Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- ob_start("ob_gzhandler");
- // Cache test!
- header("Cache-Control: must-revalidate");
- $offset = 60 * 60 * 24 * 3;
- $garbage_timeout = 3600; // 3600 seconds = 60 minutes = 1 hour
- $ExpStr = "Expires: " . gmdate("D, d M Y H:i:s", time() + $offset) . " GMT";
- header($ExpStr);
- ini_set('session.gc_maxlifetime', $garbage_timeout);
- session_start();
- require("db_config.php");
- function to_login()
- {
- $_SESSION = array();
- sleep(3);
- echo "<script>window.location='../logout.php';</script>";
- die();
- }
- function check_login($username, $password, $branch)
- {
- $sql = "
- SELECT id, name, grp, branch
- FROM users
- WHERE user = '" . mysql_real_escape_string($username) . "'
- AND password = MD5('" . mysql_real_escape_string($password) . "')
- AND branch = '" . mysql_real_escape_string($branch) . "'";
- if($res = mysql_query($sql))
- {
- if(mysql_num_rows($res) == 1)
- {
- $row = mysql_fetch_assoc($res);
- $_SESSION['id'] = $row['id'];
- $_SESSION['user'] = $row['name'];
- $_SESSION['branch'] = $row['branch'];
- $_SESSION['group'] = $row['grp'];
- $_SESSION['logged_in'] = true;
- }
- else
- to_login();
- }
- else
- to_login();
- }
- if(!isset($_SESSION['logged_in']))
- {
- if(isset($_POST['username'], $_POST['password'], $_POST['branchnr']))
- check_login($_POST['username'], $_POST['password'], $_POST['branchnr']);
- else
- to_login();
- }
- ?>
Add Comment
Please, Sign In to add comment
