$user = $_POST['user']; $pass = $_POST['pass']; $s

1. $user = $_POST['user'];
2. $pass = $_POST['pass'];
3.  
4. $sql1 = "SELECT customerUserName, customerPassword FROM customer
5. WHERE customerUserName = '$user' AND customerPassword = '$pass' ";
6. $sql2 = "SELECT staffUserName, staffPassword FROM staff
7. WHERE staffUserName = '$user' AND staffPassword = '$pass' ";
8. $sql3 = "SELECT customerID FROM customer WHERE customerUserName = '$user'
9. AND customerPassword = '$pass' ";
10. $sql4 = "SELECT staffID FROM staff WHERE staffUserName = '$user'
11. AND staffPassword = '$pass' ";
12. $result1 = $conn->query($sql1);
13. $result2 = $conn->query($sql2);
14. $result3 = $conn->query($sql3);
15. $result4 = $conn->query($sql4);
16. if ($result1->num_rows > 0) {
17. header("Location: custHome.php");
18. session_start();
19. $_SESSION["userID"] = $result3;
20.  
21. } else if ($result2->num_rows > 0) {
22. header("Location: staffHome.php");
23. session_start();
24. $_SESSION["adminID"] = $result4;
25. }
26.  
27. //new page
28.  
29. <?php
30. session_start();
31. echo $_SESSION["userID"];
32. ?>