session_start(); $page = "login"; $title = "Body Corporate Management Services :: Login"; include ("include/db_connect.php"); $Submit = $_REQUEST['Submit']; $tenant_id = $_REQUEST['tenant_id']; $password = $_REQUEST['password']; if ($Submit == "Login") { $tenant_id = $HTTP_POST_VARS['tenant_id']; $password = $HTTP_POST_VARS['password']; session_register("tenant_id", "password"); } else if ($Submit == "Logout") { session_unregister("tenant_id"); session_unregister("password"); $tenant_id = ""; header ("Location: index.php"); exit; } $sql = "select * from tenants where tenant_id = '$tenant_id' and password = '$password'"; $sql_result = mysql_query($sql, $connection) or die("Could not execute query 1"); $num = mysql_num_rows($sql_result); if ($num == 1) { $logged_in = "yes"; header("Location: about_us.php"); exit; } if ($num == 0) { $logged_in = "no"; if ($Submit == "Login") $errmsg = "Incorrect Login. Please try again."; } include ("include/starter.php"); ?>
Login
|