Untitled

<?php

function login_form($error=''){
  $body =  '<div class="box" style="width:340px;margin: 0 auto;">
                <h2 style="text-align:center;">Login</h2>
                '.($error ? '<div class="alert alert-danger">'.$error.'</div>' : '').'
                <form action="'.home_url(enc('/login/set/'.idn(3))).'" method="POST" class="form-horizontal">
                  <div class="form-group">
                    <div class="col-sm-12">
                      <input type="text" class="form-control" name="username" id="username" placeholder="Username">
                    </div>
                  </div>
                  <div class="form-group">
                    <div class="col-sm-12">
                      <input type="text" class="form-control" name="password" id="password" placeholder="Password">
                    </div>
                  </div>
                  <div class="form-group">
                    <div class="col-sm-12">
                      <button type="submit" class="btn btn-primary btn-block">Login</button>
                    </div>
                  </div>
                </form>
            </div>';

  return array('main'=>$body);

}

function login_set(){
  global $con;
  $username = posts('username'); // mengambil username dari password yang dikirim melalui formulir
  $password = md5(posts('password')); // mengambil password dari password yang dikirim melalui formulir

  $qry = $con->query('SELECT id, level, password FROM user WHERE (username="'.filter($username).'" OR email="'.filter($username).'") AND password="'.filter($password).'"');
  if($qry->num_rows > 0){
    @list($id, $level, $passwd) = $qry->fetch_array();
    // jika oke maka username dimasukkan ke dalam sesion
    $_SESSION[_SESSION_LOG] = base64_encode($id.'|'.$level.'|'.$passwd);  // memasukkan informasi $id, $level, $passwd ke session dengan enkripsi base 64

    redirect(idn(3),1); //kembali ke halaman sebelumnya
  }else{
    return login_form('Invalid Login!');
  }
}

switch(get(1)){  // pilihan menu
  case 'login':   // login
    $data = login_form();
  break;
  case 'set': // set login
    $data = login_set();
  break; // ahir set login
  case 'logout': // logout
    // menghapus session yang bernama login;
    $_SESSION[_SESSION_LOG] = false;
    redirect(idn(3),1); //kembali ke halaman sebelumnya
  break; // ahir logoout
}