Start New Discussion Reply to this Discussion
Admin and User same log in form?
Hello everyone! I am a student and still a noob in PHP. Well, I'm trying to figure out what is the best method for a log in page system that provide the ability for an Administrator to log in using the same log in form for normal users but get redirected to a administrator page if the system recognize as Admin and normal users redirected to users page. Any idea? Any help would be greatly appreciated! :) Here is my log in code for users -->
<?php
//Start session
session_start();
//Include database connection details
require_once('voting_connect.php');
//Array to store validation errors
$errmsg_arr = array();
//Validation error flag
$errflag = false;
//Connect to mysql server
include('voting_connect.php');
{
//Select database
$db = mysql_select_db($db);
if(!$db) {
die("Unable to select database");
}
//Function to sanitize values received from the form. Prevents SQL injection
function clean($str) {
$str = @trim($str);
if(get_magic_quotes_gpc()) {
$str = stripslashes($str);
}
return mysql_real_escape_string($str);
}
//Sanitize the POST values
$s_ID = clean($_POST['s_ID']);
$s_Password = clean($_POST['s_Password']);
//Input Validations
if($s_ID == '') {
$errmsg_arr[] = 'ID number missing';
$errflag = true;
}
if($s_Password == '') {
$errmsg_arr[] = 'Password missing';
$errflag = true;
}
//If there are input validations, redirect back to the login form
if($errflag) {
$_SESSION['ERRMSG_ARR'] = $errmsg_arr;
session_write_close();
header("location: login.php");
exit();
}
//Create query
$qry="SELECT * FROM students WHERE s_ID='$s_ID' AND s_Password='$s_Password'";
$result=mysql_query($qry);
//Check whether the query was successful or not
if($result) {
if(mysql_num_rows($result) == 1) {
//Login Successful
session_regenerate_id();
$member = mysql_fetch_assoc($result);
$_SESSION['SESS_MEMBER_ID'] = $member['s_ID'];
$_SESSION['SESS_FIRST_NAME'] = $member['s_FirstName'];
$_SESSION['SESS_LAST_NAME'] = $member['s_LastName'];
session_write_close();
header("location: vote.php");
exit();
}else {
//Login failed
header("location: logfail.php");
exit();
}
}else {
die("Query failed");
}
}
?>
2
Contributors1
Reply3 Hours
Discussion Span9 Months Ago
Last Updated2
Views Related Article: single login page for Admin and user
is a PHP discussion thread by vindyauwu that has 18 replies, was last updated 6 months ago and has been tagged with the keywords: single, login, page, for, admin, and, user.
- Admin and User Login Problem - 9 replies
- admin and user login - 1 reply
- admin and user login page - 4 replies
- User Registration Form Logical Error - 1 reply
- help with creating admin user - 2 replies
- Display form in email - 28 replies
- Php Admin Section with Multiple Users - 1 reply
- Solved: Submit form will not work! - 6 replies
- Solved: php login from can't log in - 4 replies
aianne
Light Poster
45 posts since Feb 2010
Reputation Points: 33
Solved Threads: 0
Skill Endorsements: 0
what we have at work is 1 form for all, admins, clients and operators.
they have to enter their log and pass and select an option on a drop list before the submit button. depending on their selected option and their authentification, the main core of the app. is changed to their level.
i didnt have to work with that part of the code yet, so i didnt get the chance to look at it and tell you how they done it. ive only been brief on it.
but i imagine they have a table that check password and access level to authenticate the users. And i would passed an hidden="tag-admin" to make sure they have access rights.
anyways thats the way i would do it.
good luck
DarkMonarch
Junior Poster
120 posts since Sep 2011
Reputation Points: 11
Solved Threads: 16
Skill Endorsements: 0
This article has been dead for over three months: Start a new discussion instead
You
© 2013 DaniWeb® LLC
Page rendered in 0.0549 seconds
using 2.7MB
RSS Feed