$url = ADMIN_URL . "/login.php"; $general->redirectUrl($url, $num); exit; } $sql = "SELECT * FROM admins WHERE username = '******' AND binary password='******' ;"; if (!$dbBean->Query($sql)) { $dbBean->Kill(); } $row = $dbBean->RowArray(); if ($row) { $_SESSION['adm_logged'] = true; $_SESSION['adm_user_id'] = $row['id']; $_SESSION['adm_username'] = $row['username']; $_SESSION['adm_status'] = $row['status']; $fieldvalues = array('user_name' => $name, 'identifier' => $_SERVER['REMOTE_ADDR'], 'success' => 1); $saved = $dbBean->InsertRow("action_recorder", $fieldvalues); echo "<script>window.location.href='index.php'</script>"; exit; } else { $fieldvalues = array('user_name' => $name, 'identifier' => $_SERVER['REMOTE_ADDR'], 'success' => 0); $saved = $dbBean->InsertRow("action_recorder", $fieldvalues); $_SESSION['adm_logged'] = false; $_SESSION['adm_user_id'] = ""; $_SESSION['adm_username'] = ""; $_SESSION['adm_status'] = ""; $_SESSION['msg'] = 'Wrong username or password!'; $num = 'danger'; $url = ADMIN_URL . "/login.php"; $general->redirectUrl($url, $num); exit; }
if ($updated) { $general->addLogAction($_SESSION['adm_user_id'], 'Edited', $_REQUEST['id'], 'Admin Management', $_SESSION['adm_status']); $error = 'success'; $_SESSION['msg'] = 'Record updated successfully.'; } else { $error = 'danger'; $_SESSION['msg'] = 'Error updating record.'; } $url = ADMIN_URL . "/admins/index.php"; $general->redirectUrl($url, $error); exit; } /***************************************************************************/ if ($_REQUEST['FLAG'] == 'ADD') { $fieldvalues = array('username' => $_REQUEST['txtuser'], 'last_name' => $_REQUEST['txtlname'], 'first_name' => $_REQUEST['txtfname'], 'email' => $_REQUEST['txtemail'], 'password' => md5($_REQUEST['password']), 'status' => $_REQUEST['status']); $updated = $dbBean->InsertRow("admins", $fieldvalues); if ($updated) { $general->addLogAction($_SESSION['adm_user_id'], 'Added', $updated, 'Admin Management', $_SESSION['adm_status']); $error = 'success'; $_SESSION['msg'] = 'Record updated successfully.'; } else { $error = 'danger'; $_SESSION['msg'] = 'Error updating record.'; } $url = ADMIN_URL . "/admins/index.php"; $general->redirectUrl($url, $error); exit; } /*************************************************************************************/ if (isset($_REQUEST['FLAG']) && $_REQUEST['FLAG'] == 'DELETE') { if ((int) $_REQUEST['id'] == 1) {