<?phpsession_start();include_once 'dbcon/DBConnection.php';$dbobj = new DBCon

1. <?php
2. session_start();
3. include_once 'dbcon/DBConnection.php';
4. $dbobj = new DBConnection();
5. $dbobj->connect();
6. if (isset($_REQUEST['msg'])){
7. $msg = urlencode($_REQUEST['msg']);
8. }
9. if(isset($_POST["login"])){
10. //echo 'hii';exit;
11. $loginid=htmlspecialchars(trim($_POST['txtname']));
12. $password =sha1(htmlspecialchars(trim($_POST['pwd'])));
13. //echo $password;exit;
14. $admin = $dbobj->adminLogin($loginid,$password);
15. //echo ($admin->result);exit;
16. if($admin->result == 2){
17. $msg ='2';
18. }
19. if($admin->result ==1){
20. $_SESSION["admin_id"] = $admin->adminid;
21. $_SESSION["admin_name"] = $admin->adminname;
22. $_SESSION["admin_loginid"] = $admin->adminloginid;
23. header("location:dashboard.php");
24. }
25. }
26. ?>
27. <script>
28. function valid()
29. {
30. var obj = document.frmlogin;
31. if(obj.txtname.value == "")
32. {
33. alert("Please Enter Username");
34. obj.txtname.focus();
35. return false;
36. }
37. if(obj.pwd.value == "")
38. {
39. alert("Please Enter Password");
40. obj.pwd.focus();
41. return false;
42. }
43. else
44. {
45. return true;
46. }
47. }
48. </script>
49. <form method="post" name="frmlogin" id="frmlogin" action="" autocomplete="off" class="mt">
50. <label for="" class="text-uppercase text-sm">Username</label>
51. <input type="text" placeholder="Username" name="txtname" class="form-control mb">
52. <label for="" class="text-uppercase text-sm">Password</label>
53. <input type="password" placeholder="Password" name="pwd" class="form-control mb">
54. <div class="checkbox checkbox-circle checkbox-info">
55. <input id="checkbox7" type="checkbox" checked>
56. <label for="checkbox7">
57. Keep me signed in
58. </label>
59. </div>
60.  
61. <button class="btn btn-primary btn-block" name="login" id="login" type="submit" onClick="return valid();">LOGIN</button>
62.  
63. </form>
64.  
65. <?php
66.  
67. class DBConnection{
68. function __construct() {
69.  
70. }
71. // destructor
72. function __destruct() {
73. // $this->close();
74. }
75. public function connect() {
76. require_once 'dbcon/config.php';
77. $con = new mysqli(DB_HOST, DB_USER, DB_PASSWORD, DB_DATABASE);
78. if ($con->connect_error)die("Connection failed: ");
79. // return database handler
80. return $con;
81. }
82. public function adminLogin($loginid,$password){
83. $admin = new AdminUser();
84. if(ctype_alnum($loginid)){
85. $sqllogin=sprintf("select * from ".PREFIX."admin where username='%s' and trim(password)='%s' and status=1",mysql_real_escape_string($loginid),mysql_real_escape_string($password));
86.  
87. $dbsql=mysqli_query($con,$sqllogin);
88.  
89. $Num = mysqli_num_rows($dbsql);
90. echo $Num;exit;
91. if($Num >0){
92. if($row=mysqli_fetch_array($dbsql)){
93. $admin->adminid =htmlspecialchars($row['id']);
94. $admin->adminname =htmlspecialchars($row['name']);
95. $admin->adminloginid =htmlspecialchars($row['username']);
96. $admin->result=1;
97. }
98. }else{
99. $admin->result=2;
100. }
101. }else{
102. $admin->result=2;
103. }
104. return $admin;
105. }
106. }
107. ?>