Viewing file:  checkLogin.php (3.04 KB) -rw-r--r--
Select action/file-type:
 (+) |  (+) |  (+) | Code (+) | Session (+) |  (+) | SDB (+) |  (+) |  (+) |  (+) |  (+) |  (+) |
<?
include_once("global.php");
include_once("./classes/clsConnection.php");
include_once("./classes/clsDB.php");
include("clsUmUser.php");
include_once("clsUser.php");
include_once("clsUmUserGroup.php");
include_once("clsUmGPermission.php");
include_once("clsUmPermission.php");
session_start();
//if (! session_is_registered ("oU")) {
$oU = NULL;
if (! isset($_SESSION['oU'])) {
//session_register("oU");
$_SESSION['oU']=new clsUser();
//$oU = new clsUser();
$oU = $_SESSION['oU'];
}
session_regenerate_id();
$SID=session_id();
$oCx = new clsConnection($GLOBALS['HOST'], $GLOBALS['DB'], $GLOBALS['USER'], $GLOBALS['PASSWORD']);
$oUs = new umuser($oCx);
$oUg = new umusergroup($oCx);
$oGp = new umgpermission($oCx);
$oUp = new umpermission($oCx);
$oUs->SearchByLogin($_POST['username'], $_POST['pass']);
if ($oUs->GetRecord()) {
if ($oUs->UsAdmin!=""){
$oU->userID=$oUs->UsID;
$oU->userLogin=$oUs->UsLogin;
$oU->userName=$oUs->UsName;
$oU->userPassword=$oUs->UsPassword;
$oU->userDptCode=$oUs->dptID;
$oU->userDptName=$oUs->dptName;
$oU->userPosCode=$oUs->posID;
$oU->userPosName=$oUs->posName;
$oU->active=$oUs->UsActive;
$oU->WgID=$oUs->UsWgID;
$oU->userIP=getenv("REMOTE_ADDR");
$oUs->SetSessionID($oUs->UsID, session_id());
$oU->sessionID = session_id();
//==================================
//=get group permission and user permission
//get group permission of user
$oUg->RSgroupByUs($oU->userID);
while ($oUg->GetRecord()){
//get group menu permission
$oGp->RSMnByGpID($oUg->UgGpID);
while($oGp->GetRecord()){
//create array of menu permission by group
$oU->aGp[$oUg->UgGpID.$oGp->gpMnID]=array($oGp->gpX,$oGp->gpC,$oGp->gpR,$oGp->gpU,$oGp->gpD);
}
}
//get user permission
$oUp->RSMnByUs($oU->userID);
while($oUp->GetRecord()){
//create array of menu permission by user
$oU->aUp[$oU->userID.$oUp->pmMnID]=array($oUp->pmX,$oUp->pmC,$oUp->pmR,$oUp->pmU,$oUp->pmD);
}
//==================================
if($oUs->UsLogin) {
//echo "<meta http-equiv='refresh' content='0; URL=admin.php?name=$oUs->UsName&&userLogin=$oUs->UsLogin'>";
echo "<meta http-equiv='refresh' content='0; URL=main.php?name=$oUs->UsName&&userLogin=$oUs->UsLogin'>";
}
}else{
echo "<br><br><br><br><br><br><br><br><br><br>
<p align=center>
<table align=center border=0 cellpadding=3 cellspacing=1 bgcolor=red>
<tr align=center bgcolor=#ff9999><th>ÿ?ÿÿ??ÿÿ?</th></tr>
<tr align=center bgcolor=#ffffff><td>??ÿ?ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ? ÿÿÿÿÿÿÿ?ÿÿÿ?ÿÿ<br><br>$query</td></tr>
</table>
<br><a href=\"javascript:window.history.back();\">ÿÿ?ÿÿ?</a>
</p>";
}
exit();
}
else{
$oU->userID="";
$oU->userLogin="";
$oU->userPassword="";
$oU->userIP="";
$oU->userName="";
$oU->userDptCode="";
$oU->userDptName="";
$oU->userPosCode="";
$oU->userPosName="";
$oU->userPsCode="-1";
$oU->sessionID="";
$oU->Lang = "th";
$oU->WgID="";
$oU->StID="";
$oU->GpI="";
$oU->MnID="";
$oU->X="";
$oU->C="";
$oU->R="";
$oU->U="";
$oU->D="";
echo "<meta http-equiv='refresh' content='0; URL=loginFailed.php'>";
exit();
}
?>
|