function login($redirect_page) { if (!isset($_POST["user_id"]) || !isset($_POST["user_password"])) { header("Location: {$redirect_page}"); exit; } if ($_POST["user_id"] == NULL || $_POST["user_password"] == NULL) { header("Location: {$redirect_page}"); exit; } // TODO : Escape String for SQL Statement $user_id = $_POST["user_id"]; $user_pass = $_POST["user_password"]; $result = -1; $user = DBConnection::login($user_id, $user_pass, $result); //$user = DBConnection::login2($user_id, $user_pass, $result); // For bcrypt hash technique if (!$user) { //sleep(5); header("Location: {$redirect_page}"); exit; } $_SESSION[USER_INFO] = serialize($user); return $user; }