/** * * Simple login function. * @param $username string Username * @param $password string Password * @return boolean * */ public function login($username, $password, $encrypted = false) { // valid login requires status_id to be 1, in addition to matching email and password. The status_id indicates email has been confirmed. if (!$encrypted) { $sql_raw = "SELECT sponsor_id, region_id, region_type FROM sponsor WHERE email='{$username}' AND password='******'"; } else { $sql_raw = "SELECT sponsor_id, region_id, region_type FROM sponsor WHERE email='{$username}' AND password='******'"; } $sql_raw = "SELECT sponsor_id FROM sponsor WHERE email='{$username}'"; if ($data = db()->Get_Row($sql_raw)) { $sponsor = new Sponsor($data['sponsor_id']); $_SESSION['admin_id'] = $sponsor->id(); $_SESSION['region_id'] = $sponsor->region_id(); $_SESSION['region_type'] = $sponsor->region_type(); return true; } return false; }
<?php require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/global.php'; require_once DOC_ROOT . '/includes/classes/class.html.php'; require_once DOC_ROOT . '/includes/classes/class.sponsor.php'; require_once DOC_ROOT . '/includes/classes/class.office.php'; $region_id = 65517; $region_type = REGION_CITY; $office_ids = Office::get_ids_by_region($region_id, $region_type); $id = get_param('id'); $sponsor = new Sponsor($id); if (!empty($_POST)) { $sponsor->region_id($region_id); $sponsor->region_type($region_type); $sponsor->department_id(get_param('department_id')); $sponsor->sponsor_type(get_param('sponsor_type')); $sponsor->title(get_param('title')); $sponsor->name_first(get_param('name_first')); $sponsor->name_last(get_param('name_last')); $sponsor->name_middle(get_param('name_middle')); $sponsor->office(get_param('office')); $sponsor->phone(get_param('phone')); $sponsor->email(get_param('email')); $sponsor->bio(get_param('bio')); $sponsor->image(get_param('image')); if ($id) { $sponsor->update(); } else { $id = $sponsor->insert(); } redirect('sponsor');