11,
'salt' => '#a$f^f&dlksjf0dlkjas213k',
];
$mypassword = password_hash($mypassword, PASSWORD_BCRYPT, $options);
$sql = "select u.id, ur.role
from user u left join user_role ur on ur.id = u.role
where u.username = '$myusername' and u.password = '$mypassword' and u.active = '1'";
$result = mysqli_query($db,$sql);
$row = mysqli_fetch_array($result,MYSQLI_ASSOC);
$active = $row['active'];
$count = mysqli_num_rows($result);
// If result matched $myusername and $mypassword, table row must be 1 row
if($count == 1) {
$_SESSION['login_user'] = $myusername;
//$customerfirstname = $row['firstname'];
$userrole = $row['role'];
if($userrole == "Admin"){
header("location: admin/home.php");
}elseif ($userrole == "System Admin"){
header("location: sa/home.php");
}elseif ($userrole == "Branch Manager"){
header("location: bm/home.php");
}elseif ($userrole == "Regional Manager"){
header("location: rm/home.php");
}else {
header("location: t/home.php");
}
/*
if($userrole == "Admin"){
header("location: admin/welcome.php");
}elseif ($userrole == "System Admin"){
header("location: sa/welcome.php");
}elseif ($userrole == "Branch Manager"){
header("location: bm/welcome.php");
}elseif ($userrole == "Regional Manager"){
header("location: rm/welcome.php");
}else {
header("location: t/welcome.php");
}
*/
}else {
$error = "Your Login Name or Password is invalid";
}
}
?>
Login