if (empty($email)) {
$err1 = 'emailerr=please enter user email';
}
if (empty($password)) {
$err2 = 'passerr=please enter user password';
}
if (isset($err) || isset($err1) || isset($err2)) {
header('location:../users.php?tab=tab2&' . $err . '&' . $err1 . '&' . $err2);
die;
}
if ($filter->validate_username($username)) {
$username = $filter->filter_data($username);
} else {
$err = 'usernamerr=please enter a valid username';
}
if ($filter->validate_email($email)) {
$email = $filter->filter_data($email);
} else {
$err1 = 'emailerr=please enter a valid email';
}
if ($filter->validate_password($password)) {
$password = $filter->filter_data($password);
} else {
$err2 = 'passerr=password length must be at least 8 chars';
}
if (isset($err) || isset($err1) || isset($err2)) {
header('location:../users.php?tab=tab2&' . $err . '&' . $err1 . '&' . $err2);
die;
}
if ($usertype == 'Admin') {
$usertype = 1;
}
if ($_SERVER['REQUEST_METHOD'] != 'POST') {
header('location:../404.php');
die;
}
extract($_POST);
$filter = new filter();
if (empty($username)) {
header('location:../login.php?logerr=Empty Username/Password');
die;
}
if (empty($password)) {
header('location:../login.php?logerr=Empty Username/Password');
die;
}
if ($filter->validate_username($username) || $filter->validate_email($username)) {
$username = $filter->filter_data($username);
} else {
header('location:../login.php?logerr=Please Enter a Valid Username');
die;
}
if ($filter->validate_password($password)) {
$password = $filter->filter_data($password);
} else {
header('location:../login.php?logerr=Please Enter a Valid Password');
die;
}
if ($user->login($username, $password)) {
header('location:../supplier.php');
} else {
header('location:../login.php?logerr=Wrong Username/Password');
