//else // show the login form // $_REQUEST['age']; include_once './login.php'; $msg = "Login"; if (isset($_REQUEST['username'])) { //the login form has been submitted $username = $_REQUEST['username']; $password = $_REQUEST['password']; //call login to check username and password // print $username; if (login($username, $password)) { session_start(); //initiate session for the current login // print $username; loadUserProfile($username); //load user information into the session header("location: health_promotion_list.php"); //redirect to home page echo "<a href=' health_promotion_list.php'>click here</a>"; //if redirect fails, provide a link exit; } else { //if login returns false, then something is worng $msg = "username or password is wrong mmmmmmmmmmmmmmmmmmmmm"; } } ?> <html> <head> <title>Login</title>
<?php // resume the session session_start(); $userName = $_SESSION[username]; $action = isset($_POST['action']); if ($action == 'load') { loadUserProfile($userName); } else { if ($action == 'save') { saveUserProfile(); } } function loadUserProfile($userName) { require "../db/db.php"; $user = $mysqli->real_escape_string($userName); $sql = "SELECT id, name, userName, email, picture, group_id FROM USER WHERE userName='******'"; $result = array(); if ($resultdb = $mysqli->query($sql)) { if ($resultdb->num_rows == 1) { while ($profile = $resultdb->fetch_assoc()) { $result = $profile; } } $resultdb->close(); } echo json_encode(array("success" => $mysqli->connect_errno == 0, "data" => $result)); $mysqli->close(); } function saveUserProfile($array, $userId)