*********this is my scripts, <?php if(isset($_POST['submit'])) {

1. *********this is my scripts,
2.  
3. <?php
4. if(isset($_POST['submit']))
5. {
6. $username = $_POST['username'];
7. $password = md5($_POST['password']);
8. $date_login = date("y-m-d");
9. $level = $row['level_id'];
10. $status = $row['status'];
11. $acc_status = $row['acc_status'];
12.  
13.  
14. if($level == "1" && $status == "1"){
15. $query = mysql_query("SELECT * FROM professor WHERE username='$username' AND password='$password'");
16. $cek = mysql_num_rows($query);
17. $row = mysql_fetch_array($query);
18. $prof = $row['prof_id'];
19.  
20. if ($cek) {
21. $_SESSION['username'] = $username;
22. $_SESSION['prof_id'] = $prof;
23. $_SESSION['level_id'] = $level;
24. $_SESSION['status'] = $status;
25.  
26. header("location: user/home_prof.php");
27. $save = mysql_query("update professor set date_login = '$date_login' where
28. username = '$username'");
29. }
30. else {
31. $error = "Failed Login";
32. }
33. }
34.  
35. if($level == "2" && $status == "1" && $acc_status == "0"){
36. $query = mysql_query("SELECT * FROM student WHERE username='$username' AND password='$password'");
37. $cek = mysql_num_rows($query);
38. $row = mysql_fetch_array($query);
39. $student = $row['student_id'];
40.  
41. if ($cek) {
42. $_SESSION['username'] = $username;
43. $_SESSION['student_id'] = $student;
44. $_SESSION['level_id'] = $level;
45. $_SESSION['status'] = $status;
46. $_SESSION['acc_status'] = $acc_status;
47.  
48. header("location: user/home_student.php");
49. $save = mysql_query("update student set date_login = '$date_login' where username = '$username'");
50. }
51. else {
52.  
53. }
54. }
55. }
56. ?>