<?php
include ("config/connection.php");
if(isset($_POST['mode']) && $_POST['mode']=='login')
{
$uname=saveValue(trim($_POST['rtuname']));
$passwd=saveValue(trim($_POST['rtpassword']));
require_once "formvalidator.php";
$validator = new FormValidator();
$validator->addValidation("rtuname","req","Please enter Username!");
$validator->addValidation("rtpassword","req","Please enter Password!");
$error='';
if($validator->ValidateForm())
{
$query="select * from employees where 03_username='".$uname."' and 03_password=password('".$passwd."') and 03_status='1' ";
$result=mysql_query($query);
$num=mysql_num_rows($result);
if($num>0)
{
session_start();
$info=mysql_fetch_array($result);
session_register("EMPLOYEEID");
session_register("EMPLOYEE_LOGIN");
session_register("DEPTID");
session_register("SUBDEPID");
session_register("SUBSUBDEPID");
session_register("EMPLOYEELEVEL");
$_SESSION['EMPLOYEEID']=$info['03_employeeid'];
$_SESSION['EMPLOYEE_LOGIN']=$info['03_employeetype'];
$_SESSION['DEPTID']=$info['03_deptid'];
$_SESSION['SUBDEPID']=$info['03_subdeptid'];
$_SESSION['SUBSUBDEPID']=$info['03_subsubdeptid'];
$_SESSION['EMPLOYEELEVEL']=$info['03_employeelevel'];
if($_POST['pg']=="")
{
echo "<script>window.location='dashboard.php'</script>";
}
else
{
echo "<script>window.location='".saveValue($_POST['pg'])."'</script>";
}
}
else
{
$_REQUEST['emsg']=1;
}
}
else
{
$error_hash = $validator->GetErrors();
foreach($error_hash as $inpname => $inp_err)
{
$error=$error.$inp_err."<br />";
}
}
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title><?php echo $siteTitle;?> - Employee Login</title>
<script type='text/javascript' src='js/form.scripts.js'></script>
<script type='text/javascript' src='js/emailvalidate.js'></script>
<script language="javascript">
function validate()
{
var formObj=Object(document.form1);
if(onSubmitCheck(formObj))
{
var emailID=formObj.remail;
if (echeck(emailID.value)==false){
emailID.focus();
return false;
}
return true;
}else
{
return false;
}
}
</script>
<link href="css/style.css" rel="stylesheet" type="text/css" />
</head>
<body onload="document.getElementById('rtuname').focus();">
<form name='form1' id='form1' action="checklogin.php" method='post' onsubmit="return validate();">
<input type='hidden' name='mode' id='mode' value='login' />
<input type='hidden' name='pg' id='pg' value='<?php echo @$_REQUEST['pg'];?>' />
<table width="1000" border="0" align="center" cellpadding="0" cellspacing="0">
<tr align="center" valign="middle">
<td> </td>
</tr>
<tr>
<td align="center"><h1><?php echo $siteTitle;?></h1></td>
</tr>
<tr>
<td> </td>
</tr>
<tr>
<td> </td>
</tr>
<tr>
<td align="center" valign="top"><font color="#FF0000"><?php if(isset($_REQUEST['emsg'])){echo "Either Username or Password is Incorrect!";} ?></font></td>
</tr>
<?php if(isset($_REQUEST['sexp']) && $_REQUEST['sexp']==1){?>
<tr>
<td align="center" class="error"><font color="#FF0000">You session has expired! Please login again.</font></td>
</tr>
<?php }?>
<?php if(isset($error) && $error!=''){?>
<tr>
<td align="center" class="error">
<?php echo @$error;?>
</td>
</tr>
<?php }?>
<tr><td> </td></tr>
<tr>
<td align="center" valign="middle"><table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
<td> </td>
<td align="center"><table width="80%" border="1" align="center" cellpadding="0" cellspacing="0" bordercolor="#DADADA">
<tr>
<td align="center"><table width="100%" border="0" cellpadding="0" cellspacing="0">
<tr align="left" valign="middle">
<td height="8" align="center" valign="middle" bgcolor="#F8F8F8"></td>
</tr>
<tr align="left" valign="middle">
<td height="38" align="center" valign="middle" bgcolor="#F8F8F8" class="pageHeadTxt"><strong>Employee Login </strong></td>
</tr>
<tr>
<td align="center" valign="middle" bgcolor="#DADADA" height="2" ></td>
</tr>
<tr>
<td align="center" valign="top"><table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
<td width="36%" rowspan="8" align="center" valign="top" class="text1"><img src="images/admin.gif" alt="" /></td>
<td align="left" valign="top" class="text1"></td>
<td height="10" align="left" valign="top" class="text1"></td>
<td align="left" valign="top"></td>
</tr>
<tr>
<td width="3%" align="left" valign="top" class="text1"> </td>
<td width="20%" align="left" valign="middle"><strong class="txtLabel12">Username</strong></td>
<td width="41%" align="left" valign="middle"><label>
<input name="rtuname" type="text" class="btntextbox" id="rtuname" title="Username" size="40" maxlength="50"/>
</label></td>
</tr>
<tr>
<td align="left" valign="top" class="text1"></td>
<td align="left" valign="middle"></td>
<td height="8" align="left" valign="middle"></td>
</tr>
<tr>
<td align="left" valign="top" class="text1"> </td>
<td align="left" valign="middle"><strong class="txtLabel12">Password</strong></td>
<td align="left" valign="middle"><input name="rtpassword" type="password" class="btntextbox" id="rtpassword" title="Password" size="40" maxlength="50"/></td>
</tr>
<tr>
<td></td>
<td></td>
<td height="10" align="left" valign="top"></td>
</tr>
<tr>
<td> </td>
<td> </td>
<td align="left" valign="top"><label>
<input name="submit" type="submit" class="btn" id="submit" value=" Login " />
</label></td>
</tr>
<tr>
<td> </td>
<td> </td>
<td align="left" valign="top"> </td>
</tr>
<tr>
<td> </td>
<td> </td>
<td align="left" valign="top"><a href="Mailto:LeaveManagement@novonordisk.com">Forgot Password</a></td>
</tr>
</table></td>
</tr>
<tr >
<td height="1" align="center" valign="top" ></td>
</tr>
</table></td>
</tr>
</table></td>
<td> </td>
</tr>
</table></td>
</tr>
<tr>
<td align="center" valign="middle"> </td>
</tr>
<tr>
<td> </td>
</tr>
</table>
</form>
PHP 5.6.0
mysql Ver 14.14 Distrib 5.6.20, for Linux (x86_64) using EditLine wrapper
Is there any changes required, kindly suggest
Br,
Suhas