function validate($userid, $password) { mysql_connect("localhost", "nizam", "ajith786") or die("coudnt connect to the database"); mysql_select_db("fztest1") or die("coudnt find database"); $results = mysql_query("select userid,pass from userstable where userid='" . $userid . "' or email='" . $userid . "'"); if (mysql_num_rows($results)) { while ($row = mysql_fetch_assoc($results)) { if ($password == $row['pass']) { $userid = $row['userid']; $result = mysql_query("select userid,type,url,adminpages from freniz where userid='" . $userid . "'"); while ($row2 = mysql_fetch_assoc($result)) { if ($row2['type'] == 'user') { $results1 = mysql_query("select profiletype,fname,lname,dob,sex,school,college,email,hometown,currentcity,language,rstatus,employer,religion,myphilosophy,state,country,propic,pinnedpic,books,musics,movies,celebrities,games,sports,other,playlist,mood,style,secondarypic1,secondarypic2,propicalbum,secondarypicalbum,adminpages,url,blocklist,blockedby,reviews,reqfrmme,personalinfo,country from user_info where userid='" . $userid . "'"); while ($row1 = mysql_fetch_assoc($results1)) { $_SESSION['userid'] = $userid; $_SESSION['username'] = $row1['fname'] . ' ' . $row1['lname']; $_SESSION['fname'] = $row1['fname']; $_SESSION['lname'] = $row1['lname']; $_SESSION['dob'] = $row1['dob']; $_SESSION['sex'] = $row1['sex']; $_SESSION['rstatus'] = $row1['rstatus']; $_SESSION['religion'] = $row1['religion']; $_SESSION['currentcity'] = $row1['currentcity']; $_SESSION['hometown'] = $row1['hometown']; $_SESSION['mood'] = $row1['mood']; $_SESSION['theme'] = $row1['style']; $_SESSION['employer'] = unserialize($row1['employer']); $_SESSION['school'] = unserialize($row1['school']); $_SESSION['college'] = unserialize($row1['college']); $_SESSION['language'] = unserialize($row1['language']); $_SESSION['blocklist'] = unserialize($row1['blocklist']); $_SESSION['blockedby'] = unserialize($row1['blockedby']); $_SESSION['reviews'] = unserialize($row1['reviews']); $_SESSION['reqfrmme'] = unserialize($row1['reqfrmme']); $_SESSION['userdetails'] = $row1; $_SESSION['books'] = unserialize($row1['books']); $_SESSION['musics'] = unserialize($row1['musics']); $_SESSION['movies'] = unserialize($row1['movies']); $_SESSION['celebrities'] = unserialize($row1['celebrities']); $_SESSION['games'] = unserialize($row1['games']); $_SESSION['sports'] = unserialize($row1['sports']); $_SESSION['other'] = unserialize($row1['other']); $_SESSION['playlist'] = unserialize($row1['playlist']); $result3 = mysql_query("select diary from apps where userid='" . $userid . "'"); while ($row3 = mysql_fetch_assoc($result3)) { $_SESSION['diary'] = unserialize($row3['diary']); } $results2 = mysql_query("select friendlist,vote,voted,sentrequest,incomingrequest from friends_vote where userid='" . $userid . "'"); while ($row2 = mysql_fetch_assoc($results2)) { $_SESSION['friends'] = unserialize($row2['friendlist']); $_SESSION['votes'] = unserialize($row2['vote']); $_SESSION['voted'] = unserialize($row2['voted']); $_SESSION['sentrequest'] = unserialize($row2['sentrequest']); $_SESSION['bendingrequest'] = unserialize($row2['incomingrequest']); } $_SESSION['type'] = 'user'; $_SESSION['propic'] = $row1['propic']; $_SESSION['password'] = $password; $_SESSION['adminpages'] = unserialize($row1['adminpages']); $_SESSION['url'] = $row1['url']; $_SESSION['useracc'] = $userid; $_SESSION['useracctype'] = 'user'; $ou = mysql_query('select onlineusers from initapp'); $users = array(); if (mysql_num_rows($ou)) { while ($row = mysql_fetch_assoc($ou)) { if (isset($row['onlineusers'])) { $users = unserialize($row['onlineusers']); } array_push($users, $userid); mysql_query("update initapp set onlineusers='" . serialize($users) . "'"); } } else { array_push($users, $userid); mysql_query("insert into initapp(onlineusers) values('" . serialize($users) . "')"); } } mysql_close(); return "true"; } else { if ($row2['type'] == 'none') { $adminpages = unserialize($row2['adminpages']); $_SESSION['userid'] = $userid; $_SESSION['password'] = $password; $_SESSION['adminpages'] = unserialize($row1['adminpages']); $_SESSION['url'] = $row1['url']; $_SESSION['useracc'] = $userid; $_SESSION['useracctype'] == 'none'; if (sizeof($adminpages) >= 1) { validatepage(reset($adminpages)); } } } } } else { mysql_close(); return "false"; } } } else { mysql_close(); return "false"; } }
<?php /* * To change this template, choose Tools | Templates * and open the template in the editor. */ session_start(); require_once 'dovalidation.php'; if (isset($_SESSION['userid']) && isset($_REQUEST['pageid'])) { $result = validatepage($_REQUEST['pageid']); $output = json_encode(array("userid" => $_SESSION['userid'], "status" => $result)); echo $output; } else { $output = json_encode(array("userid" => $_SESSION['userid'], "status" => "false")); echo $output; }