<?php require_once __DIR__ . '../../../../businessLogic/business.php'; $business = new business(); if (isset($_COOKIE['auth'])) { $token = $_COOKIE['auth']; $id; $info = $business->check_token($token); if ($info != FALSE) { $user = $business->view_user($info['id']); $username = $user['loginId']; $usertype = $business->get_user_type($username); if ($usertype == 'admin') { header('Location: ./../root.admin.companies.list/list.php'); exit; } else { echo '<script>console.log("not authorized");</script>'; header('Location: ./../root.login/login.php'); exit; } } else { echo '<script>console.log("wrong token");</script>'; header('Location: ./../root.login/login.php'); exit; } } else { echo '<script>console.log("no token found");</script>'; header('Location: ./../root.login/login.php'); exit; }
if (isset($_POST['login']) && !empty($_POST['username']) && !empty($_POST['password'])) { if ($business->check_password($_POST['username'], $_POST['password'])) { $duration = 86400 * 30; $token = $business->generate_token(); $business->create_token($_POST['username'], $token, time(), $duration); if (isset($_POST['rememberme'])) { setcookie('auth', $token, time() + $duration, '/'); } else { setcookie('auth', $token, 0, '/'); } echo ' <div class="alert alert-success"> <label>Valid use name and password</label> </div> '; if ($business->get_user_type($_POST['username']) == "student") { header('Location: .\\..\\root.student\\student.php'); exit; } else { if ($business->get_user_type($_POST['username']) == "company") { header('Location: .\\..\\root.company\\company.php?company=' . $_POST['username']); exit; } else { if ($business->get_user_type($_POST['username']) == "admin") { header('Location: .\\..\\root.admin\\admin.php'); exit; } else { echo ' <div class="alert alert-danger"> <label>Unknown error</label> </div>