<?php include "connect.php"; $username = $_POST['name']; $password = md5

1. <?php
2. include "connect.php";
3.  
4. $username = $_POST['name'];
5. $password = md5($_POST['password']);
6. $query = mysqli_query($conn, "SELECT * FROM user WHERE name ='$username' and password = '$password'");
7. $data = mysqli_fetch_array($query);
8. $cek = mysqli_num_rows($query);
9. //$row = mysqli_fetch_assoc($query);
10.  
11. //$user = $row['username'];
12. //$pass = $row['password'];
13. //$type = $row['level'];
14.  
15. if ($data) {
16. if($data['level'] == "admin"){
17. $_SESSION['admin'] = $data['user_id'];
18. ?>
19. <script language="javascript">alert("Login Successful");</script>
20. <script>document.location.href='admin/list.php';</script>
21. <?php
22. }
23. if($data['level'] == "committee"){
24. $_SESSION['committee'] = $data['user_id'];
25. ?>
26. <script language="javascript">alert("Login Successful");</script>
27. <script>document.location.href='login.php';</script>
28. <?php
29. }
30. else if($data['level'] == "company"){
31. $_SESSION['company'] = $data['user_id'];
32. ?>
33. <script language="javascript">alert("Login Successful");</script>
34. <script>document.location.href='regist.php';</script>
35. <?php
36. }
37. }
38. //$row = mysqli_fetch_assoc($query);
39. //$_SESSION['id'] = $row['user_id'];
40. //$_SESSION['status'] = "User";
41. //$_SESSION['name']=$row['name'];
42. // $_SESSION['level'] = $row['level'];
43. //if($_SESSION['id'] == "3")
44. //{
45. //else if($_SESSION['level'] =="1")
46. //{
47. //<script language="javascript">alert("Login Successful");</script>
48. // <script>document.location.href='regist.php';</script>
49. //<script>document.location.href='index.php';</script>-->
50. else{
51. ?>
52. <script language="javascript">alert("Login Failed");</script>
53. <script>document.location.href='login.php';</script>
54. <?php
55. }
56. mysqli_close($conn);
57. ?>