예제 #1
0
require_once '../class/systemSetting.php';
$dbClass = new database();
$system = new setting();
if (array_key_exists("proccess", $_POST)) {
    if ($_POST['proccess'] == 'logout') {
        session_start();
        echo $dbClass->logout();
    }
}
if (array_key_exists("logSystem", $_POST)) {
    //3 = no user exist,2 = no username password,1 = sucesss and redirec
    if (isset($_POST['userName']) && !empty($_POST['userName']) && isset($_POST['password']) && !empty($_POST['password'])) {
        $user = $dbClass->filterData($_POST['userName']);
        $pass = $dbClass->filterData($_POST['password']);
        $userQuery = "SELECT\nat_system_users.id,\nat_system_users.user_name,\nat_system_users.pwd,\nat_system_users.approved,\nat_system_users.user_level\nFROM\nat_system_users\nWHERE\nat_system_users.approved = '1' AND\nat_system_users.user_name = '{$user}' LIMIT 1";
        $userAvailability = $system->getCountByQuery($userQuery);
        if ($userAvailability > 0) {
            $userDetails = $system->prepareSelectQuery($userQuery);
            foreach ($userDetails as $ud) {
                if ($ud['pwd'] == $dbClass->PasswordHash($pass, substr($ud['pwd'], 0, 9))) {
                    //Set Cookie if select remember btn
                    session_start();
                    $_SESSION['user_id'] = $ud['id'];
                    $_SESSION['user_name'] = $ud['user_name'];
                    $_SESSION['user_level'] = $ud['user_level'];
                    $_SESSION['HTTP_USER_AGENT'] = md5($_SERVER['HTTP_USER_AGENT']);
                    if (isset($_POST['remember']) && $_POST['remember'] == 'r') {
                        setcookie("user_id", $_SESSION['user_id'], time() + 60 * 60 * 24 * COOKIE_TIME_OUT, "/");
                        setcookie("user_name", $_SESSION['user_name'], time() + 60 * 60 * 24 * COOKIE_TIME_OUT, "/");
                    }
                    echo json_encode(array(array("msgType" => 0, "msg" => "Successfully Logged to the System")));