function sigin() { $dbObj = new Cdb(SERVER, DBNAME, DBUSER, DBPASS); $dbObj->connectDB(); $billingRecord = $dbObj->getRowFromDB("select * from customers where UserEmail like '" . $_REQUEST['txtusrname'] . "' and UserPassword='******'txtpasswd'] . "' limit 0,1"); if (count($billingRecord) > 0) { $_SESSION['USER_ID'] = $billingRecord['UserID']; $_SESSION['BillingFirstName'] = $billingRecord['BillingFirstName']; $_SESSION['Email'] = $billingRecord['UserEmail']; $error = ""; } else { $error = "Invalid User Email / Password"; } return $error; }
function getUserRecord() { $ObjDb = new Cdb(SERVER, DBNAME, DBUSER, DBPASS); $ObjDb->connectDB(); $Qry = "SELECT BillingFirstName, BillingLastName, UserEmail, BillingTelephone FROM customers where UserID = '" . $_SESSION['USER_ID_GTECH'] . "'"; $result = $ObjDb->getRowFromDB($Qry); return $result; }