:</strong>
229. <select name="leveling" >
230. <option value="">----Select----</option>
231. <option value="Supervisor">ADMIN</option>
232. <option value="Student">USER</option>
233. </select>
234. <br />
235. <br />
236. <center>
237. <input type = "submit" value = "Login" onclick="return LoginCategory()" />
238. <input type = "reset" value = "Reset" />
239. </p>
240. </form>
241. </a> <br />
242. </p></td>
243. </tr>
244. </table>
245. <p>&nbsp;</p>
246. <table width="747" border="1" align="center" cellpadding="0" cellspacing="0" bordercolor="#000000" >
247.  
248.  
249. </table>
250.  
251. <tr>
252. <td colspan="4" align="left" valign="top" class="horizon_divider">&nbsp;</td>
253. </tr>
254.  
255.  
256. <!-- end of content -->
257. <div class="cleaner"></div>
258.  
259. </div> <!-- end of templatemo_main -->
260.  
261.  
262. </div> <!-- end of templatemo_wrapper -->
263. </body>
264. </html>