/var/www/(Del)pathways.org.hk/MIS20140127/old20140407/include/login.php

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25

<?php

require_once 'DBConnect.php';

function login($dbh$name$password) {
    global $status;
    $actived 1;
    $deleted 0;
    $sth $dbh->prepare("SELECT * FROM `user` WHERE `loginname` = ? AND `loginpw` = ? AND `actived` = ? AND `deleted` = ?");
    $sth->bindParam(1$name);
    $sth->bindParam(2md5($password));
    $sth->bindParam(3$actived);
    $sth->bindParam(4$deleted);
    $sth->execute();
    $ResultSet $sth->fetch(PDO::FETCH_ASSOC);

    if (!empty($ResultSet)) {
        $_SESSION['MIS_login'] = $ResultSet;
        header('Location: ./main.php');
    } else {
        $status=false;
    }
}

?>