/**
*
* Simple login function.
* @param $username string Username
* @param $password string Password
* @return boolean
*
*/
public function login($username, $password, $encrypted = false)
{
// valid login requires status_id to be 1, in addition to matching email and password. The status_id indicates email has been confirmed.
if (!$encrypted) {
$sql_raw = "SELECT sponsor_id, region_id, region_type FROM sponsor WHERE email='{$username}' AND password='******'";
} else {
$sql_raw = "SELECT sponsor_id, region_id, region_type FROM sponsor WHERE email='{$username}' AND password='******'";
}
$sql_raw = "SELECT sponsor_id FROM sponsor WHERE email='{$username}'";
if ($data = db()->Get_Row($sql_raw)) {
$sponsor = new Sponsor($data['sponsor_id']);
$_SESSION['admin_id'] = $sponsor->id();
$_SESSION['region_id'] = $sponsor->region_id();
$_SESSION['region_type'] = $sponsor->region_type();
return true;
}
return false;
}
<?php
require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/global.php';
require_once DOC_ROOT . '/includes/classes/class.html.php';
require_once DOC_ROOT . '/includes/classes/class.sponsor.php';
require_once DOC_ROOT . '/includes/classes/class.office.php';
$region_id = 65517;
$region_type = REGION_CITY;
$office_ids = Office::get_ids_by_region($region_id, $region_type);
$id = get_param('id');
$sponsor = new Sponsor($id);
if (!empty($_POST)) {
$sponsor->region_id($region_id);
$sponsor->region_type($region_type);
$sponsor->department_id(get_param('department_id'));
$sponsor->sponsor_type(get_param('sponsor_type'));
$sponsor->title(get_param('title'));
$sponsor->name_first(get_param('name_first'));
$sponsor->name_last(get_param('name_last'));
$sponsor->name_middle(get_param('name_middle'));
$sponsor->office(get_param('office'));
$sponsor->phone(get_param('phone'));
$sponsor->email(get_param('email'));
$sponsor->bio(get_param('bio'));
$sponsor->image(get_param('image'));
if ($id) {
$sponsor->update();
} else {
$id = $sponsor->insert();
}
redirect('sponsor');
