Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- include ("connection.php");
- $err="";
- if(isset($_POST["Login"]))
- {
- $err="";
- $username=$_POST['u_email'];
- $password=$_POST['u_password'];
- if(empty($username) && empty($password))
- {
- $err="Both fields are required";
- }else
- {
- $password = md5($password);
- // To protect from SQL Injection
- $sql = $db->prepare("SELECT u_id, u_name, u_library, u_level,u_password FROM user WHERE u_email = ? AND u_password = ?");
- $sql->bind_param("ss", $username, $password);
- $sql->execute();
- $sql->store_result();
- $countrow = $sql->num_rows;
- if ($countrow==0)
- {
- // login failed
- //session_register('msg');
- $_SESSION['DLogged']=0;
- $err="Login Failed";
- //die("Click to back to login page");
- }else
- {
- $sql->bind_result($numrow["u_id"],$numrow["u_name"],$numrow["u_library"],$numrow["u_level"],$numrow["u_password"]);
- $sql->fetch();
- $sysID = $numrow['u_id'];
- $sysname = $numrow['u_name'];
- $syslib = $numrow['u_library'];
- $syslevel = $numrow['u_level'];
- if ($numrow['u_password']== md5($password))
- {
- $_SESSION['sysuseremail']=$username;
- $_SESSION['syspassword']=$password;
- $_SESSION['sysID']=$sysID;
- $_SESSION['sysname']=$sysname;
- $_SESSION['syslib']=$syslib;
- $_SESSION['syslevel']=$syslevel;
- $_SESSION['rmsLog']=1;
- if($numrow['u_level']=="ADMIN")
- {
- $_SESSION['u_level']="ADMIN";
- header("Location:adminview.php");
- //echo ("<script>window.location.href='adminview.php'</script>");
- }
- if($numrow['u_level']=="PD")
- {
- $_SESSION['u_level']="PD";
- header("Location:pdview.php");
- //echo ("<script>window.location.href='pdview.php'</script>");
- }
- if($numrow['u_level']=="PL")
- {
- header("Location:pdview.php");
- $_SESSION['u_level']="PL";
- //echo ("<script>window.location.href='pdview.php'</script>");
- }
- }
- }
- }
- }
- ?>
- <style>
- .error {color: #FF0000;}
- </style>
- <!DOCTYPE HTML>
- <html>
- <head>
- <link rel="stylesheet" type="text/css" href="css/sb-admin-2.css">
- <link rel="stylesheet" type="text/css" href="css/bootstrap.css">
- <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.1.1/jquery.min.js"></script>
- <script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js"></script>
- <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1">
- </head>
- <body>
- <center><h1 style="text-align:center; text-shadow: 4px 4px 4px #aaa; font-size:280%; margin-top:25px; font-family: 'Open Sans', sans-serif;"><b>Report Management System</h1></center><br>
- <div class="container">
- <div class="row">
- <div class="col-md-4 col-md-offset-4">
- <center><table >
- <col width="150">
- <col width="200">
- <tr><td align="center"><a href="http://www.pustaka-sarawak.com/" target="_blank">
- <img src="image/logopns.jpg" alt="http://www.pustaka-sarawak.com/" style="width: 40%">
- </a></td>
- <td align="center"><img src="image/perpustakaan_desa.png" alt="Logo Perpustkaan Negara Malaysia" style="width: 80%"></td></tr>
- </table></center>
- <div class="login-panel panel panel-default">
- <div class="panel-heading">
- <h3 class="panel-title">Please Sign In</h3>
- </div>
- <div class="panel-body">
- <form method="POST" action="index.php" name="login">
- <fieldset>
- <p>* required field.</p>
- <div class="form-group">
- <input class="form-control" placeholder="E-mail*" name="u_email" type="email" autofocus><div class="error"></div>
- </div>
- <div class="form-group">
- <input class="form-control" placeholder="Password*" name="u_password" type="password" value=""><div class="error"></div>
- </div><br>
- <input class="btn btn-lg btn-success btn-block" type="submit" name="Login" value="Login"/>
- <?php {?>
- <br><span height="30" colspan="2" style="color:#990000;font-weight:bold;"><?php echo $err; ?></span>
- <?php } ?>
- </div>
- </fieldset>
- </form>
- </div>
- </div>
- </div>
- </div>
- </div>
- <script src="../vendor/jquery/jquery.min.js"></script>
- <script src="../vendor/bootstrap/js/bootstrap.min.js"></script>
- <script src="../vendor/metisMenu/metisMenu.min.js"></script>
- <script src="../dist/js/sb-admin-2.js"></script>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement