PageRenderTime 32ms CodeModel.GetById 26ms RepoModel.GetById 0ms app.codeStats 0ms

/neticketing/login.php

https://bitbucket.org/mac_pasha/neticketing
PHP | 184 lines | 164 code | 16 blank | 4 comment | 27 complexity | 10aedc15e2c808edb054d6fb8c23acd1 MD5 | raw file
    

  1. <?php require_once('Connections/neticketing.php'); ?>
    2. 

  2. <?php
    3. 

  3. if (!function_exists("GetSQLValueString")) {
    4. 

  4. function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "") 
    5. 

  5. {
    6. 

  6.   if (PHP_VERSION < 6) {
    7. 

  7.     $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
    8. 

  8.   }
    9. 

  9. 

  10.   $theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);
    11. 

  11. 

  12.   switch ($theType) {
    13. 

  13.     case "text":
    14. 

  14.       $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
    15. 

  15.       break;    
    16. 

  16.     case "long":
    17. 

  17.     case "int":
    18. 

  18.       $theValue = ($theValue != "") ? intval($theValue) : "NULL";
    19. 

  19.       break;
    20. 

  20.     case "double":
    21. 

  21.       $theValue = ($theValue != "") ? doubleval($theValue) : "NULL";
    22. 

  22.       break;
    23. 

  23.     case "date":
    24. 

  24.       $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
    25. 

  25.       break;
    26. 

  26.     case "defined":
    27. 

  27.       $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
    28. 

  28.       break;
    29. 

  29.   }
    30. 

  30.   return $theValue;
    31. 

  31. }
    32. 

  32. }
    33. 

  33. ?>
    34. 

  34. <?php
    35. 

  35. // *** Validate request to login to this site.
    36. 

  36. if (!isset($_SESSION)) {
    37. 

  37.   session_start();
    38. 

  38. }
    39. 

  39. 

  40. $loginFormAction = $_SERVER['PHP_SELF'];
    41. 

  41. if (isset($_GET['accesscheck'])) {
    42. 

  42.   $_SESSION['PrevUrl'] = $_GET['accesscheck'];
    43. 

  43. }
    44. 

  44. 

  45. if (isset($_POST['inputEmail'])) {
    46. 

  46.   $loginUsername=$_POST['inputEmail'];
    47. 

  47.   $password=$_POST['inputPassword'];
    48. 

  48.   $MM_fldUserAuthorization = "";
    49. 

  49.   $MM_redirectLoginSuccess = "dashboard.php";
    50. 

  50.   $MM_redirectLoginFailed = "login.php";
    51. 

  51.   $MM_redirecttoReferrer = true;
    52. 

  52.   mysql_select_db($database_neticketing, $neticketing);
    53. 

  53.   
    54. 

  54.   $LoginRS__query=sprintf("SELECT user_email, user_password, user_id FROM user_info WHERE user_email=%s AND user_password=%s",
    55. 

  55.     GetSQLValueString($loginUsername, "text"), GetSQLValueString($password, "text")); 
    56. 

  56.    
    57. 

  57.   $LoginRS = mysql_query($LoginRS__query, $neticketing) or die(mysql_error());
    58. 

  58.   $loginFoundUser = mysql_num_rows($LoginRS);
    59. 

  59.   $forUserId = mysql_fetch_assoc($LoginRS);
    60. 

  60.   if ($loginFoundUser) {
    61. 

  61.      $loginStrGroup = "";
    62. 

  62.     
    63. 

  63. 	if (PHP_VERSION >= 5.1) {session_regenerate_id(true);} else {session_regenerate_id();}
    64. 

  64.     //declare two session variables and assign them
    65. 

  65.     $_SESSION['MM_Username'] = $loginUsername;
    66. 

  66.     $_SESSION['MM_UserGroup'] = $loginStrGroup;	   
    67. 

  67. 	  $_SESSION['user_email'] = $_POST['inputEmail']; 
    68. 

  68.     $_SESSION['user_id'] = $forUserId['user_id'];
    69. 

  69. 

  70.     if (isset($_SESSION['PrevUrl']) && true) {
    71. 

  71.       $MM_redirectLoginSuccess = $_SESSION['PrevUrl'];	
    72. 

  72.     }
    73. 

  73.     header("Location: " . $MM_redirectLoginSuccess );
    74. 

  74.   }
    75. 

  75.   else {
    76. 

  76.     header("Location: ". $MM_redirectLoginFailed );
    77. 

  77.   }
    78. 

  78. }
    79. 

  79. ?>
    80. 

  80. <?php
    81. 

  81. // *** Validate request to login to this site.
    82. 

  82. if (!isset($_SESSION)) {
    83. 

  83.   session_start();
    84. 

  84. }
    85. 

  85. 

  86. $loginFormAction = $_SERVER['PHP_SELF'];
    87. 

  87. if (isset($_GET['accesscheck'])) {
    88. 

  88.   $_SESSION['PrevUrl'] = $_GET['accesscheck'];
    89. 

  89. }
    90. 

  90. 

  91. if (isset($_POST['inputEmail'])) {
    92. 

  92.   $loginUsername=$_POST['inputEmail'];
    93. 

  93.   $password=$_POST['inputPassword'];
    94. 

  94.   $MM_fldUserAuthorization = "";
    95. 

  95.   $MM_redirectLoginSuccess = "dashboard.php";
    96. 

  96.   $MM_redirectLoginFailed = "login.php";
    97. 

  97.   $MM_redirecttoReferrer = true;
    98. 

  98.   mysql_select_db($database_neticketing, $neticketing);
    99. 

  99.   
    100. 

  100.   $LoginRS__query=sprintf("SELECT user_email, user_password FROM user_info WHERE user_email=%s AND user_password=%s",
    101. 

  101.     GetSQLValueString($loginUsername, "text"), GetSQLValueString($password, "text")); 
    102. 

  102.    
    103. 

  103.   $LoginRS = mysql_query($LoginRS__query, $neticketing) or die(mysql_error());
    104. 

  104.   $loginFoundUser = mysql_num_rows($LoginRS);
    105. 

  105.   if ($loginFoundUser) {
    106. 

  106.      $loginStrGroup = "";
    107. 

  107.     
    108. 

  108. 	if (PHP_VERSION >= 5.1) {session_regenerate_id(true);} else {session_regenerate_id();}
    109. 

  109.     //declare two session variables and assign them
    110. 

  110.     $_SESSION['MM_Username'] = $loginUsername;
    111. 

  111.     $_SESSION['MM_UserGroup'] = $loginStrGroup;	      
    112. 

  112. 

  113.     if (isset($_SESSION['PrevUrl']) && true) {
    114. 

  114.       $MM_redirectLoginSuccess = $_SESSION['PrevUrl'];	
    115. 

  115.     }
    116. 

  116.     header("Location: " . $MM_redirectLoginSuccess );
    117. 

  117.   }
    118. 

  118.   else {
    119. 

  119.     header("Location: ". $MM_redirectLoginFailed );
    120. 

  120.   }
    121. 

  121. }
    122. 

  122. ?>
    123. 

  123. <!DOCTYPE html>
    124. 

  124. <html>
    125. 

  125. <head>
    126. 

  126. <title>Login page</title>
    127. 

  127. <meta name="viewport" content="width=device-width, initial-scale=1.0">
    128. 

  128. <!-- Bootstrap -->
    129. 

  129. <link href="css/bootstrap.min.css" rel="stylesheet" media="screen">
    130. 

  130. <link href="css/main_style.css" media="screen" rel="stylesheet"
    131. 

  131. 	type="text/css">
    132. 

  132. <link href="images/favicon.ico" rel="icon" type="image/icon" />
    133. 

  133. </head>
    134. 

  134. <body>
    135. 

  135. <!-------------------HEADER START---------------------->
    136. 

  136. <?php include('include/header.php');?>
    137. 

  137. <!-------------------HEADER END----------------------> 
    138. 

  138. 

  139. 	<!-------------------BODY START---------------------->
    140. 

  140. 	<div id="signup_body" class="account_body" style="padding-top: 0px;">
    141. 

  141. 		<div id="tabs">
    142. 

  142. 			<!--main menu-->
    143. 

  143. 			<?php include('include/navigation.php');?>
    144. 

  144. 			<!--main menu-->
    145. 

  145. 

  146. 			<!-- DIV start for Dashboard -->
    147. 

  147. 			<div id="trainroute" style="margin-top: 30px;">
    148. 

  148. 				<div id="train_route_div">
    149. 

  149. 					<form ACTION="<?php echo $loginFormAction; ?>" METHOD="POST" name="myLoginForm" class="form-horizontal">
    150. 

  150. 						<fieldset>
    151. 

  151. 							<legend>Login Form</legend>
    152. 

  152. 							<div class="control-group">
    153. 

  153. 								<label class="control-label" for="inputEmail">Email</label>
    154. 

  154. 								<div class="controls">
    155. 

  155. 									<input type="email" name="inputEmail" id="inputEmail" placeholder="Email"
    156. 

  156. 										required>
    157. 

  157. 								</div>
    158. 

  158. 							</div>
    159. 

  159. 							<div class="control-group">
    160. 

  160. 								<label class="control-label" for="inputPassword">Password</label>
    161. 

  161. 								<div class="controls">
    162. 

  162. 									<input type="password" name="inputPassword" id="inputPassword"
    163. 

  163. 										placeholder="Password" required>
    164. 

  164. 								</div>
    165. 

  165. 							</div>
    166. 

  166. 							<div class="control-group">
    167. 

  167. 								<div class="controls">					
    168. 

  168. 								  <input type="submit" class="btn"></button><p></P>
    169. 

  169. 									<p>Don't Have an Account?<a href="registration.php"> Sign Up Here</a></p>  
    170. 

  170. 							  </div>
    171. 

  171. 							</div>
    172. 

  172. 						</fieldset>
    173. 

  173. 					</form>
    174. 

  174. 				</div>
    175. 

  175. 			</div>
    176. 

  176. 			<!-- DIV end for Dashboard -->
    177. 

  177. 		</div>
    178. 

  178. 	</div>
    179. 

  179. 

  180. <!-------------------FOOTER START---------------------->
    181. 

  181. <?php include('include/footer.php');?>
    182. 

  182. <!-------------------FOOTER END---------------------->
    183. 

  183. </body>
    184. 

  184. </html>
    185.