public function get_userinfo($userid, $password)
{
//select the database
mssql_select_db($this->dbname, $this->dbcon);
//SQL Select statement
$sqlselect = "SELECT userid,password,userright,ws,ws_name,location,fullname,gender,position,member_since,avatar FROM pospass WITH (NOLOCK) WHERE userid ='" . $userid . "';";
//Run the SQL query
$sqlquery = mssql_query($sqlselect);
$string_result = '{"uservalidation":"false"}';
//$login = new Blowfish();
//$encpassword = $login->genpwd($password);
$encpassword = $this->encryptIt($password);
while ($result = mssql_fetch_array($sqlquery)) {
//$verify = $login->verify_hash($password, $result["password"]);
if ($encpassword == $result["password"]) {
$xml = new XMLHandler(LOCAL_DIR . "/etc/greenSys.config.xml");
$_SESSION["activedb"] = (string) $xml->Child("locationmapping", $result["location"]);
$_SESSION["user-id"] = (string) $userid;
$_SESSION["user-ws"] = (string) $result["ws"];
$_SESSION["ws-name"] = (string) $result["ws_name"];
$_SESSION["user-fullname"] = (string) $result["fullname"];
$_SESSION["user-gender"] = (string) $result["gender"];
$_SESSION["user-position"] = (string) $result["position"];
$_SESSION["user-member_since"] = (string) $result["member_since"];
$_SESSION["user-avatar"] = (string) $result["avatar"];
//session_write_close();
//setcookie("user-id",(string)$userid, time()+3600*24);
$string_result = '{"uservalidation":"true","fullname":"' . $result["fullname"] . '","gender":"' . $result["gender"] . '","position":"' . $result["position"] . '","member_since":"' . $result["member_since"] . '","avatar":"' . $result["avatar"] . '"}';
}
}
return $string_result;
}
public function LoadSettings()
{
try {
$xml = new XMLHandler(LOCAL_DIR . "/etc/greenSys.config.xml");
$this->dbhost = $xml->Child("database", "dbhost");
$this->dbuser = $xml->Child("database", "dbuser");
$this->dbpass = $xml->Child("database", "dbpass");
$this->dbname = $xml->Child("database", "dbname");
/*if(isset($_SESSION["activedb"])){
$this->dbname =$_SESSION["activedb"];
}*/
} catch (Exception $e) {
$title = "ERROR IN CLASS: " . get_class($this);
$test = new MsgBox($title, $e->getMessage());
$this->content .= $test->Show();
}
}
