function saveSPimage($photoname, $image, $id) { $db = new PDO('mysql:host=localhost;dbname=spoarts', "root", ""); $sql = "UPDATE service_providers SET spphotoName = ?, spphoto = ? WHERE UserID = ?"; $cmd = $db->prepare($sql); $cmd->execute(array($photoname, $image, $id)); $db = null; getSPimage($id); return "Image uploaded"; }
function userLogin($data) { $db = db(); $sql = "SELECT UserName,Password,UserID,UserType FROM user_accounts WHERE UserName = ? AND Password = ?"; $cmd = $db->prepare($sql); $cmd->execute(array($data['user_login_username'], md5($data['user_login_password']))); $result = $cmd->fetch(); $db = null; if ($result) { if ($result['UserType'] == "client") { $_SESSION['islogin'] = true; $_SESSION['user_id'] = $result['UserID']; $_SESSION['username'] = $result['UserName']; $_SESSION['password'] = $result['Password']; $_SESSION['usertype'] = $result['UserType']; getClientDetails($_SESSION['user_id']); $id = userID(); getimage($id); return 0; } else { if ($result['UserType'] == "service provider") { //if(checkSubscription($result['UserID'])=='true'){ $_SESSION['islogin'] = true; $_SESSION['user_id'] = $result['UserID']; $_SESSION['username'] = $result['UserName']; $_SESSION['password'] = $result['Password']; $_SESSION['usertype'] = $result['UserType']; getSPDetails($_SESSION['user_id']); $id = userID(); getSPimage($id); return 1; //} //else //{ //return "Expired."; //} } } } else { return "Incorrect username or password."; } }