Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- if(isset($_POST['btn-login']))
- {
- $email = trim($_POST['txtemail']);
- $upass = trim($_POST['txtupass']);
- $stmt = $user_login->runQuery("SELECT * FROM jusers WHERE jemail=:email_id");
- $stmt->execute(array(":email_id"=>$email));
- $userRow=$stmt->fetch(PDO::FETCH_ASSOC);
- if($stmt->rowCount() == 1)
- {
- if($userRow['jpass']==md5($upass))
- {
- $_SESSION['user']= array(
- 'juid' =>$userRow['juid'],
- 'username'=>$userRow['jemail'],
- 'password'=>$userRow['jpass'],
- 'role'=>$userRow['role']
- );
- $role= $_SESSION['user']['role'];
- switch ($role) {
- case 'admin':
- header("Location : super_admin.php");
- break;
- case 'user' :
- header("Location : admin_user.php");
- break;
- }
- }
- else
- {
- $errMSG =" <div class='alertmsg alert'>
- <a class='clostalert'>close</a>
- <strong>Warning!</strong> Wrong password </div> ";
- }
- }
- else
- {
- $errMSG = " <div class='errormsg alert'>
- <a class='clostalert'>close</a>
- <strong>Error!</strong> Wrong credentials!</div> ";
- }
- <?php
- session_start();
- require_once 'class.user.php';
- $admin_user = new USER();
- if(empty($_SESSION['user'])){
- header('location:login.php');
- }
- if($_SESSION['user']['role']=='admin'){
- header('location:super_admin.php');
- }
- if(!$admin_user->is_logged_in())
- {
- $admin_user->redirect('login.php');
- }
- $sid = $_SESSION['user']['juid'];
- $stmt = $admin_user->runQuery('select jname from jusers where juid = :sid');
- $stmt->bindParam(':sid', $sid);
- $stmt->execute();
- while ($row = $stmt->fetch(PDO::FETCH_ASSOC)) {
- extract($row);
- }
- ?>
Add Comment
Please, Sign In to add comment