function process_auth ($login, $password) {
     if (mysqldb::mysql_version()>4.0) {
         $sql = "select user_id, user_firstname, user_lastname, user_login, user_password, user_dob, user_gender, user_lang, user_admin, user_role ".
                "from game_user where user_login = '******' and user_password = old_password('$password') and user_active = 'Y'";
     } else {
         $sql = "select user_id, user_firstname, user_lastname, user_login, user_password, user_dob, user_gender, user_lang, user_admin, user_role ".
                "from game_user where user_login = '******' and user_password = password('$password') and user_active = 'Y'";
     }
     if ($result = mysql_query($sql)) {
         if (mysql_num_rows($result)) {
             $user_array = mysql_fetch_array($result);
         }
     }
     return $user_array;
 }