class user{ var $username,$superadmin,$logged; function destro

1. class user{
2. var $username,$superadmin,$logged;
3.  
4.  
5.  
6. function destroyuser(){
7. unset($_SESSION);
8. session_destroy();
9. //unset($this->username,$this->logged,$this->superadmin);
10. }
11.  
12. function user(){
13. if (!$_SESSION['logged'] or empty($_SESSION['superadmin']) or empty($_SESSION['username'])){
14. $this->destroyuser();
15. }
16.  
17.  
18.  
19. function applyfromsession(){
20. $this->superadmin=$_SESSION['superadmin'];
21. $this->logged=$_SESSION['logged'];
22. $this->username=$_SESSION['superadmin'];
23. }
24.  
25.  
26. function dologin($username,$password){
27. $sql=mysql_query("SELECT * FROM cms_users WHERE username='$username'");
28. if (mysql_num_rows($sql)<=0) {
29. destroyuser();
30. return array(0,"Имя пользователя не найдено!");
31. }else{
32. $sql_res=mysql_fetch_object($sql);
33. if (md5(md5($password))==$sql_res->password){
34. $_SESSION['logged']=1;
35. $_SESSION['superadmin']=$sql_res->superadmin;
36. $_SESSION['username']=$sql_res->username;
37. $this->applyfromsession();
38. return array(1);
39. }else{
40. return array(0,"Пароль неверен!");
41. }
42. }
43. }
44.  
45. function dologout(){
46. destroy_user();
47. }
48.  
49.  
50. }
51. }