The WW Online Accommodations Network

query_select: $query_select"; //exit; $select_result = mysql_query($query_select) or die("MySQL query failed: " . mysql_error() . "

" . $query_select); $select_num_rows = mysql_num_rows($select_result); //echo "

select_num_rows: $select_num_rows

"; //exit; $select_array = mysql_fetch_array($select_result); if ($select_num_rows == 0) { // no matching record //echo mysql_error(); //no customer record exists with this email/pw combination $varSignInError = 1; }else{ // aRows $adminEmployeeName = $select_array[adminEmployeeName]; } // aRows //delete any existing session for this person $query_delete = "DELETE FROM admSession WHERE adminEmployeeName = '$adminEmployeeName' AND companyID = '$companyID'"; $delete_result = mysql_query($query_delete) or die("MySQL query failed: " . mysql_error() . "

" . $query_delete); if ($varSignInError != 1){ //generate sid $sip = $REMOTE_ADDR; //user's IP address $sid = generatesession($adminEmployeeName,$sip,$companyID); } //$varSignInError /* close the database connection */ mysql_close($db); }//varclicked if ($loff ==1){ //delete session $db = mysql_connect(DBSERVERHOST, DBUSERNAME, DBPASSWORD) or die("MySQL connection failed: " . mysql_error()); mysql_select_db(DBNAME, $db) or die("MySQL database selection failed: " . mysql_error()); $query_delete = "DELETE FROM admSession WHERE sid = '$sid'"; $delete_result = mysql_query($query_delete) or die("MySQL query failed: " . mysql_error() . "

" . $query_delete); $sid =''; /* close the database connection */ mysql_close($db); } if ($sid ==''){ /* display login form */ echo "

"; echo "
"; echo"

User Name    "; echo "

"; echo"

Password    "; echo "

"; echo ""; if ($varSignInError == 1){ //login error echo "

Incorrect Password!

"; } echo "

"; echo "
"; }else{ $adminEmployeeName = checksessionexist($sid); if ($adminEmployeeName == ''){ //invalid session echo"

Log In Error!

"; echo "
Click Here to Try Again
"; }else{ // $adminEmployeeName //what user level is this person? $adminUserLevel = checkuserlevel($adminEmployeeName); //split $adminUserLevel $adminUserSplit = explode("-", $adminUserLevel); $userLevel = $adminUserSplit[0]; $adminProcessSite = $adminUserSplit[1]; if ($userLevel == 'admin'){ include ("index_adm.php"); //-------USER LEVEL----------// }elseif ($userLevel == 'user'){ if ($adminProcessSite == 'bc'){ include ("index_user_bc.php"); }elseif ($adminProcessSite == 'uk'){ include ("index_user_uk.php"); }else{ include ("index_user.php"); } }//$adminUserLevel } // $adminEmployeeName } //sid ?>