public function check_user() { $db = new Database(); $session = new Session(); $this->email = mysql_real_escape_string($this->email, $db->getDBConnection()); $this->password = mysql_real_escape_string($this->password, $db->getDBConnection()); $result = $db->runQuery("SELECT * FROM userdetail WHERE username='******' and password='******' and Active=1"); if ($db->checkRows($result) > 0) { $session->set_session('email', $this->email); $details = $db->fetchArray($result); $session->set_session('user_type', $details['TypeOfUser']); $randomsession = uniqid(ssn); $session->set_session('sessionid', $randomsession); $insertArray['SessionID'] = $randomsession; $insertArray['UserID'] = $details['UserID']; $session->set_session('userid', $details['UserID']); $rs = $db->saveRecords($insertArray, "session"); return true; } else { return false; } }