function login($redirect_page)
{
if (!isset($_POST["user_id"]) || !isset($_POST["user_password"])) {
header("Location: {$redirect_page}");
exit;
}
if ($_POST["user_id"] == NULL || $_POST["user_password"] == NULL) {
header("Location: {$redirect_page}");
exit;
}
// TODO : Escape String for SQL Statement
$user_id = $_POST["user_id"];
$user_pass = $_POST["user_password"];
$result = -1;
$user = DBConnection::login($user_id, $user_pass, $result);
//$user = DBConnection::login2($user_id, $user_pass, $result); // For bcrypt hash technique
if (!$user) {
//sleep(5);
header("Location: {$redirect_page}");
exit;
}
$_SESSION[USER_INFO] = serialize($user);
return $user;
}
