-
Notifications
You must be signed in to change notification settings - Fork 1
/
action_login.php
50 lines (45 loc) · 1.81 KB
/
action_login.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
<?php
/**********************************************************************
* Author : Sergio Ceron Figueroa ([email protected])
* Alias : sxceron
* Web : http://www.dotrow.info
* Name : jShop v1.0
* Desc : Valida un usuario para iniciar sesion
* userName : obligatorio (nombre de usuario)
* userPassword: obligatorio (password del usuario)
*
*
**********************************************************************/
// Include file headers
include_once "./includes/validator.php";
include_once "./includes/settings.php";
include_once "./includes/db.php";
include_once "./includes/security.php";
$_validator = new Validator();
$_validator->setMethod( "POST" );
$_validator->setVars( array("userName:required", "userPassword:required") );
if( $_validator->validate() ){
$values = $_validator->getValues();
$user = $db->get_row( "select * from usuarios where usuario_alias='".$values["userName"]."'" );
if( $user->usuario_password == md5($values["userPassword"]) ){
$_SESSION[ 'user_id' ] = $user->usuario_id;
$_SESSION[ 'user_alias' ] = $user->usuario_alias;
$_SESSION[ 'user_role' ] = $user->usuario_tipo;
$db->query( "update usuarios set usuario_ultimoacceso='".date("y/m/d")."' where usuario_id=".$user->usuario_id );
if( $user->usuario_tipo == 2 ){
header( 'Location: ./admin_ponencias.php');
}else if( $user->usuario_tipo == 3 ){
header( 'Location: ./evaluate_ponencias.php');
}else{
header( 'Location: ./adminpanel.php');
}
}else{
header( 'Location: ./login.php?id='.base64_encode( "2" ) );
}
}else{
for( $err="", $i = 0; $i < count($e = $_validator->getErrors()); $i++ ){
$err = $err.";".$e[$i]["field"];
}
header( 'Location: ./login.php?id='.base64_encode( "0" ).'&tk='.base64_encode($err) );
}
?>