Viewing file: checkLogin.php (2.87 KB) -rw-r--r-- Select action/file-type: (+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?
include_once("global.php");
include_once("../class/clsConnection.php");
include_once("../class/clsDB.php");
include("clsUmUser.php");
include_once("clsUser.php");
include_once("clsUmUserGroup.php");
include_once("clsUmGPermission.php");
include_once("clsUmPermission.php");
session_start();
if (! session_is_registered ("oU")) {
session_register("oU");
$oU = new clsUser();
}
session_regenerate_id();
$SID=session_id();
$oCx = new clsConnection($GLOBALS['HOST'], $GLOBALS['DB'], $GLOBALS['USER'], $GLOBALS['PASSWORD']);
$oUs = new umuser($oCx);
$oUg = new umusergroup($oCx);
$oGp = new umgpermission($oCx);
$oUp = new umpermission($oCx);
$oUs->SearchByLogin($login, $password);
if ($oUs->GetRecord()) {
if ($oUs->UsAdmin==1){
$oU->userID=$oUs->UsID;
$oU->userLogin=$oUs->UsLogin;
$oU->userName=$oUs->UsName;
$oU->userPassword=$oUs->UsPassword;
$oU->userDptCode=$oUs->dptID;
$oU->userDptName=$oUs->dptName;
$oU->userPosCode=$oUs->posID;
$oU->userPosName=$oUs->posName;
$oU->active=$oUs->UsActive;
$oU->WgID=$oUs->UsWgID;
$oU->userIP=getenv("REMOTE_ADDR");
$oUs->SetSessionID($oUs->UsID, session_id());
$oU->sessionID = session_id();
//==================================
//=get group permission and user permission
//get group permission of user
$oUg->RSgroupByUs($oU->userID);
while ($oUg->GetRecord()){
//get group menu permission
$oGp->RSMnByGpID($oUg->UgGpID);
while($oGp->GetRecord()){
//create array of menu permission by group
$oU->aGp[$oUg->UgGpID.$oGp->gpMnID]=array($oGp->gpX,$oGp->gpC,$oGp->gpR,$oGp->gpU,$oGp->gpD);
}
}
//get user permission
$oUp->RSMnByUs($oU->userID);
while($oUp->GetRecord()){
//create array of menu permission by user
$oU->aUp[$oU->userID.$oUp->pmMnID]=array($oUp->pmX,$oUp->pmC,$oUp->pmR,$oUp->pmU,$oUp->pmD);
}
//==================================
echo "<meta http-equiv='refresh' content='0; URL=main.php?StID=1&GpID=1'>";
}else{
echo "<br><br><br><br><br><br><br><br><br><br>
<p align=center>
<table align=center border=0 cellpadding=3 cellspacing=1 bgcolor=red>
<tr align=center bgcolor=#ff9999><th>เกิดข้อผิดพลาด</th></tr>
<tr align=center bgcolor=#ffffff><td>สงวนสิทธิ์การใช้โปรแกรมนี้สำหรับ ผู้ดูแลระบบเท่านั้น<br><br>$query</td></tr>
</table>
<br><a href=\"javascript:window.history.back();\">ย้อนกลับ</a>
</p>";
}
exit();
}
else{
$oU->userID="";
$oU->userLogin="";
$oU->userPassword="";
$oU->userIP="";
$oU->userName="";
$oU->userDptCode="";
$oU->userDptName="";
$oU->userPosCode="";
$oU->userPosName="";
$oU->userPsCode="-1";
$oU->sessionID="";
$oU->Lang = "th";
$oU->WgID="";
$oU->StID="";
$oU->GpI="";
$oU->MnID="";
$oU->X="";
$oU->C="";
$oU->R="";
$oU->U="";
$oU->D="";
echo "<meta http-equiv='refresh' content='0; URL=loginFailed.php'>";
exit();
}
?>
|